Connect Review Board into the identity provider your company already uses. One login for everyone, central control for IT, and no extra password for developers to lose.
Review Board supports SAML 2.0, the open standard implemented by every major identity provider, including Okta, Microsoft Entra ID, Google Workspace, OneLogin, and Auth0.
- One identity per user. No separate password for users to remember, rotate, or recover.
- Central provisioning. When new employees are hired they can be added to Review Board with the same process you use for other apps.
- Audit trail for logins. Every Review Board login flows through the same login procedure as the rest of your stack.
- Compliance. Single sign-on is a requirement for many compliance frameworks and certifications.
Supported Identity Providers
These Identity Providers have been verified to work well. However, any Identity Provider that speaks SAML2.0 will also work with Review Board.
User provisioning
By default, Review Board creates a user account after the first successful SSO login, using the name and e-mail address from the SAML assertion.
Review Board includes admin controls that allow you to disable automatic provisioning, if you want to restrict accounts to only those which are already exist (allowing you to create new accounts via the API).
How it works
Review Board acts as the Service Provider (SP). Your identity platform is the Identity Provider (IdP). When a user logs in to Review Board, they will be redirected to your IdP to log in using whatever methods you have configured (password, multi-factor, biometrics, etc.). They'll then be redirected back to Review Board, logged in as their user.
SAML2.0 SSO is available in Review Board 5.0 and newer.
FAQ
Which Identity Providers does Review Board support?
Review Board has been explicitly tested with Auth0, Okta, OneLogin, Microsoft
Entra ID, and Google Workspace. However, any Identity Provider that speaks
SAML2.0 will work.
Does SSO work with Review Board Community Edition?
SSO is enabled for all versions of Review Board, and does not require Review
Board Plus/Enterprise or Power Pack.
Can I require all users to log in with SSO?
When new user accounts are provisioned via SSO, they do not have a separate
Review Board password. If Review Board is set up with the "Standard
Registration" authentication backend, this means that SSO is the only way to
log in. If another backend such as LDAP or Active Directory is configured,
then that will also be available.
We recommend keeping an administrator account present with a username and password in case maintenance needs to be done.
Will the Review Board API and RBTools work with SSO enabled?
If Review Board is configured with SSO as the only login available, then
users will need to create an API token to authenticate with the API (or
RBTools).
RBTools supports a web-based login mode which will create API tokens on the user's behalf.
Does Review Board support SCIM provisioning?
At the moment, it does not. User accounts are provisioned the first time they
log in via SSO (when enabled).
What else does Review Board do?
Review Board gives you the tools you need to keep your code quality high, helping you build better products for happier customers. It integrates with many services and tools, including chat services, code hosting solutions, bug trackers, code analytics, and more.
Power Pack enhances Review Board further, providing document review, report generation, improved scalability, and more for your whole organization.