A web app that gives B2B SaaS teams a drop-in SAML SSO layer without enterprise pricing

Mid-market and enterprise customers will not sign a B2B SaaS contract without SAML SSO, but building it in-house takes weeks of undifferentiated work and the incumbent vendors charge enterprise rates that small SaaS teams cannot justify. There is a gap for a hosted, developer-first SSO service priced to match early-stage ARR, with a self-serve setup path that takes hours not weeks. SSOReady validated demand at YC W24 but went fully open-source, leaving the hosted-and-supported tier wide open.

Demand Breakdown

550

Social Proof 2 sources

Launch HN: SSOReady (YC W24) Making SAML SSO painless and open source

@SSOReady · 2024-08-01

397 HN

The SSO Wall of Shame

@HN · 2022-04-01

153

Gap Assessment

CompetitiveMultiple tools exist but differentiation opportunities remain

4 tools exist (WorkOS, SSOReady, BoxyHQ, Auth0 / Okta) but gaps remain: Pricing scales with customer MAUs and quickly becomes expensive for teams in the $0-$500K ARR range. No self-serve free tier with real production limits. Overkill bundle for teams that only need SSO right now.; No managed hosted tier with SLAs, support, and compliance docs that enterprise procurement requires. Self-hosting still requires DevOps work. Revenue model unclear; open-source leaves the paid tier vacant..

Features7 agent-ready prompts

Self-serve SSO connection wizard

▶

Multi-tenant SSO session management and token issuance

▶

SCIM 2.0 directory sync

▶

Per-tenant SSO enforcement policies

▶

Developer SDK and redirect-based integration

▶

Admin dashboard with audit log and connection health monitoring

▶

Compliance documentation generator

▶

Competitive LandscapeFREE

Product	Does	Missing
WorkOS	Developer-first enterprise features platform covering SAML SSO, SCIM, audit logs, and directory sync. Well-documented API, broad IdP support. Reached $30M ARR in 2025.	Pricing scales with customer MAUs and quickly becomes expensive for teams in the $0-$500K ARR range. No self-serve free tier with real production limits. Overkill bundle for teams that only need SSO right now.
SSOReady	Open-source SAML SSO library from YC W24 with a hosted cloud option. Launched August 2024 to 397-point HN reception. Fully open-source, self-hostable.	No managed hosted tier with SLAs, support, and compliance docs that enterprise procurement requires. Self-hosting still requires DevOps work. Revenue model unclear; open-source leaves the paid tier vacant.
BoxyHQ	Open-source enterprise readiness toolkit including SAML SSO, directory sync, and audit logs. Jackson SAML library is widely used.	Requires self-hosting or paying for the cloud tier; no polished onboarding UI for non-DevOps founders. Limited focus on guided setup and compliance documentation.
Auth0 / Okta	Full enterprise identity platform with SAML, MFA, federation, and compliance tooling. Massive IdP coverage.	Enterprise pricing and complexity. SAML connections can cost thousands per month. Overkill for a 10-person SaaS team trying to close their first enterprise deal.

Notable VoicesFREE

@SSOReady397 likes · 2024-08-01

"Making SAML SSO painless and open source — validated by 397-point HN launch, with comments confirming that small SaaS teams lose enterprise deals specifically because building SSO in-house takes weeks they cannot afford."