Skip to content

Google and Microsoft Login Single Sign-On

SSO

While logins are maintained by auth0 which does offer support for Google and Microsoft social logins. We have decided to not implement SSO with these services.

Some reasons for this are:

  • All organizations have various policy levels surrounding password rotation and multi-factor authentication.
    • By not allowing social SSO we can ensure that passwords are changed often and MFA is required.
  • If a school social account is compromised we can ensure additional protection for datashutl.
  • Account-Linking social accounts opens potential for account hijacking.
  • High security regulations, like those used in banking, do not permit third-party authentication that cannot be fully controlled by the bank.