User login with SSO enabled CA Flowdock

Document ID : KB000057623
Last Modified Date : 14/02/2018
Show Technical Document Details

Issue

What will the users see when trying to login to CA Flowdock after the SSO has been enabled?

Resolution

Please see also?https://www.flowdock.com/help/sso_admin??for more information.
?
Situation A: User has been logged in to CA Flowdock at least once during the past 2 weeks.

=> User will just enter CA Flowdock without being asked to re-authenticate. Nothing changes until he signs out and then tries to log in again (see other situations).?

Situation B: User tries to login via flowdock.com/login.?

=>?After successful login by usual authentication, he gets the following screen:
User-added image
?
This is an example with Okta as SSO provider. With other providers the look of the screen would be the same.
Clicking on <Connect to sso provider> will redirect to the login of the SSO provider.
After Authenticating the CA Flowdock user and the SSO user will be connected (and redirected to the CA Flowdock App).
Clicking on <Continue without pairing> will proceed to CA Flowdock itself. The next time the user logs in, he will be presented with the same screen again.
?
Situation C: User hasn?t connected his CA Flowdock account with the SSO provider yet, and tries to login via SP or IdP SSO URL.

=> If the user session in CA Flowdock is still valid, the user will be presented with the following screen:
User-added image
?
If the CA Flowdock session is no longer valid, and he uses the IdP URL, the user will need to login to the SSO provider first (if no SSO session is still valid), after that he will receive the following screen:
User-added image
?
?
AFTER
After pairing the CA Flowdock User with the SSO user account, when trying to log in the next time, the user will be redirected to the SSO provider login after giving his user email. If there is still a valid SSO session with the provider, the user will be directly put through to CA Flowdock.