Single sign-on

Bunny doesn't hold any user passwords. The default way a user signs in is by entering their email on the login page after which they will receive an email with a magic link that signs them in.

An even more secure and user-friendly way to sign users into Bunny is using single sign-on. Bunny supportes SAML SSO and can easily be set up to work with Okta, OneLogin or Google. See the SSO configuration guides for this.

Note that you can always configure a user to bypass SSO using the Always sign in via email login link on the user. This is useful when you have contractors or similar who may not be configured in your identity provider.

Enabled

You can temporarily disable SSO disabling this setting. This will force users to sign in with an email link.

SSO mode

Once SSO has been configured, Bunny can be configured to handle sign-in in two ways.

• Always prompt users - Users will be prompted to enter their email address and if SSO is required, they will be redirected to the identity provider.

• Automatic redirect - This will redirect all users without a valid session to the identity provider immediately when they hit Bunny's login page.

If you are using Bunny in conjunction with Salesforce, the second setting is recommended as it will reduce friction related to signing in.