Can I use both SAML and OIDC with LoginRadius?

Yes. LoginRadius supports both SAML 2.0 and OIDC protocols. You can choose the one your Salesforce (as IdP) supports best or run parallel connections for different customer environments.

How do I configure multiple Salesforce (as IdP) tenants?

Create separate connections in the LoginRadius Admin Console; one per tenant or organization. Each connection maintains its own certificates, claims, and policies.

Do I need to store tokens manually in my AIOHTTP app?

No. The LoginRadius SDKs and APIs handle token exchange and validation for you. Just store session identifiers securely in your app.

How do I test SSO locally before deploying?

Use your AIOHTTP app’s local environment with the same callback URL registered in LoginRadius. For SAML, ensure HTTPS is used, even for local testing.

Can LoginRadius enforce MFA after Salesforce (as IdP) login?

Yes. You can enable step-up MFA in the LoginRadius Admin Console to require an additional factor even after the user is authenticated by Salesforce (as IdP).

What if user attributes aren’t syncing correctly?

Check your attribute mapping in both Salesforce (as IdP) and LoginRadius. Ensure the claim names match (for example, email, name, groups) and are included in the IdP’s assertion or ID token.

Does LoginRadius support SCIM provisioning with Salesforce (as IdP)?

Yes. LoginRadius supports SCIM 2.0 to automatically create, update, or deactivate users and groups when changes occur in Salesforce (as IdP).

AIOHTTP

Implement SSO with Salesforce (as IdP) using AIOHTTP

See how to connect Salesforce (as IdP) to your AIOHTTP app and deliver seamless enterprise logins.

Book a Demo

Single sign-on Docs

How it Works

LoginRadius is a customer identity platform that makes it easy to add Single Sign-On (SSO) to your applications. It supports standard protocols like SAML and OIDC, allowing users to sign in once and access multiple apps securely.

Integrating LoginRadius with your AIOHTTP application helps you:

Set up enterprise SSO with minimal configuration.
Manage authentication centrally for all your SaaS environments.
Improve security without adding complexity to your code.

Quick Start Guide

Integrating LoginRadius with Salesforce (as IdP) allows your AIOHTTP application to authenticate users through enterprise identity providers using SAML 2.0 or OIDC.

Once connected, users can log in with their corporate credentials, while LoginRadius manages tokens, sessions, and policy enforcement behind the scenes.

Install Python SDK

$pip install loginradius-v2-sdk

Set Up Identity Provider

Create an application in Salesforce (as IdP) and configure the SAML or OIDC settings. Add the LoginRadius ACS URL, Entity ID, and redirect URIs, then download the IdP metadata.

Add Identity Provider to LoginRadius

Go to Authentication → Identity Providers → Custom Identity Providers in the LoginRadius Admin Console. Create a new SAML/OIDC connection and upload the metadata or discovery details from Salesforce (as IdP).

Integrate LoginRadius with Go

Use the LoginRadius SDK or REST API for Go to handle authentication redirects, callbacks, and token validation. Map user claims such as email, name, and groups from Salesforce (as IdP) to LoginRadius and your app.

Test and Deploy

Test the entire authentication flow locally. Once verified, deploy your AIOHTTP application and confirm that users can log in through Salesforce (as IdP) seamlessly.

Supported Protocols

SAML

Utilize built-in SAML configurations to customize LoginRadius as an Identity Provider (IdP) for your applications, as well as integrate with external IDPs.

Learn More

OAuth

OIDC & JWT

Supported Protocols

SAML

Utilize built-in SAML configurations to customize LoginRadius as an Identity Provider (IdP) for your applications, as well as integrate with external IDPs.

OAuth

With LoginRadius built-in support for OAuth, enable user authentication and secure authorization for your or third-party applications.

OIDC & JWT

Leverage OpenID Connect with LoginRadius to streamline user authentication. Enable your applications to verify user identities and securely access user profile data.

Key Highlights Section

Integrates quickly with AIOHTTP using LoginRadius SDKs and REST APIs.

HTTP 200

SDKs and Libraries

Seamlessly integrate federation into your apps with open-source SDKs and libraries for Android, iOS, and popular web technologies and frameworks.

API Reference

Developer-friendly RESTful APIs and documentation that help you get going with any implementation.

Node.jsRubyPythonGoPHPJava.NETcURL

Automated Token & Session Management

Simplifies token handling, session management, and user claim mapping.

Advanced Multi-Factor Authentication

Includes built-in options for MFA, passkeys, and adaptive authentication.

Seamless SCIM provisioning

Offers SCIM provisioning to automatically sync users and groups.

Centralized Governance and Policies

Provides centralized configuration and policy control through the LoginRadius Admin Console.

Enterprise-Grade Performance

Built for B2B SaaS scale; offers tenant isolation, audit logs, and 99.99% uptime SLAs.

Troubleshooting & Quick Fixes

Login Loop After Redirect

Check callback URLs and cookie domain settings.

401 Unauthorized or Invalid Token

Verify client ID, issuer, and audience.

User Assigned but Can’t Log In

Ensure proper user assignment and attribute mapping.

Missing or Incorrect User Attributes

Verify attribute mappings in both Salesforce (as IdP) and LoginRadius.

SAML Certificate or Signature Error

Update or re-upload certificates and reimport metadata after rotation.

MFA or Passkey Not Triggering

Ensure MFA is enabled and configured correctly.

Interactive Resources

FAQs

Customer Identity, Simplified.

No Complexity. No Limits.

Thousands of businesses trust LoginRadius for reliable customer identity. Easy to integrate, effortless to scale.

See how simple identity management can be. Start today!

Free Trial

Contact Sales

Enterprise SSO

Salesforce (as IdP)

AIOHTTP

Implement SSO with Salesforce (as IdP) using AIOHTTP

How it Works

Quick Start Guide

Install Python SDK

Set Up Identity Provider

Add Identity Provider to LoginRadius

Integrate LoginRadius with Go

Test and Deploy

Supported Protocols

SAML

OAuth

OIDC & JWT

Supported Protocols

SAML

OAuth

OIDC & JWT

Key Highlights Section

SDKs and Libraries

API Reference

Simplifies token handling, session management, and user claim mapping.

Includes built-in options for MFA, passkeys, and adaptive authentication.

Offers SCIM provisioning to automatically sync users and groups.

Provides centralized configuration and policy control through the LoginRadius Admin Console.

Built for B2B SaaS scale; offers tenant isolation, audit logs, and 99.99% uptime SLAs.

Troubleshooting & Quick Fixes

Login Loop After Redirect

401 Unauthorized or Invalid Token

User Assigned but Can’t Log In

Missing or Incorrect User Attributes

SAML Certificate or Signature Error

MFA or Passkey Not Triggering

Interactive Resources

Go SDK API Reference

Sample App on GitHub

SAML/OIDC Protocol Docs

Integrations and Connectors

FAQs

Can I use both SAML and OIDC with LoginRadius?

Do I need to store tokens manually in my AIOHTTP app?

Can LoginRadius enforce MFA after Salesforce (as IdP) login?

Does LoginRadius support SCIM provisioning with Salesforce (as IdP)?

How do I configure multiple Salesforce (as IdP) tenants?

How do I test SSO locally before deploying?

What if user attributes aren’t syncing correctly?

Customer Identity, Simplified.