add identity provider mode setting

2026-02-19 11:26:37 +00:00 · 2026-02-11 18:04:56 -08:00
parent 937f6fdae8
commit 143acbae48
17 changed files with 481 additions and 395 deletions
--- a/src/app/auth/login/page.tsx
+++ b/src/app/auth/login/page.tsx
@@ -76,12 +76,13 @@ export default async function Page(props: {

    // Only use SmartLoginForm if NOT (OSS build OR org-only IdP enabled)
    const useSmartLogin =
-        build === "saas" || (build === "enterprise" && env.flags.useOrgOnlyIdp);
+        build === "saas" ||
+        (build === "enterprise" && env.app.identityProviderMode === "org");

    let loginIdps: LoginFormIDP[] = [];
    if (!useSmartLogin) {
        // Load IdPs for DashboardLoginForm (OSS or org-only IdP mode)
-        if (build === "oss" || !env.flags.useOrgOnlyIdp) {
+        if (build === "oss" || env.app.identityProviderMode !== "org") {
            const idpsRes = await cache(
                async () =>
                    await priv.get<AxiosResponse<ListIdpsResponse>>("/idp")
@@ -165,7 +166,8 @@ export default async function Page(props: {
                    forceLogin={forceLogin}
                    showOrgLogin={
                        !isInvite &&
-                        (build === "saas" || env.flags.useOrgOnlyIdp)
+                        (build === "saas" ||
+                            env.app.identityProviderMode === "org")
                    }
                    searchParams={searchParams}
                    defaultUser={defaultUser}
@@ -188,7 +190,8 @@ export default async function Page(props: {
                </p>
            )}

-            {!isInvite && (build === "saas" || env.flags.useOrgOnlyIdp) ? (
+            {!isInvite &&
+            (build === "saas" || env.app.identityProviderMode === "org") ? (
                <OrgSignInLink
                    href={`/auth/org${buildQueryString(searchParams)}`}
                    linkText={t("orgAuthSignInToOrg")}
--- a/src/app/auth/org/[orgId]/page.tsx
+++ b/src/app/auth/org/[orgId]/page.tsx
@@ -24,7 +24,7 @@ export default async function OrgAuthPage(props: {

    const env = pullEnv();

-    if (build !== "saas" && !env.flags.useOrgOnlyIdp) {
+    if (build !== "saas" && env.app.identityProviderMode !== "org") {
        const queryString = new URLSearchParams(searchParams as any).toString();
        redirect(`/auth/login${queryString ? `?${queryString}` : ""}`);
    }
--- a/src/app/auth/org/page.tsx
+++ b/src/app/auth/org/page.tsx
@@ -35,7 +35,7 @@ export default async function OrgAuthPage(props: {

    const env = pullEnv();

-    if (build !== "saas" && !env.flags.useOrgOnlyIdp) {
+    if (build !== "saas" && env.app.identityProviderMode !== "org") {
        redirect("/");
    }

--- a/src/app/auth/resource/[resourceGuid]/page.tsx
+++ b/src/app/auth/resource/[resourceGuid]/page.tsx
@@ -202,7 +202,7 @@ export default async function ResourceAuthPage(props: {
    }

    let loginIdps: LoginFormIDP[] = [];
-    if (build === "saas" || env.flags.useOrgOnlyIdp) {
+    if (build === "saas" || env.app.identityProviderMode === "org") {
        if (subscribed) {
            const idpsRes = await cache(
                async () =>