Uploaded image for project: 'Atlassian Guard'
  1. Atlassian Guard
  2. ACCESS-584

Ability to send parameters to identity provider for SAML SSO

    • 43
    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Summary

      When SAML SSO is enabled for an instance, user's parameter such as email address should be sent to the identity provider for authentication process.

      Problem definition

      Currently when SAML SSO is configured for a cloud instance user requires to go through the steps below:

      1. Access the instance login page and enter the username or email address.
      2. User will be redirected to the identity platform for authentication.
      3. If the user is not logged in, he/she needs to enter the username or email address again together with the password to login.
      4. After successful authentication user will be redirected to the cloud instance.

      In the current process user requires to enter the username or email address multiple times in step #1 and step #3 above.

      Proposed solution

      This could be avoid if in the step #2 above some parameters such as username/email be sent to identity provider as well.

            [ACCESS-584] Ability to send parameters to identity provider for SAML SSO

            Greetings:

            I have used in the past the SSO application from Resolution in Germany on Jira and Confluence and it was flawless in terms of user experience. Having SSO working as is now, is not the desired way customers expect this to work. FYI: https://support.atlassian.com/requests/PCS-157581

            Please don't wait that much and don't let be biased by the few votes this ticket has received.

            Best regards

            Claudio

            Claudio Ombrella | Digilac - Gold Solution Partner added a comment - Greetings: I have used in the past the SSO application from Resolution in Germany on Jira and Confluence and it was flawless in terms of user experience. Having SSO working as is now, is not the desired way customers  expect this to work. FYI: https://support.atlassian.com/requests/PCS-157581 Please don't wait that much and don't let be biased by the few votes this ticket has received. Best regards Claudio

            We need this feature, We think it is very unhuman to ask the user to enter the email twice.

             

            We hope that there is a way to automatically bring the email into the field corresponding to the identity provider when the user enters their email first.

            維珏(Vic) 許 added a comment - We need this feature, We think it is very unhuman to ask the user to enter the email twice.   We hope that there is a way to automatically bring the email into the field corresponding to the identity provider when the user enters their email first.

              e902c0832f88 Sudesh Peram
              grahimi Yahya (Inactive)
              Votes:
              39 Vote for this issue
              Watchers:
              37 Start watching this issue

                Created:
                Updated: