Hello, totally new to SSO. Thank you for any help.
We have 50 clients, each with their application housed in their corresponding subdomain… clientA. domain. com , clientB. domain. com , clientC. domain. com , etc.
- If most clients are in the Auth0 database of users, how can I redirect user james to clientA. domain. com (and no other domain), user linda to clientB. domain. com (and no other domain), etc.?
- Does each subdomain need its own login page that “knows” what domain it came from, for purposes of redirect after user validation?
- If a user logs in using a single, standard Auth0 login page, how can we determine what subdomain to send the user to after validation? I’ve read that metadata can house user data, but we’d like to not write metadata to a user’s account. Does the ability to write metadata require the Enterprise plan? Plus, it affects #2, below.
- If some clients already use Okta (Auth0 seems easier for us to integrate so far), we don’t know who those users are. If their user logs in using Okta’s login screen, then Okta should validate them – we need to redirect that Okta-housed user through Auth0, and then figure out what subdomain to send the user to (and no other subdomain). Can you describe how we can make this process work?
Thank you for any help.