Single Signon using OpenID Connect

OpenID Connect (http://openid.net/connect/) is the modern variant of SAML, and should be supported for SSO login for aha itself as well as for idea portals.  OIDC is simpler to setup than SAML, and it is possible that a wider range of Identity Provider (IDPs) can be used by your customers.  

  • Jørgen Binningsbø
  • Jun 13 2017
  • Unlikely to implement
Release time frame
  • Jun 16, 2017

    Admin Response

    Thank you for your idea. As noted, SAML 2.0 is currently supported for SSO. Given this option and other priorities we are unlikely to implement this idea at this time. We will however continue to monitor it for community feedback. We hope you can understand.

  • Attach files
  • Chris Hill commented
    September 21, 2017 10:43

    We would love this functionality!

  • Dave Mungai commented
    April 5, 2018 14:59

    We would find this feature extremely valuable as well.

  • Andrew Dimmick commented
    August 8, 2018 23:26

    We use OpenID connect with Slack, and it provides the ability for us to manage access rights with AD group membership cleanly and simply.  

    Without this, we are left using the fire-forget/inflexible option of attributes, which can't deal with nested orgs and various roles for individuals.

     

    OpenID connect lets me assign a user as an owner of product x, reviewer of y,z, and administrator of product line a from direct group mappings.  This lets us quickly terminate rights for exiting employees, quickly re-assign rights for employees that move from one project to another.   Without it, we need to do all of this manually