Identity Federation

Federated Apps

Federated Applications in Descope enable you to establish secure Single Sign-On (SSO) connections between your applications and Descope's authentication system. This allows users to authenticate once with Descope and gain access to multiple connected applications without needing to log in separately to each one.

Descope supports two main types of federated applications:

  1. OIDC Applications
  2. SAML Applications

When connecting to an application using either OIDC or SAML, Descope acts as the Federated Identity Provider (IdP), allowing you to unify your users' login experience across multiple applications.

You can configure and manage these federated applications through the Federated Apps tab in the Descope Console, or through our Management SDKs.

Note

Configuring federated applications is a Pro/Enterprise-tier feature.

Associating Users with Applications

Descope allows you to control which users can access specific federated applications either through the console (as pictured below), or with our management SDKs.

OIDC federated authentication flow with Descope

Was this helpful?

Backend SDK

Use Descope Backend SDKs to add authentication to your app with your own developed backend APIs.

OIDC

Learn to set up OIDC applications with Descope. Follow our step-by-step guides for secure and efficient OIDC integration.

On this page