Hi ORY team, I saw some UI changes in the console ...
# ory-networkb
boundless-artist-2317
11/06/2024, 5:03 PMHi ORY team, I saw some UI changes in the console related to Enterprise SSO, so I'm wondering whether the fixes for the form issues have been deployed?
b
bland-eye-99092
11/06/2024, 5:23 PMI believe a few changes have been deployed, I think you mean this issue, correct?
b
boundless-artist-2317
11/06/2024, 5:24 PMYes, that issue
b
bland-eye-99092
11/06/2024, 5:24 PM@narrow-van-43826 do you know if this was fixed already?
b
boundless-artist-2317
11/11/2024, 10:06 AMGood morning @bland-eye-99092 @narrow-van-43826, any update on the fixes for the linked issue (orynetwork/issues/399)? Thanks.
n
narrow-van-43826
11/11/2024, 10:16 AMHi, I have fixed some issues around Enterprise SSO, including the one you described in https://github.com/ory/network/issues/399. The fixes should land in production today or tomorrow.
b
boundless-artist-2317
11/11/2024, 10:19 AMCool, thanks for the update.
boundless-artist-2317
11/14/2024, 10:39 AMRe-opening this issue as I'm still running into login issues when using SSO. What I didi:
1. Removed the Google OIDC connection for my Enterprise SSO organisation
2. On the same organisation, setup a new Google OIDC connection
3. The OIDC connection now has a different redirect URI
4. Try to sign in with SSO
5. Run into this prompt asking me to link my account by providing a password
6. Can't provide a password because my account has no password auth method (only the outdated OIDC auth method)
7. Therefore, can't link account and so can't login using the new OIDC connection
boundless-artist-2317
11/14/2024, 10:47 AMCouldn't reopen the old ticket so created a new one: https://github.com/ory/network/issues/400
boundless-artist-2317
11/14/2024, 10:53 AMAnother point, when login hints are not enabled, no form is displayed.
@bland-eye-99092 @narrow-van-43826 Lmk if you have seen this general linking bug before (FYI: also added these details in the bug report).
n
narrow-van-43826
01/16/2025, 8:10 AMThanks! I think we need to discuss how to solve these edge cases:
• When you disable login hints, the system won't tell you which account has which credentials. This means that the account linking flow will just not work, because here the system needs to tell you information it must not give.
• When you delete an OIDC provider, the identities that logged in through that OIDC provider can't do the account linking flow. In this case, I think recovery should still work. Did you try?