If user enters the endpoint without OIDC flow, we currently show either an error page or redirect the user elsewhere after login, depending on whether custom domain is set.
This page is not helpful for the end-user as because of the jargon in the message.
Proposal
To add a configuration in Authgear, for direct access:
Show a simple page with the brand logo and a button to a URL (Default)
a link to home page configured by the admin, no link no button
Show the Login page and Redirect to another URL (Selectable when custom domain is set)
a link configured by the admin
Current behaviour with "Post Login Link"
Show the Login page and Redirect to settings page (Selectable when custom domain is set)
Current behaviour without "Post Login Link"
Options 2,3 are greyed out with hints: “custom domain required"
The config page will be placed in "Advanced" > "Endpoint Direct Access", the page should clearly describe the config is controlling the behaviour for end-user accessing the endpoint url directly.
linear[bot]
commented
1 week ago
If user enters the endpoint without OIDC flow, we currently show either an error page or redirect the user elsewhere after login, depending on whether custom domain is set.
This page is not helpful for the end-user as because of the jargon in the message.
Proposal
To add a configuration in Authgear, for direct access:
Options 2,3 are greyed out with hints: “custom domain required"
The config page will be placed in "Advanced" > "Endpoint Direct Access", the page should clearly describe the config is controlling the behaviour for end-user accessing the endpoint url directly.