appsmith
appsmith copied to clipboard
appsmithorg
[Feature]: Support for IdP initiated SSO
Is there an existing issue for this?
- [X] I have searched the existing issues
Summary
Appsmith supports SP initiated SSO (aka login from Appsmith login page) but doesn't support login initiated from the identity provider for Appsmith which eventually leads to Appsmith home page.
Why should this be worked on?
Large enterprises tend to use a lot applications. The IdP tends to become the central repository of all applications for easy access. We should support the same so that Appsmith can be accessed from within the IdP.
Additional request on Discord - https://discord.com/channels/725602949748752515/1057219717938544751
AForce Request - https://theappsmith.slack.com/archives/C0341RERY4R/p1675091740703529
User Request
We are building on Appsmith, and in the process have integrated the login with Keycloak over OIDC. The integration works fine, and we can log in successfully via Keycloak. We are facing a challenge however when logging out of the app. The challenge is as follows:
Once we log out of the app via Keycloak, the Appsmith session remains active, meaning that anyone with a bookmarked link to the app home/landing page can go right back in without logging in again. We would like to have it such that the OIDC logout also ends the Appsmith session. Is there a way we can achieve this?
We utiize Okta as our IDP and it would ve super convenient to have IDP initiated login via an Okta app interface. This saves the hassle of giving users an appsmith url to go to.
