Our IdP’s ‘/authorize’ endpoint supports additional ‘invitation’ and ‘organization’ query parameters that enable more functionality in our IdP. Insided’s ‘/ssoproxy/login’ endpoint does not forward additional query parameters to our IdP’s ‘/authorize’ endpoint.
More specifically, while users can still authenticate, this causes users’ invitations to remain in the ‘Pending’ status. Additionally, without a valid invitation id we cannot conditionally enable sign-ups in our IdP and thus need to disallow signups for all users. This in turn forces us to create the user with a bogus password before inviting them; which is a sub-optimal user experience.
Beyond our IdP’s scenario there are potentially other benefits to allowing additional sso parameters.
This could be implemented by simply forwarding any additional query parameters that are appended to Insided’s ‘ssoporxy/login’ endpoint to the configured ‘Auth URI’. Maybe a checkbox could be added to the integration sso settings page to enable custom query parameters if you don’t want this to be the default functionality.
Be the first to reply!
Sign up
If you ever had a profile with us, there's no need to create another one.
Don't worry if your email address has since changed, or you can't remember your login, just let us know at community@gainsight.com and we'll help you get started from where you left.
Else, please continue with the registration below.
Welcome to the Gainsight Community
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.