[themanmaran]

Having built and offered SSO to non-enterprise customers, there is a good reason people don't.

SSO is a two party system, which means even if you have everything configured perfectly, your customer can still mess up their Okta setup. And no amount of docs will stop them from doing that.

And when they mess it up, they'll blame your auth for not working. And if it's an enterprise customer that's fine. Just spend a day debugging for them. But if it's a free tier user, it creates pure headache with no upside.

[ezekg]

It's also incredibly expensive per-connection if you use something like WorkOS to handle SSO/SAML. The only way to make the financials work is to only offer it on enterprise tiers.

[ffo]

On the note of oss and sso that works well for b2b. Zitadel can be tool to get rid of the plumbing work that you encounter with all the permutations one can have with the different customer requirements.

Disclaimer: I am a co-founder