SSO without restricted domain?
Is there a way to do SSO but without restricted domain? This would effectively allow anyone to sign up to my windmill workspace as long as they have a google account.
3 Replies
oh I didn't think of leaving the domain empty haha
let me try that
it looks like by default the allowed domain is the domain of my windmill instance
did you leave it empty?
yes
it works, sorry.
I didn't check carefully.
This might make the call I had planned with you shorter.
I am still testing the flow.
My goal is to get a windmill access token in my nextjs app that I pass to the iframe.
And then all the apps will have a hidden field: access token that will be populated from the url passed to the iframe.
finally, this access token will be used to perform a whois and then I will know which resource to access.
This allows me to have one single public app run by admin, but it can work with all users
hmm it worked with
wayne@bluewind.ai
but doesn't work with merwanehamadi@gmail.com
hmm I think it's because the app was internal, I put it to external, let's see...