Canny

⚠️ For info on SSO authentication integrations like Okta, Microsoft Entra ID, OneLogin, etc, <a href="https://help.canny.io/en/collections/2445416-authentication-tools" target="_blank" rel="nofollow noopener noreferrer">click here</a> ⚠️

Automatically authenticate your users to provide a seamless feedback experience when using a <a href="https://help.canny.io/en/articles/1058407-the-canny-widget" target="_blank" rel="nofollow noopener noreferrer">Canny widget</a>. Canny offers two primary options for user authentication:

The <a href="https://help.canny.io/en/articles/1626097-canny-identify" target="_blank" rel="nofollow noopener noreferrer">Canny Identify SDK</a> for automatic background authentication and

Single Sign-On (SSO) for direct user login.

1. The <a href="https://help.canny.io/en/articles/1626097-canny-identify" target="_blank" rel="nofollow noopener noreferrer">Canny Identify SDK</a> for automatic background authentication and 
2. Single Sign-On (SSO) for direct user login.

We also recommend setting up <a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" target="_blank" rel="nofollow noopener noreferrer">an SSO redirect</a> to authenticate unidentified users.

Remove hurdles for users who just want to leave feedback

Ensure you're hearing from the right people

Regular testing of authentication flows to identify and resolve potential issues

Ensuring SDK and SSO configurations follow the latest security standards

- Remove hurdles for users who just want to leave feedback
- Ensure you're hearing from the right people
- Make Canny feel native to your product
- Regular testing of authentication flows to identify and resolve potential issues
- Ensuring SDK and SSO configurations follow the latest security standards

With SSO enabled, a user will not have to log into Canny or identify themselves. They'll just be able to click and leave feedback.

Technical documentation for Canny widgets

Send a user to your site for authentication before routing them back to Canny to participate, after you have identified them. This method enhances the user experience by keeping them within your website's interface while ensuring secure authentication through your backend system.

___________________________________________________________

1. The first step is to install <a href="https://developers.canny.io/install/widget/web" target="_blank" rel="nofollow noopener noreferrer">the web widget</a> into your product.

2. Once that's complete, you can follow the steps <a href="https://developers.canny.io/install/widget/sso" target="_blank" rel="nofollow noopener noreferrer">here</a>. You'll need to:

b. Generate tokens on your server c. Validate your SSO Token

3. Lastly, go to the <a href="%E2%80%8Bhttps://canny.io/redirect?to=%2Fadmin%2Fsettings%2Fboards" target="_blank" rel="nofollow noopener noreferrer">Boards tab</a> in your Canny settings and select Widget to add the URL where you're embedding the Canny widget:

Canny will also send users to that URL when they click on messages from Canny.

If SSO is not correctly set up, it may lead to errors when submitting feedback or accessing features. Here are steps to troubleshoot SSO setup issues:

Verify the SSO Configuration: Request your technical team to review the current SSO setup to ensure it is passing correct user data to Canny.

Consult Official Documentation: Review Canny’s SSO setup guide at <a href="https://developers.canny.io/install/widget/sso" rel="nofollow noopener noreferrer" target="_blank">developers.canny.io/install/widget/sso</a> for detailed steps and best practices.

1. Verify the SSO Configuration: Request your technical team to review the current SSO setup to ensure it is passing correct user data to Canny.
2. Consult Official Documentation: Review Canny’s SSO setup guide at <a href="https://developers.canny.io/install/widget/sso" rel="nofollow noopener noreferrer" target="_blank">developers.canny.io/install/widget/sso</a> for detailed steps and best practices.

NOTE: When an SSO token is generated, an optional <code>exp</code> (expiration) field can be included to expire the token at a set time.

Q: What are the main benefits of using the Identify SDK over SSO?

A: The Identify SDK enables behind-the-scenes automatic authentication, while SSO is used for explicit in-page logins. 

Q: Can these two methods be combined?

A: Yes, you can integrate both methods to address different user interactions and scenarios effectively.

Test authentication flows regularly to identify and resolve potential issues.

Provide clear user guidance if errors occur during the authentication process.

Regularly update SDK and SSO configurations to align with security best practices.

Verify the SSO configuration regularly by having your technical team review the setup to ensure correct user data is passed and integration remains seamless.

- Test authentication flows regularly to identify and resolve potential issues.
- Provide clear user guidance if errors occur during the authentication process.
- Regularly update SDK and SSO configurations to align with security best practices.
- Verify the SSO configuration regularly by having your technical team review the setup to ensure correct user data is passed and integration remains seamless.

<a href="https://help.canny.io/en/articles/1058407-canny-widget-advanced" rel="nofollow noopener noreferrer" target="_blank">Canny Widget</a>

<a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" rel="nofollow noopener noreferrer" target="_blank">Setting Up Single Sign-On (SSO) Redirect</a>

<a href="https://help.canny.io/en/articles/1627404-board-customizations" rel="nofollow noopener noreferrer" target="_blank">Board Customizations</a>

<a href="https://developers.canny.io/account-settings" rel="nofollow noopener noreferrer" target="_blank">Managing Account and Email Settings</a>

<a href="https://developers.canny.io/setup-feedback-boards" rel="nofollow noopener noreferrer" target="_blank">How to Set Up and Configure Feedback Boards in Canny</a>

- <a href="https://help.canny.io/en/articles/1058407-canny-widget-advanced" rel="nofollow noopener noreferrer" target="_blank">Canny Widget</a>
- <a href="https://help.canny.io/en/articles/1961021-setting-up-single-sign-on-sso-redirect" rel="nofollow noopener noreferrer" target="_blank">Setting Up Single Sign-On (SSO) Redirect</a>
- <a href="https://help.canny.io/en/articles/1627404-board-customizations" rel="nofollow noopener noreferrer" target="_blank">Board Customizations</a>
- <a href="https://developers.canny.io/account-settings" rel="nofollow noopener noreferrer" target="_blank">Managing Account and Email Settings</a>
- <a href="https://developers.canny.io/setup-feedback-boards" rel="nofollow noopener noreferrer" target="_blank">How to Set Up and Configure Feedback Boards in Canny</a>

What is Canny single sign-on (SSO) and how to implement it

Single Sign-On (SSO)

Canny Home

Canny Feedback

Back to Canny

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Single Sign-On (SSO)

Overview

Benefits

SSO for Widgets

SSO Redirects

Implementing SSO for widgets

Resolving Issues with SSO Setup

FAQs

Best Practices for Authentication

Single Sign-On (SSO)

Overview

Benefits

SSO for Widgets

SSO Redirects

Implementing SSO for widgets

Resolving Issues with SSO Setup

FAQs

Best Practices for Authentication

Related Articles: