External IDP ZOHO login via Generic OIDC throwing error with parameter prompt=select_account
Use-case:
We’re integrating Zoho login using Zitadel as the OIDC provider.
Environment:
Self-hosted Zitadel.
Version:
v2.63.2
Stack:
We’re using Zitadel’s OIDC login flow to allow users to sign in via Zoho.
What you expected to happen:
Users should be able to authenticate with Zoho via OIDC without issues.
What went wrong:
Zoho throws an error when the prompt parameter is set to select_account. It seems Zoho only supports prompt=consent.
Question:
Is there a way to configure or override the prompt parameter in Zitadel’s OIDC flow to use consent instead of select_account?
3 Replies
hey @Sk-7060131690 thanks for your question, under OIDC authorization_endpoint, you can change the prompts that might help you
I am not sure what does your setup looks like. Please let me know if this helps or I can look more
ZITADEL Docs
OpenID Connect 1.0 Discovery
Hi Rajat,
Thanks for your help! The Zitadel docs (https://zitadel.com/docs/apis/openidoauth/endpoints#additional-parameters) mention the prompt parameter but don’t say if it’s customizable. Zoho doesn’t support prompt=select_account, causing a 400 error and blocking OIDC login. Any way to change the prompt param in Zitadel’s OIDC config? Prefer to avoid SAML if possible cause i think zoho doesnt provide saml endpoints as an service provider.
ZITADEL Docs
OpenID Connect 1.0 Discovery
hey @Sk-7060131690 I will look a bit more and see about the params, it seems like we can make it work, I had a discussion wiuth one of my engineers today, allow me some time and I will get back on it.