Replies: 3 comments 8 replies
-
Correct, it isn't possible at the Moment. When we created the SSO capabilities, we decided against it for the time being to lower the complexity, mostly of the configuration pages in the backend. For arbitrary SSO methods, it becomes arbitrarily complex to build these. Generally, I'm not at all opposed to the idea of pluggable SSO backends for customers, though, and most of the core logic shouldn't be hard to extend – but the backend UI will be hard. |
Beta Was this translation helpful? Give feedback.
-
@raphaelm I am outlining my current plan for this feature. I would appreciate any feedback you might have. The high-level overview is to add a hook to get a list of However, to assist the plugin developer, much of the current customer creation logic (e.g., duplication checking) will be refactored into a separate module, so it can be reused between implementations. The final step is to move the current OIDC SSO provider into a plugin. Phase 1Create pluggable infrastructure.
Phase 2Move the current SSO implementation to a separate OIDC plugin.
These can be done in two separate PRs to keep the changes slightly more manageable. |
Beta Was this translation helpful? Give feedback.
-
Ah ok, this makes sense! I misunderstood what
Sure, let's leave this for later!
What information should be returned? I suppose email, phone, name, and external identifier? Essentially a subset of a customer (e.g., |
Beta Was this translation helpful? Give feedback.
-
It would be nice to be able to write plugins for SSO providers. We have some non-generic SSO providers, which nobody else would want to use (so it wouldn't make a good PR), but would be a good fit for a plugin.
I think, unlike for the backend, it isn't possible to write an SSO plugin for customer accounts at the moment?
Beta Was this translation helpful? Give feedback.
All reactions