Skip to content

Commit fd24b8e

Browse files
clairekinde11clairekinde11
authored
Merge pull request #490 from kinde-oss/Fix/Sp-vs-IDP-signin-for-ECs
Fix/sp vs idp signin for ECs
2 parents 4076721 + 6770b9f commit fd24b8e

File tree

3 files changed

+11
-0
lines changed

3 files changed

+11
-0
lines changed

src/content/docs/authenticate/enterprise-connections/about-enterprise-connections.mdx

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -80,6 +80,11 @@ If you would prefer users explicitly choose to sign in with SSO, you can add a u
8080

8181
Users click the universal button, enter their credentials, and get routed silently to the IdP for verification.
8282

83+
## Enterprise connections only allow service provider log in, not identity provider log in
84+
85+
If you run a B2B business, you might allow your business customers to use their own identity provider setup (like Okta SAML) to access your app. When you set up an enterprise connection to support this, make them aware they can only sign in via your app's auth gateway, with Kinde as the auth service provider.
86+
The customer cannot sign in to your app via their own connection setup - also known as IdP-initiated login.
87+
8388
## Disable an enterprise connection
8489

8590
<Aside type="danger">

src/content/docs/authenticate/enterprise-connections/enterprise-connections-b2b.mdx

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -57,3 +57,8 @@ Here’s what happens:
5757
If both enterprise connection and domain restrictions are in place, both checks must be successful.
5858

5959
</Aside>
60+
61+
## Enterprise connections only allow service provider log in, not identity provider log in
62+
63+
If you set up an enterprise connection for a customer using their IdP credentials, they can only sign in to your app via your app, with Kinde as the auth service provider.
64+
The customer cannot sign in to your app via their own connection setup - known as IdP-initiated login.

src/content/docs/get-started/guides/error-codes.mdx

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -135,6 +135,7 @@ Description
135135

136136
Description
137137
- Error configuring SAML provider
138+
This error also appears if a user tries to sign in to your app via their identity provider setup (IdP-initiated) and not the sign in via the enterprise connection in your app, which is supported by Kinde as service provider (SP-initiated).
138139

139140
Troubleshooting
140141
- Check that the settings in the Kinde enterprise connection are correct

0 commit comments

Comments
 (0)