Kinde
Log in

Welcome to the Kinde community

Updated last month

Setting up Custom SAML App on Kinde

At a glance

The community member is trying to set up a custom SAML app on Kinde, but is encountering an error after authentication on Google. The error message states "Something went wrong when we tried to authenticate you, and we can't offer a quick way out. Start a new session and try signing in again. Error code: 1656".

Another community member suggests that for Google Workspace SAML setup, the SAML metadata XML file needs to be hosted on a public web service accessible by Kinde, rather than directly on Google's services. They provide step-by-step instructions on how to properly configure the setup, including ensuring the Entity ID, ACS URL, and Name ID format are correctly set up in both Kinde and Google Workspace.

The community member indicates they have followed the suggested steps, and the user is displayed in the Kinde dashboard, but they are still encountering an error in the browser. Another community member acknowledges the issue and mentions that a team member named Claire has responded to the user via Live Chat, but there is no explicitly marked answer in the provided information.

RRahul Ranjan
·

Hi, I am trying to setup custom SAML APP on kinde. I uploaded IDP metadata received from google's SAML APP and used it in IDP metadata URL also added other required details. But I am getting this error after authentication on google

Something went wrong when we tried to authenticate you, and we can't offer a quick way out. Start a new session and try signing in again. Error code: 1656

P
R
3 comments
PPlain

Hey

For Google Workspace SAML setup specifically, Google does not support hosting the SAML metadata XML file directly on their services. Instead, you need to:

1.  Host the metadata file on a public web service accessible by Kinde (like AWS S3, Cloudflare R2, or a public website)

2.  Upload the metadata file to your chosen storage location

3.  Copy the URL for the hosted file

4.  Use that public URL as the IdP metadata URL in Kinde

Additionally, make sure:
•   The Entity ID matches exactly between Kinde and Google Workspace
•   The ACS URL is correctly configured in Google Workspace
•   The Name ID format is set to EMAIL in Google Workspace

I recommend going through these steps again to ensure everything is properly configured. And if you are still having issues, let me know and I will get another team member to help

RRahul Ranjan

Hi
I have configured in the same way you suggested, after login user is also getting displayed in Kinde dashboard. However in browser I am getting this error

Attachment
image.png
PPlain

Hi Rahul, really sorry about missing your response. I know Claire has responded to you via Live Chat.

Add a reply
Sign up and join the conversation on Slack