Create a GO SSO service for services like AlertHub and SDT

[udaynwa]

Is your feature request related to a problem? Please describe.
Currently, services like AlertHub and SDT operate independently, requiring users to manage separate credentials for each platform. This fragmentation complicates user management, and creates barriers to efficient workflows across IFRC tools. A unified authentication system would significantly improve user experience and security.

Describe the solution you'd like
Implement a Single Sign-On (SSO) service integrated with IFRC GO. This SSO would serve as a centralized authentication mechanism, allowing users to log in once and seamlessly access services like AlertHub, SDT, and potentially other IFRC tools. It should support modern authentication standards (e.g., OAuth2, OpenID Connect) for compatibility with existing and future systems.

Describe alternatives you've considered
1. Maintaining separate authentication systems for each service. However, this is inefficient and less secure.
2. Using a third-party SSO provider, but this could introduce privacy and dependency concerns.
3. A unified login portal without true SSO, which would still require users to log in for each service.

Where does the data come from and how is it maintained?
User data could be sourced from the existing IFRC GO user database, with additional profiles created for services like AlertHub and SDT.
User roles and permissions could be maintained centrally in the SSO system to ensure consistency across services.

Should there be any restrictions around viewing or updating information related to this feature
Yes: Only authenticated and authorized users should be able to access the integrated services.

Related issues

• https://github.com/IFRCGo/sdt-web-app/issues/1

[tovari]

Could be linked with GO Wiki as well