logto icon indicating copy to clipboard operation
logto copied to clipboard

Published 20 hours ago verified publisher icon logto-io

feature request: organization (i.e. multi-tenancy or workspace)

Open gao-sun opened this issue 2 years ago • 11 comments

What problem did you meet?

Finally we come to this far. These terms are confusing and even interchangeable between products.

For clarity, Organization and Tenant are two different things in Logto. Both of them have a precise definition, please see CIAM 101: Authentication, Identity, SSO for details.

In short:

  • Tenants are "physically isolated", usually they are not aware of each other.
  • An organization is a group of identities in a Tenant.

You can see a lot of SaaS providers are using the Organization model for managing their users.

Describe what you'd like Logto to have

Support Organization.

Related issue

  • #3603

gao-sun avatar Apr 22 '23 15:04 gao-sun

@gao-sun any ETA here? this feat will convince me to integrate Logto into our platform to replace Auth0

rannn505 avatar Aug 30 '23 15:08 rannn505

@gao-sun any ETA here? this feat will convince me to integrate Logto into our platform to replace Auth0

@rannn505 thank you for your interest. we just reviewed the first version of the organization product design. we are now targeting late Oct this year.

btw, are you using Auth0's organization feature now? which part is most important to you? this will help us to have a better understanding on priorities.

gao-sun avatar Aug 30 '23 15:08 gao-sun

@gao-sun Thank you for the update on the timeline. Yes, I am currently using Auth0's organization feature. The most crucial aspects for me are the ability to group users under an organizational entity and assign a domain for IdP-initiated login with SSO. These capabilities would sufficiently meet our needs. Looking forward to the late October release!

rannn505 avatar Aug 31 '23 11:08 rannn505

@rannn505 NP and thank you! The feature you describe is exactly on our roadmap. Looking forward to your feedback then.

gao-sun avatar Sep 02 '23 17:09 gao-sun

Nice work @gao-sun! I am very excited to integrate Logto in our application, when this feature is available. You're right, I am looking for the organisation feature as described here, not for physically isolated tenants :)

kswzr avatar Sep 20 '23 12:09 kswzr

@kswzr thank you! This feature will be available in Q4.

gao-sun avatar Sep 21 '23 14:09 gao-sun

This is great!😃😃

insulationman avatar Sep 27 '23 14:09 insulationman

@insulationman thank you for letting us know your expectation. let me know if i understand correctly, does it mean a username can have both password and federated sign-in for authentication? i.e. the following situation may exist:

  • for org A, the user MUST sign in with password
  • for org B, the user MUST sign in by a federated method, say AAD/Okta

gao-sun avatar Sep 29 '23 14:09 gao-sun

@gao-sun any ETA here? this feat will convince me to integrate Logto into our platform to replace Auth0

@rannn505 thank you for your interest. we just reviewed the first version of the organization product design. we are now targeting late Oct this year.

btw, are you using Auth0's organization feature now? which part is most important to you? this will help us to have a better understanding on priorities.

@gao-sun How is it going?

rannn505 avatar Nov 02 '23 12:11 rannn505

@gao-sun Thank you for your reply. I would say that is correctly understood. An organization is set to use an enterprise connector or the default Logto identity provider, or maybe social (multiple connectors per org is rarely needed from my experience).

I would however say that just being able to group user into orgs and having some org metadata json field would cover most use cases to begin with. Just having this would have been great for me. The enterprise connection is requested by a few end users in my experience, but I work with small businesses.

thank you. we are working on this feature and it'll be released later this month

gao-sun avatar Nov 03 '23 05:11 gao-sun

@gao-sun any ETA here? this feat will convince me to integrate Logto into our platform to replace Auth0

@rannn505 thank you for your interest. we just reviewed the first version of the organization product design. we are now targeting late Oct this year. btw, are you using Auth0's organization feature now? which part is most important to you? this will help us to have a better understanding on priorities.

@gao-sun How is it going?

we experienced some delay (you know software development :-) ), and here's the latest schedule:

  • Nov 14th: MFA
  • Nov 21st: Organizations
  • Nov 28th: Enterprise SSO

the schedule is final, you can follow us on ProductHunt or subscribe to the newsletter to get notified once it's live.

update: there's a chance we'll deploy those features before the dates. i'll keep you posted!

gao-sun avatar Nov 03 '23 05:11 gao-sun

Organizations feature has been official launched. Hence I'm closing the ticket.

Please check out our documentation for more details: https://docs.logto.io/docs/recipes/organizations/

charIeszhao avatar Jan 10 '24 13:01 charIeszhao