Canny

⚠️ For info on SSO authentication integrations like Okta, Microsoft Entra ID, OneLogin, etc, <a href="https://help.canny.io/en/collections/2445416-authentication-tools" target="_blank" rel="nofollow noopener noreferrer">click here</a> ⚠️

Automatically authenticate your users to provide a seamless feedback experience when using a <a href="https://help.canny.io/en/articles/1058407-the-canny-widget" rel="nofollow noopener noreferrer" target="_blank">Canny widget</a>. Canny offers two primary options for user authentication:

The <a href="https://help.canny.io/en/articles/1626097-canny-identify" rel="nofollow noopener noreferrer" target="_blank">Canny Identify SDK</a> for automatic background authentication and

Single Sign-On (SSO) for direct user login.

1. The <a href="https://help.canny.io/en/articles/1626097-canny-identify" rel="nofollow noopener noreferrer" target="_blank">Canny Identify SDK</a> for automatic background authentication and 
2. Single Sign-On (SSO) for direct user login.

We also recommend setting up <a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" rel="nofollow noopener noreferrer" target="_blank">an SSO redirect</a> to authenticate unidentified users.

Remove hurdles for users who just want to leave feedback

Ensure you're hearing from the right people

Regular testing of authentication flows to identify and resolve potential issues

Ensuring SDK and SSO configurations follow the latest security standards

- Remove hurdles for users who just want to leave feedback
- Ensure you're hearing from the right people
- Make Canny feel native to your product
- Regular testing of authentication flows to identify and resolve potential issues
- Ensuring SDK and SSO configurations follow the latest security standards

With SSO enabled, a user will not have to log into Canny or identify themselves. They'll just be able to click and leave feedback.

Technical documentation for Canny widgets

Send a user to your site for authentication before routing them back to Canny to participate, after you have identified them. This method enhances the user experience by keeping them within your website's interface while ensuring secure authentication through your backend system.

___________________________________________________________

1. The first step is to install <a href="https://developers.canny.io/install/widget/web" target="_blank" rel="nofollow noopener noreferrer">the web widget</a> into your product.

2. Once that's complete, you can follow the steps <a href="https://developers.canny.io/install/widget/sso" target="_blank" rel="nofollow noopener noreferrer">here</a>. You'll need to:

b. Generate tokens on your server c. Validate your SSO Token

3. Lastly, go to the <a href="%E2%80%8Bhttps://canny.io/redirect?to=%2Fadmin%2Fsettings%2Fboards" target="_blank" rel="nofollow noopener noreferrer">Boards tab</a> in your Canny settings and select Widget to add the URL where you're embedding the Canny widget:

Canny will also send users to that URL when they click on messages from Canny. 

NOTE: When an SSO token is generated, an optional <code>exp</code> (expiration) field can be included to expire the token at a set time.

Q: What are the main benefits of using the Identify SDK over SSO?

A: The Identify SDK enables behind-the-scenes automatic authentication, while SSO is used for explicit in-page logins. 

Q: Can these two methods be combined?

A: Yes, you can integrate both methods to address different user interactions and scenarios effectively.

Test authentication flows regularly to identify and resolve potential issues.

Provide clear user guidance if errors occur during the authentication process.

Regularly update SDK and SSO configurations to align with security best practices.

- Test authentication flows regularly to identify and resolve potential issues.
- Provide clear user guidance if errors occur during the authentication process.
- Regularly update SDK and SSO configurations to align with security best practices.

<a href="https://help.canny.io/en/articles/1058407-canny-widget-advanced" target="_blank" rel="nofollow noopener noreferrer">Canny Widget</a>

<a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" target="_blank" rel="nofollow noopener noreferrer">Setting Up Single Sign-On (SSO) Redirect</a>

<a href="https://help.canny.io/en/articles/1627404-board-customizations" target="_blank" rel="nofollow noopener noreferrer">Board Customizations</a>

- <a href="https://help.canny.io/en/articles/1058407-canny-widget-advanced" target="_blank" rel="nofollow noopener noreferrer">Canny Widget</a>
- <a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" target="_blank" rel="nofollow noopener noreferrer">Setting Up Single Sign-On (SSO) Redirect</a>
- <a href="https://help.canny.io/en/articles/1627404-board-customizations" target="_blank" rel="nofollow noopener noreferrer">Board Customizations</a>

What is Canny single sign-on (SSO) and how to implement it

Single Sign-On (SSO)

Canny Home

Canny Feedback

Back to Canny

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Single Sign-On (SSO)

Overview

Benefits

SSO for Widgets

SSO Redirects

Implementing SSO for widgets

FAQs

Best Practices for Authentication

Single Sign-On (SSO)

Overview

Benefits

SSO for Widgets

SSO Redirects

Implementing SSO for widgets

FAQs

Best Practices for Authentication

Related Articles: