Details
-
Suggestion
-
Resolution: Unresolved
-
None
-
36
-
Description
Summary
When SAML SSO is enabled for an instance, user's parameter such as email address should be sent to the identity provider for authentication process.
Problem definition
Currently when SAML SSO is configured for a cloud instance user requires to go through the steps below:
- Access the instance login page and enter the username or email address.
- User will be redirected to the identity platform for authentication.
- If the user is not logged in, he/she needs to enter the username or email address again together with the password to login.
- After successful authentication user will be redirected to the cloud instance.
In the current process user requires to enter the username or email address multiple times in step #1 and step #3 above.
Proposed solution
This could be avoid if in the step #2 above some parameters such as username/email be sent to identity provider as well.