Block IDP initiated flow in Auth0 SP

pradhapreee · September 19, 2019, 12:55pm

Hello All,

We have configured IDP and SP in auth0 and both IDP and SP initiated flow is working as expected and now we have a special scenario in which we need to block IDP initiated flow .
I tried removing configuration of IDP-initiated flow in “SAMLP Identity Provider” connection but I’m getting error on the same. Is there any way we can block IDP initiated flow? Can we write some rule for the same in SP tenant?

Thank you

jatinvaidya · March 12, 2020, 7:46am

What error do you get? So, you want to allow IDP initiated SSO on certain scenarios and not allow on some other scenarios? Please provide some examples.
Ideally, IDP initiated flows should not be used for security reasons
You can easily mimic an IdP initiated SSO by having the user click on a link that takes them to the application’s SSO login endpoint, which in turn will start an SP initiated flow.