I agree we are doing something odd. I just thing it is a little buggy to have this triggers a redirect loop.
As usual we are oddballs . The scenario we have is that some of our users (small college) are uncomfortable with the lack of anonymity in our commons (discourse) setup. We put the persons first name on the user card. We do this to help raise the level of conversation as it is more clear that they are not anonymous even though they can change their display username but not their login username.
So we are looking at ways to allow these people to exit the commons. We are adding a setting in the source of sso data that basically says “I do not want to be part of the commons”. This system is used to manage user accounts in discourse. It creates, suspends, or deletes accounts based on a feed of data. In the case were they have not posted we will delete their account. In the case were they have topics and replies we suspend their account forever to preserve their topics and replies. In part the suspension is used to stop reactivation of their accounts if they follow a link to the commons and pass through sso.