Question regarding the SSO login via APIs in multi-tenant environment
May I ask you one question regarding the SSO login via APIs in multi-tenant environment?
At the customer's place, Yellowfin dashboard is embedded into Salesforce, and SSO into this Yellowfin dashboard is required.
We are currently testing the songle-sign-on process from Salesforce to Yellowfin following the below steps.
Step-1) Create SSO login token via /api/rpc/login-tokens/create-sso-token API, with admin's id/password, userid and ,client org id (the user belong to) in request body.
Step-2) Login into Yellowfin with SSO login token created in the above step via /JsAPI/v3?token= API.
The result is different whether the user belog to Defalt org or not.
When the user belong to both Default and Client org, the user can successfully login into Yellowfin as SSO and the Yellowfin dashboard is displayed in salesforce window.
Meanwhile, when the user belong to only Client org, the login process fails with "ERROR: Login Required" message in step-2.
Does this mean the user who login into Client org need to belog to both Default and Client org?Or, are there alternative way to enable SSO without belongin to Default org?