Recent searches

No recent searches

Alex Leventis's Avatar

Alex Leventis

Joined Feb 07, 2024

·

Last activity Feb 07, 2024

Following

0

Followers

0

Total activity

2

Votes

0

Subscription

1

ACTIVITY OVERVIEW

Latest activity by Alex Leventis

Alex Leventis commented,

CommentSingle sign-on
Product guides

We are working through Enabling JWT single sign-on migration.

When a user is authenticated, they are successfully logged into the app via the "return_to" param which in our case is https://support.{domain}.com 

When we receive the /access/unauthenticated response, the browser auto-redirects back to our sign-on page. Which is essentially the same as clicking "sign-in", bringing the user back to our remote login URL. 

However, we have no way of knowing if the zendesk authentication failed upon rendering our sign-on page. 

Because we can only submit this POST request as form data, we cannot capture the returned url after the request is made.

As of now, this introduces a loop in our system. Here are network details

4. Auto fetch: https://bitly.com/jwt/authorize (our remote login url)
  - verify user is signed in to our platform via auth cookies, generate jwt token
loops back to 
... continues

Can you please prevent the automatic redirection from https://support.bitly.com/access/unauthenticated to our remote login url. But instead redirect to the return_url (a url query param on the unauthenticated response), or display an auth error, or provide insight on how to handle this situation? 

I've looked through the admin console's single sign on settings, but there are not configuration changes we can make on our end. 

View comment · Edited Feb 07, 2024 · Alex Leventis

0

Followers

0

Votes

0

Comments