How to bypass Confluence login while accessing from Salesforce

SSO can't be implemented as the Salesforce app is going to be used by end customers from different origins. They are not going to be logged in to our network or not gonna share our infra. Is there any other way to achieve this?

Want to display a link in salesforce which will take the user to Confluence page in new tab without asking for login.

How else would you propose logging in without a login?

Not sure Nic. I'm new here. Just wanted to know what options we have here to achieve the same. SSO, is not an option as end users of Salesforce app may not be from same org. So, that approach won't work here.

So, what you need is for both systems to have knowledge of the same user accounts, and for them to understand that if you have logged into one of them, the other one can use that authentication token to validate access to itself.  

There are two ways I know of to do that - one is to use the same authentication tokens (the times I've seen that done, it wasn't a token, it was an encrypted certificate.  That required code to be added to all the systems that used it so that they used certificates instead of login).  The second option is session based, and it's called SSO.

Hi @Sreedhar KP 

Salesforce has a wide variety of integration features covering both authentication, authorization and user provisioning.

You can setup SSO into both Salesforce and Confluence, but note that Salesforce can also act an SSO Identity provider and it supports both the SAML or OpenID Connect protocols. This would allow users to authenticate and login to Confluence with their Salesforce identity. Some SSO solutions allow you to configure trusted domains, which can be used to limit the set of user that are allowed to log in (limit the SSO availability to some organizations).

You can choose to provision user accounts by auto creating and updating user record data in Confluence when they log in with SSO. Another alternative could be to use SCIM. This is user provisioning protocol that allow Salesforce to send a subset of its users to Confluence and keep these records in sync. With SCIM, you configure most things on the Salesforce side and it would be there that you can specify the subset of users to keep in sync.

If you are using the Cloud version of Confluence you need Atlassian Access to achieve SSO and SCIM provisioning. For on-prem (server and data center), I would recommend third part add-ons to achieve both SSO and user provisioning.

Full disclosure: I work for Kantega SSO, one of the top SSO add-on vendors. We are happy to assist you if you have questions on how to proceed or want a practical demo. Our SAML guide for configuring Salesforce as an identity provider in Confluence is found here: https://kantega-sso.atlassian.net/l/c/2xF9sK3K

Regards,

Jon Espen