FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    Different SSO per team/tenant of my application

    Scheduled Pinned Locked Moved
    Q&A
    2
    2
    298
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      stevenwirges
      last edited by

      Hi!

      I'm would like to build an application that uses fusionauth for user management and tenant management. I'm not sure if this is possible or how it should be configured

      User Flow:

      1. After you signed up with your E-Mail, a team/tenant is created in my app and granted rights to manage users, setup SSO and create API token for my SaaS API.
      2. The admin user sets up SSO (openid/saml/ldap) in fusion auth
      3. If another user tries to login, fusionauth should check the email domain and find the user via the configured SSO
      4. The admin user can configure groups and roles to these users

      Is this possible? If so, how would I configure this? Are there any examples?

      Best,
      Steven

      1 Reply Last reply Reply Quote 0
      • danD
        dan
        last edited by

        Hiya Steven,

        Thanks for the details. I'm not aware of any example applications that have this workflow.

        You could definitely do most of thisthis, but you'd be writing a lot of API glue code. You'd be creating identity providers and configuring managed domains to accomplish step 3.

        The one thing that I know can't be done right now is creating an API key via the API. See https://github.com/FusionAuth/fusionauth-issues/issues/887 for more details about that.

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        1 Reply Last reply Reply Quote 0
        • First post
          Last post