+ Start a Discussion
Morgan MarcheseMorgan Marchese 

Salesforce as Identity Provider for Aha.io? (Aha supports JWT and SAML 2.0)

Hi everyone - I am new to setting up an IDP but now have a requirement for it and am trying to figure out how (if at all) I can get Salesforce to work for me and my customers.

We are currently in the process of launching our first Salesforce Community using the Napili template. We have been looking at a Product Management app called Aha (www.aha.io) which offers an Idea Portal that is nearly identical in function to Salesforce Ideas, but with a much more robust integration and interface to help our product team deliver on popular ideas. BUT, Out-of-the-box, has its own login system.

They have documentation on their website about both JWT and SAML 2.0 SSO options, but their documentation isn't specific to Salesforce Communities (or Salesforce at all for that matter). Since this is still a bit foreign to me, I am not sure what I can do or can't do to accomplish this within SF. Our goal is to have our customers login to our Salesforce Community using their SFDC Community Username/Password, and then, using SFDC as the Identity Provider, have them logged in immediately using those credentials when clicking the Aha Idea Portal link.

I was hoping someone could take a look at the 2 online resources that Aha provides, one for JWT and one for SAML, and tell me if I can make either of them work to accomplish our goal. If someone could help point me in the right direction that would be great.

JWT: http://support.aha.io/hc/en-us/articles/203636345-Using-JSON-Web-Token-JWT-for-Idea-Portal-single-sign-on-SSO-
SAML 2.0: http://support.aha.io/hc/en-us/articles/205694305-Configure-SAML-2-0-Single-Sign-On-for-Ideas-portal

Can I accomplish my goal of making SFDC an Identity Provider that will allow my customers to log in to Aha! Ideas using their SF Community credentials?
Hi Morgan,

Full disclosure: I have never set up SFDC as an identity provider myself. That said, I gave these documents a quick read and they seem perfectly suited for the integration that you've outlined above.

To get started I would go through the Identity Provider documentation provided by Salesforce: https://help.salesforce.com/htviewhelpdoc?err=1&id=identity_provider_about.htm&siteLang=en_US (https://help.salesforce.com/htviewhelpdoc?err=1&id=identity_provider_about.htm&siteLang=en_US)

Here is another resource that might prove useful: https://help.salesforce.com/apex/HTViewHelpDoc?id=identity_provider_enable.htm&language=en (https://help.salesforce.com/apex/HTViewHelpDoc?id=identity_provider_enable.htm&language=en)

Finally, if you're still stuck Pat Patterson & Dave Carroll (Salesforce Developer Evangelists) gave a workshop on the Salesforce Identity Platform and their slides are available here: http://www.slideshare.net/metadaddy/salesforce-identity-workshop

Best of luck and let us know how it turns out!
Michael SahmMichael Sahm
Were you able to set this up as planned?