I don’t want to authenticate a user through an organization because I won’t always know what organization the user is going to be in at the time of the redirect to /authorize.
I need to know their org during onExecutePostLogin (or using a rule multifactorAuthentication) so I can present them the MFA challenge based on their organization metadata.
Can I use the management API in a rule or action to look up a user’s org since event.organization is null?