Details
-
Suggestion
-
Resolution: Unresolved
-
None
-
5
-
Description
Currently, when login into Atlassian Cloud will redirect unauthenticated users to the https://id.atlassian.com/login? endpoint. This is an extra step that some end users find inconvenient.
The following two alternatives could be introduced to simplify the login process for users (that are part of an SSO enforced authentication policy):
- Provide an additional setting in the admin.atlassian.com Identity Providers section to enforce that all unauthenticated login attempts to be automatically redirected to the IdP, when navigating to a site URL (as an unauthenticated user)
- Alternatively, if the https://id.atlassian.com/login? endpoint cannot be avoided, once the user types its email address, then the email address should be passed to the IdP as an attribute and be pre-populated in the IdP login page. This could be a setting in the Security / Identity Providers section.
The reason this should be introduced as a setting is because this could become a problem for users that are not part of an SSO enforced policy and need to authenticate locally against id.atlassian.com.
Attachments
Issue Links
- is related to
-
ACCESS-1314 Pre-fill email of Azure AD login screen when SAML SSO is enforced
- Gathering Interest