wayne
wayne6mo ago

SSO without restricted domain?

Is there a way to do SSO but without restricted domain? This would effectively allow anyone to sign up to my windmill workspace as long as they have a google account.
3 Replies
wayne
wayne6mo ago
oh I didn't think of leaving the domain empty haha let me try that it looks like by default the allowed domain is the domain of my windmill instance
rubenf
rubenf6mo ago
did you leave it empty?
wayne
wayne6mo ago
yes it works, sorry. I didn't check carefully. This might make the call I had planned with you shorter. I am still testing the flow. My goal is to get a windmill access token in my nextjs app that I pass to the iframe. And then all the apps will have a hidden field: access token that will be populated from the url passed to the iframe. finally, this access token will be used to perform a whois and then I will know which resource to access. This allows me to have one single public app run by admin, but it can work with all users hmm it worked with wayne@bluewind.ai but doesn't work with merwanehamadi@gmail.com hmm I think it's because the app was internal, I put it to external, let's see...