Update managed auth docs for CUA support, PATCH endpoint, and auto-allowed SSO domains#304
Open
masnwilliams wants to merge 3 commits intomainfrom
Open
Update managed auth docs for CUA support, PATCH endpoint, and auto-allowed SSO domains#304masnwilliams wants to merge 3 commits intomainfrom
masnwilliams wants to merge 3 commits intomainfrom
Conversation
…lowed SSO domains
- Document new PATCH /auth/connections/{id} endpoint for updating connections
- Add sign_in_options and sign_in_option_id for account/org pickers
- Add sso_provider as CUA-preferred alternative to sso_button_selector
- Update SSO docs to reflect auto-allowed provider domains
- Fix health check intervals (Start-Up is 20 min, not 15 min)
- Add FAQ entry for trial org access to managed auth
Contributor
|
Preview deployment for your docs. Learn more about Mintlify Previews.
|
…ements - Document sign_in_options field with id/label/description and distinguishing note from MFA - Document sso_provider as singular string state field with distinguishing note from SSO buttons - Add Updating Connections section with PATCH fields table and SDK examples - Add sign-in options FAQ linking to programmatic docs - Clarify health check intervals as plan minimums (users can set higher) - Add common error codes (credentials_invalid, bot_detected, captcha_blocked) to failure FAQ Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Risk assessment: Very Low.
Evidence from the diff:
- Changed files are limited to documentation pages under
auth/*.mdx. - No application/runtime code, build config, dependency, infra, auth enforcement logic, or permission checks were modified.
- Edits are content updates and examples (SSO domain guidance, PATCH/update docs, sign-in option docs, FAQ clarifications).
Blast radius:
- User-facing documentation accuracy only.
- Potential impact is guidance correctness, not production behavior.
Based on the current diff, this PR is safe to approve under the Very Low risk criteria.
Sent by Cursor Automation: Assign PR reviewers
- Add scope positioning in overview.mdx: Managed Auth automates login flows - Add tips after complete example in programmatic.mdx: SSO/MFA/account picker pointer and hosted_url fallback - Add passkey error code (unsupported_auth_method) to warning in faq.mdx - Add force re-auth FAQ with .login() code snippet - Add scope FAQ: what types of flows Managed Auth supports Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
masnwilliams
requested review from
dprevoznik and
juecd
and removed request for
dprevoznik and
juecd
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Updates managed auth documentation to reflect recent merged PRs in kernel/kernel:
New features documented
login_url,credential,allowed_domains,health_check_interval,save_credentials,proxy). Added "Updating a Connection" section to hosted-ui.mdx.sign_in_optionsfield,sign_in_option_idsubmit parameter). Added new section to programmatic.mdx.sso_providersubmit parameter — CUA-preferred alternative tosso_button_selectorfor SSO. Added new section to programmatic.mdx.Corrections
accounts.google.comtoallowed_domains.New FAQ entries
PRs reflected
Files changed
auth/overview.mdx— Updated SSO bullet pointauth/hosted-ui.mdx— Auto-allowed SSO domains, new "Updating a Connection" sectionauth/programmatic.mdx— SSO provider (CUA), sign-in options, updated step referenceauth/credentials.mdx— Auto-allowed SSO domains in SSO/OAuth exampleauth/faq.mdx— Fixed health check intervals, added trial access FAQNote
Low Risk
Low risk since changes are documentation-only, but incorrect guidance could impact integrators if any API behavior described here is outdated.
Overview
Documents new Managed Auth capabilities: updating connections via
PATCH /auth/connections/{id}/auth.connections.update, and expanded programmatic flow handling for SSO provider submission (sso_provider) and account/org pickers (sign_in_options/sign_in_option_id).Updates SSO guidance across
credentials,hosted-ui,overview, andprogrammaticto reflect that common OAuth provider domains are auto-allowed (withallowed_domainsreserved for custom providers), and refreshes the FAQ with corrected health-check minimums plus additional entries (trial availability, forcing re-auth via.login(), error codes includingunsupported_auth_method).Written by Cursor Bugbot for commit 576bab1. This will update automatically on new commits. Configure here.