Hi everyone - I am new to setting up an IDP but now have a requirement for it and am trying to figure out how (if at all) I can get Salesforce to work for me and my customers.

We are currently in the process of launching our first Salesforce Community using the Napili template. We have been looking at a Product Management app called Aha (www.aha.io) which offers an Idea Portal that is nearly identical in function to Salesforce Ideas, but with a much more robust integration and interface to help our product team deliver on popular ideas. BUT, Out-of-the-box, has its own login system.

They have documentation on their website about both JWT and SAML 2.0 SSO options, but their documentation isn't specific to Salesforce Communities (or Salesforce at all for that matter). Since this is still a bit foreign to me, I am not sure what I can do or can't do to accomplish this within SF. Our goal is to have our customers login to our Salesforce Community using their SFDC Community Username/Password, and then, using SFDC as the Identity Provider, have them logged in immediately using those credentials when clicking the Aha Idea Portal link.

I was hoping someone could take a look at the 2 online resources that Aha provides, one for JWT and one for SAML, and tell me if I can make either of them work to accomplish our goal. If someone could help point me in the right direction that would be great.

JWT: http://support.aha.io/hc/en-us/articles/203636345-Using-JSON-Web-Token-JWT-for-Idea-Portal-single-sign-on-SSO-
SAML 2.0: http://support.aha.io/hc/en-us/articles/205694305-Configure-SAML-2-0-Single-Sign-On-for-Ideas-portal


Can I accomplish my goal of making SFDC an Identity Provider that will allow my customers to log in to Aha! Ideas using their SF Community credentials?