SSO: Support multiple "sso url"s

sascha · April 28, 2017, 1:34am

We want to use discourse in an unusual scenario where we have 400+ different IdP instances with one central discourse instance as the SP. We initiate SSO from these 400+ portal pages by redirecting to /session/sso, which will redirect to the one configured “sso url”. It would be nice if we could specify the IdP URL in this request, possibly with a whitelist in Discourse.

We currently work around this by querying the /session/sso endpoint server side, extract the Location header of the redirect, and perform the redirect manually.

sam · May 1, 2017, 1:50pm

I am not against adding flexibility here provided the default remains as is today, if you create a carefully tested PR I would consider merging it.

sascha · May 4, 2017, 2:07am

Hi Sam,

thank you very much for your response. Unfortunately my ruby skills are like non-existent and I don’t think I’ll be able to create a PR any time soon for this feature request.

Regards,
Sascha

Topic		Replies	Views
Any objection to adding an SSO IDP parameter? sso	1	1147	June 9, 2020
Using multiple Discourse sites with a single SSO provider sso	4	959	March 7, 2018
SSO Login with Discourse sso	1	1781	August 2, 2022
Single Sign-Out? sso	11	3916	May 31, 2018
Discourse SSO using auth0 via URL sso	5	3361	November 12, 2018

SSO: Support multiple "sso url"s

Related Topics