We have the same issue and solving it using the SSO config in Document360 would be a good option.

When I was researching the problem, I found out that you can assign reader groups when using JWT for authentication, by passing the reader group ids in the JWT. Unfortunately JWT users come with another set of limitations, that didn't work for us.

Another option to address this, would be adding a similar mechanism to the OpenID authentication, where you (Document360) document a specific claim that your customers can then provide using their OpenID Server to define the reader groups that the user should be part of.

Hi Vijay, Thanks for sharing the feedback on behalf of the customer.

We understand how this capability could greatly improve user management and streamline access control in your setup. At this point, Document360 supports auto-assigning SSO users to a single reader group, and we recognize the value in making this more dynamic and condition-based.

We’ll evaluate this enhancement further & keep it under the backlog status and depending on customer traction and demand, we’ll consider including it in our roadmap. We’ll be sure to keep you informed if there are any updates.

Posted on behalf of Fine Panda