I’m using the Identity-First flow with organizations matching on the domain name of the email to redirect to the proper idP and it works great.
But if someone enter an e-mail address of a domain that it not mapped, it redirect to the generic “invalid username or password” page.
I would like to catch this situation and display a custom message like ‘Your organization is not linked to our identity provider yet, please contact support at x to set this up”.
Is that something that would be possible to configure with a custom flow? Or is it hardcoded to redirect to the same generic “fail” page no matter the reason?