Often, customers using Okta need more flexibility in the tiles that are presented to their users than the Atlassian Cloud application in Okta offers. The Atlassian Cloud application will display one tile for every product that is checked under the General tab in the section Display the following links.
However, Loom is not currently available in the Okta Atlassian Cloud integration (OIN), so it cannot be configured in the same manner.
The Okta Bookmark application provides a workaround, allowing the flexibility to create tiles that are shown to a subset of users. You can read about the process for creating a Bookmark app on the Okta page How to create a Bookmark app.
However, just creating a bookmark application and pointing it to a Loom workspace will not authenticate a user.
How to create the bookmark URL
You can use the Okta SSO URL and pass the RelayState to authenticate the user and redirect them to Loom. This is documented in the Okta page How to send a custom RelayState to application through IDP-initiated authentication URL.
The following are the steps to build the URL:
-
Go to the SAML configuration in Atlassian Admin Hub and copy the Identity provider single sign-on URL value. For our purposes, imagine that this is
https://company.okta.com/app/atlassian/exk1mdq3xigRjmhJe0h8/sso/saml
. URL-encode the URL of the instance that you would like to direct the user to. For our purposes, imagine that this is the following.
Before –https://company.atlassian.net/wiki/
After –https%3A%2F%2Fcompany.atlassian.net%2Fwiki%2F
Your final URL will pass the encoded instance URL through the RelayState query string parameter to the Identity provider single sign-on URL. In this example, the final URL would be the following.
https://company.okta.com/app/atlassian/exk1mdq3xigRjmhJe0h8/sso/saml?RelayState=https%3A%2F%2Fcompany.atlassian.net%2Fwiki%2F