SSO: Support multiple "sso url"s

sascha · April 28, 2017, 1:34am

We want to use discourse in an unusual scenario where we have 400+ different IdP instances with one central discourse instance as the SP. We initiate SSO from these 400+ portal pages by redirecting to /session/sso, which will redirect to the one configured “sso url”. It would be nice if we could specify the IdP URL in this request, possibly with a whitelist in Discourse.

We currently work around this by querying the /session/sso endpoint server side, extract the Location header of the redirect, and perform the redirect manually.

sam · May 1, 2017, 1:50pm

I am not against adding flexibility here provided the default remains as is today, if you create a carefully tested PR I would consider merging it.

sascha · May 4, 2017, 2:07am

Hi Sam,

thank you very much for your response. Unfortunately my ruby skills are like non-existent and I don’t think I’ll be able to create a PR any time soon for this feature request.

Regards,
Sascha

Topic		Replies	Views
Any objection to adding an SSO IDP parameter? SSO	1	1189	June 9, 2020
Using multiple Discourse sites with a single SSO provider SSO	4	1001	March 7, 2018
Single Sign-Out? SSO	11	4079	May 31, 2018
Discourse SSO using auth0 via URL SSO	5	3517	November 12, 2018
After successful login, how do I redirect to my Discourse URL with logged in state (SSO)? SSO	2	1891	January 6, 2021

SSO: Support multiple "sso url"s

Related topics