Automated user provisioning
Automated user provisioning allows users to be automatically added to organizations when they sign up using non-SSO authentication methods such as social logins (Google, GitHub, Microsoft) or passwordless authentication. Unlike JIT provisioning which works with SSO connections, this feature provides an organization switcher interface where users can join organizations based on their email domain.
Introduction
Section titled “Introduction”Automated user provisioning is particularly useful for applications that support multiple authentication methods and want to provide seamless organization membership for users authenticating through social providers or passwordless methods.
When a user signs up or signs in using social logins or passwordless authentication, Scalekit can automatically:
- Match email domains - Check if the user’s email domain matches configured allowed domains for an organization
- Present organization options - Show the user available organizations they can join through an organization switcher
- Enable user choice - Allow users to select which organization to join or create a new one
- Create organization membership - Automatically add the user to their selected organization
This process provides flexibility for users who may work across multiple organizations or need to create their own workspace.
Enabling automated user provisioning
Section titled “Enabling automated user provisioning”Automated user provisioning must be configured for each organization by setting allowed email domains. You can configure this through the Scalekit Dashboard or programmatically using the API.
Enable via Dashboard Coming soon
Section titled “Enable via Dashboard ”- Log in to your Scalekit Dashboard.
- Navigate to Organizations and select the organization.
- Go to Settings and find the Automated Provisioning section.
- Configure the allowed email domains for automatic provisioning.
Enable via API
Section titled “Enable via API”You can also configure automated user provisioning programmatically using the Scalekit API:
npm install @scalekit-sdk/nodepip install scalekit-sdk-pythongo get -u github.com/scalekit-inc/scalekit-sdk-go/* Gradle users - add the following to your dependencies in build file */implementation "com.scalekit:scalekit-sdk-java:1.1.3"<!-- Maven users - add the following to your `pom.xml` --><dependency> <groupId>com.scalekit</groupId> <artifactId>scalekit-sdk-java</artifactId> <version>1.1.3</version></dependency>// Coming soon - API to configure allowed email domainsSupported authentication methods
Section titled “Supported authentication methods”Automated user provisioning works with the following authentication methods:
- Social logins - Google, Microsoft, GitHub, LinkedIn, and other social providers
- Passwordless authentication - Magic link and OTP-based authentication
Users authenticate with their preferred method and are then presented with organization options based on their email domain.
What’s next?
Section titled “What’s next?”- Learn about organization switching capabilities for users who belong to multiple organizations
- Explore JIT provisioning for SSO-based workflows
- Set up social logins for your application