Hello,
Would it be possible to redirect users to a SAML account manager page instead of _login for a whole site?
I don't have public read permissions on any content within this site, and users would need to login via SAML to access this site. Applicable permissions have already been configured for a user group of saml created users.
I thought about customising the Login Design applied to the site, however I am not sure this is appropriate.
Couldn't you just do an Apache redirect?
We use a customized matrix login design for _login especially for our preview user account. This is not ideal?
I thought about customising the Login Design applied to the site, however I am not sure this is appropriate.
This is actually the ideal way to do it. But depends if you need some users to login to Matrix using just matrix users instead of SAML bridge, you might need to have a normal login design area applied to a different URL or something so that users can still get into _admin and _edit with their normal matrix accounts (if applicable). You could also do a check on the URL and print a redirect on the login design area if current URL equals _login or not _edit or _admin.
How do you suggest the login design area work with the saml account manager page? The 'login page form' is within the IdP.
We won't need to worry about normal matrix users, as all will have to authenticate externally.
You would just put a redirect on the login design area to the account manager page, either via nesting in a redirect page, some JS, or a meta tag redirect. You might want to just have a fall back as well in case you need to debug anything such as not redirecting if ?debug=1 is in the URL.