SSO Overview

OIDC/OAuth2 and SAML IdP are both supported.

OIDC / OAuth2

Example org claim:

{
  "orgs": [
    {
      "org_id": "uuid",
      "org_slug": "acme",
      "org_name": "Acme Corp",
      "org_type": "client",
      "role": "member",
      "is_admin": false
    }
  ]
    }

Example apps claim:

{
  "apps": [
    {
      "app_id": "uuid",
      "app_slug": "support-portal",
      "app_name": "Support Portal",
      "client_id": "oauth-client-id",
      "roles": ["agent"],
      "permissions": ["tickets.read"]
    }
  ]
}

SAML