Closed VisheshBansal closed 1 week ago
Thank you for creating this suggestion! Unfortunately, it is out of scope for this project to support an API for configuration. You can however use Ory Network to configure services via APIs if you want to, or build your own API to config file wrapper. Thank you for understanding!
Preflight checklist
Ory Network Project
No response
Describe your problem
In a self-hosted deployment of Ory Kratos used within a SaaS product, managing user authentication through OIDC (OpenID Connect) providers poses a significant challenge when introducing new providers after users have already registered or logged in using an existing one.
Scenario
Initial Setup
Change in Authentication Method
The Challenge
Lack of Administrative Control
User Dependency on Self-Service
Implications
Describe your ideal solution
Administrative API for OIDC Provider Management
A feature that allows administrators to enable or register new OIDC providers for all existing users programmatically.
Capability to enable or disable OIDC providers on a per-user or group basis as needed.
Seamless Transition Support
Tools to assist in migrating users from one OIDC provider to another without requiring individual action.
Automated processes to associate existing identities with new OIDC providers based on corporate changes.
Workarounds or alternatives
There is no alternative or workaround to do this at this point to my knowledge.
Version
1.3.0
Additional Context
No response