SSOReady (YC W24)

A really insightful technical blog from the Convoy (YC W22) team on how they designed their SSO proxy with SSOReady (YC W24), launching an unusually sophisticated enterprise single sign-on implementation in two days. Impressive stuff Subomi Oluwalana!

Impressive stuff from Convoy (YC W22) on their enterprise single sign-on implementation!

Ok, so we shipped Enterprise SSO into Convoy's control plane with 2 days of work, thanks to SSOReady (YC W24). Full blog post coming soon.

At SSOReady (YC W24) we're giving your customers the best possible SAML user experience. To that end, we just shipped a native SAML "test mode"! SAML is inherently complicated to set up. SSOReady's self-serve configuration takes that complexity out of your app and into a specialized flow that gives your customers the best possible setup experience. With the new test mode, that UX just got even better. Your customer's IT admin can test their SAML configuration end-to-end directly within the self-serve configuration flow. They can see exactly the user details your application receives. If anything is wrong, they can immediately fix it. Test mode is available to all customers. Like everything else we build, it's all open-source. Give it a whirl!

37 of the Best Startup Tools! ?? This is my stack / the stack for startups. YC fam * ?? ?????????????????????? ? Pitch-deck Sharing: Dropbox DocSend ? Cap Table: Pulley * or Carta ? Investor Updates: Visible.vc ?? ?????????????? & ?????????????? ? Bank Account: Mercury ? Credit Card + Expense Management: Ramp ? Bookkeeping: Fondo * & Puzzle ???? ? Payroll: Rippling * or Central (YC S24) * ? Health Insurance: Angle Health * ? Sales Tax Compliance: Numeral * ?? ???????????? & ?????????? ? Design: Figma ? Graphic Design: Awesomic * ? Swag: Elevation Sports ? Website: Webflow * ?? ???????????????????? & ?????????? ? Project Management: Linear ? Team Comms: Slack ? Customer Support: Pylon * ? CRM: HubSpot ? Note-taking/Wiki: Notion ?? ???????????????????? & ?????????????? ? Analytics: PostHog * ? Cloud: Amazon Web Services (AWS) ? Emails: Resend * ? SMS: Twilio ? Search: Trieve * ? Automation: Zapier * ? Secret Management: Infisical * ? SSO: SSOReady (YC W24) * ? Load Testing: Speedscale * ? On-call: Rootly * ?? ?????????????????? ? Email Marketing: Loops * ? SEO: Positional * ? Partnerships: PartnerStack * ? Freelancer Writers: Upwork + Lizzie Davey & Christy Bieber ? Events: Luma ? Outbound: Apollo.io * ???? ?????????? ? Legal Docs: Common Paper * What did I miss? Shout-out to Kevin Jurovich for the inspo! ??

Excited to share that Blake Williams has joined SSOReady (YC W24) as our first engineering hire. Ulysse Carion and Blake know one another well from their days at Segment. Ulysse told me for *months* that we needed to get Blake. And he was right. I'm really glad we did. Blake's driving a ton of velocity across our product and already making major improvements to our user experience design. As he puts it, "I'm a ninja what can code pretty." If you're a ninja what can code pretty, send me an email.

One of the jaw-droppingly dumb things about SAML and SCIM is that you have to talk to a salesperson to even test your integration. SSOReady (YC W24) just shipped a fix, and we're giving it away to the world. We call it DummyIDP. When engineers implement SAML, they need to test with the real-world SAML protocol, but until today the only way you could do that is by signing up for a commercial IDP like Okta or Entra. That usually involves talking to sales -- a fate worse than death. DummyIDP is a full-featured emulator for Okta, Entra, or any other commercial IDP vendor. From your code's perspective, DummyIDP works exactly the same. For engineers, it's a far, far more convenient alternative. With DummyIDP, you can easily test every flow that matters to your software -- you can emulate hiring, firing, or legally renaming your employees. You can try logging in as anyone on the team. Engineers can test their entire SAML/SCIM integration in minutes, without any pointless hurdles. It's available online at DummyIDP.com -- and of course, it's open-source: https://lnkd.in/g8a684bA

I had a bunch of fun at Y Combinator last night meeting the F24 batch and telling SSOReady (YC W24)'s story. Short version: We made tons of mistakes. Nothing worked for a long time. We had a disastrous Demo Day. And yet, we're still here! Sometimes it just takes a while before things start to work.

This week I implemented multi-tenant SAML logins on a Friday afternoon! (almost). One of the first enterprise hurdles B2B startups run into is SSO requirements. For a young startup, migrating from a framework-provided username/password system to a full IdP just to get SAML/OIDC can be a big ask. If they didn't start with an IdP or don't know the space, it can take a lot of time. A few weeks ago, I stumbled onto SSOReady (YC W24) while browsing HackerNews and was intrigued by their "SAML in an afternoon" tagline. I'm not one to openly endorse companies, but in the end, they delivered their promise pretty well! You can read a dev diary (with timestamps!) about the process in the full blog post. https://lnkd.in/gNdjyH69

As I wrote a short investor update yesterday afternoon, I realized just how much had changed since the last update Here's some of the stuff that shipped at SSOReady in the last month. 1. SCIM directory sync API 2. Management API 3. Self-service app for IT admins 4. Custom authentication domains 5. Custom administration domains (shipped today) 6. Custom branding Nearly all of this stuff came directly from customer requests! Included a GIF here of the self-service app for IT admins. It's a really elegant customer-facing solution to the SSO support burden that engineering teams normally face.