Can you do SSO across different domain names?
# support-questions-legacyd
derptacious
11/15/2022, 9:45 AMCan you do SSO across different domain names?
r
rp_st
11/15/2022, 9:45 AMwe can do it across different sub domain names, but not yet across different base domains
rp_st
11/15/2022, 9:46 AMsince we are not yet an oauth provider - but are working on it
rp_st
11/15/2022, 9:46 AMthat being said, you can always customise your way to build that on top of supertokens
d
derptacious
11/15/2022, 9:47 AMidk if i would use oath
derptacious
11/15/2022, 9:47 AMthey're all domains we own and host
derptacious
11/15/2022, 9:47 AMnot trying to integrate with anything we dont have / no social media
derptacious
11/15/2022, 9:47 AMconsolidating login creds for several websites
derptacious
11/15/2022, 9:47 AMinto one SSO
derptacious
11/15/2022, 9:47 AMnot sure if that means account linking or concatenation of DBs yet
r
rp_st
11/15/2022, 9:48 AMright. In that case, the common login domain (lets call it auth.exmaple.com), can send the JWT back to the target app via a redirect URL and then the target app can consume the JWT to make its own session
rp_st
11/15/2022, 9:48 AMit doesn't mean account linking
d
derptacious
11/15/2022, 9:49 AMThe difference between account linking and SSO is about the process right? The accounts can be linked by the users vs SSO is already done by us?
r
rp_st
11/15/2022, 9:49 AMnot really
rp_st
11/15/2022, 9:49 AMaccount linking is allowing a user to login as the same user ID even if they used different methods for logging in
rp_st
11/15/2022, 9:50 AMSSO on the other hand is about allow different apps to login via the same user pool through a common login portal
d
derptacious
11/15/2022, 9:50 AMso if a user already has accounts on 3 different websites with the same or different logins (we dont know), then we are trying to figure out the optimal way of connecting them.
derptacious
11/15/2022, 9:50 AM1) we connect all the ones with the same email address automatically
2) they have to reach out to connect others, or we have some "link your other accounts" feature
r
rp_st
11/15/2022, 9:51 AMi see. So this is account linking. Will the login forms be on each of the the websites or will it all go away and you have just one common login form for all?
d
derptacious
11/15/2022, 9:52 AMnot sure what is optimal yet
derptacious
11/15/2022, 9:52 AMit would be nice if we could link all the accounts for users but some have used different emails across the sites
derptacious
11/15/2022, 9:52 AMEach site would have its own login screen I guess
derptacious
11/15/2022, 9:52 AMand own registration process, but they do all collect the same info during registration
derptacious
11/15/2022, 9:52 AMhmmm
r
rp_st
11/15/2022, 9:53 AMi see. So that would be possible once we have the account linking feature - which is also in progress
rp_st
11/15/2022, 9:53 AMuntil then, you would have to maintain the linking yourself - which can be a pain
d
derptacious
11/15/2022, 9:55 AMgood to know, thanks... I still need to flesh out what the process should be despite the auth solution I choose
r
rp_st
11/15/2022, 9:55 AMfair enough
d
derptacious
11/15/2022, 9:55 AMLike 3 sister websites having the same login/registration page would be confusing to the user...
derptacious
11/15/2022, 9:55 AMSo each one should have its own logo I guess
derptacious
11/15/2022, 9:55 AMEven if there is SSO between them...
derptacious
11/15/2022, 9:56 AMDo you think that qualifies as a SSO / account linking hybrid system?
r
rp_st
11/15/2022, 9:57 AMyea, pretty much - but it really depends on the flow you want
d
derptacious
11/15/2022, 9:58 AMok much apprecaited