From 0c8c226acbae568074e20ac3550ac613872d40b5 Mon Sep 17 00:00:00 2001
From: masnwilliams <43387599+masnwilliams@users.noreply.github.com>
Date: Tue, 12 May 2026 20:34:01 +0000
Subject: [PATCH 1/4] auto-resolve sso provider icons via simple icons cdn

---
 .../src/components/icons.tsx                  | 52 ------------
 .../src/components/sso-provider.tsx           | 82 +++++++++++--------
 .../managed-auth-react/src/styles/styles.css  | 12 +++
 3 files changed, 62 insertions(+), 84 deletions(-)

diff --git a/packages/managed-auth-react/src/components/icons.tsx b/packages/managed-auth-react/src/components/icons.tsx
index a9a368d..1624e75 100644
--- a/packages/managed-auth-react/src/components/icons.tsx
+++ b/packages/managed-auth-react/src/components/icons.tsx
@@ -198,55 +198,3 @@ export const SpinnerIcon = (p: IconProps) => (
     />
   </svg>
 );
-
-// SSO provider marks
-export const GoogleMark = (p: IconProps) => (
-  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
-    <path
-      d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"
-      fill="#4285F4"
-    />
-    <path
-      d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"
-      fill="#34A853"
-    />
-    <path
-      d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"
-      fill="#FBBC05"
-    />
-    <path
-      d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"
-      fill="#EA4335"
-    />
-  </svg>
-);
-
-export const GitHubMark = (p: IconProps) => (
-  <svg viewBox="0 0 24 24" fill="currentColor" aria-hidden="true" {...p}>
-    <path d="M12 0C5.37 0 0 5.37 0 12c0 5.31 3.435 9.795 8.205 11.385.6.105.825-.255.825-.57 0-.285-.015-1.23-.015-2.235-3.015.555-3.795-.735-4.035-1.41-.135-.345-.72-1.41-1.23-1.695-.42-.225-1.02-.78-.015-.795.945-.015 1.62.87 1.845 1.23 1.08 1.815 2.805 1.305 3.495.99.105-.78.42-1.305.765-1.605-2.67-.3-5.46-1.335-5.46-5.925 0-1.305.465-2.385 1.23-3.225-.12-.3-.54-1.53.12-3.18 0 0 1.005-.315 3.3 1.23.96-.27 1.98-.405 3-.405s2.04.135 3 .405c2.295-1.56 3.3-1.23 3.3-1.23.66 1.65.24 2.88.12 3.18.765.84 1.23 1.905 1.23 3.225 0 4.605-2.805 5.625-5.475 5.925.435.375.81 1.095.81 2.22 0 1.605-.015 2.895-.015 3.3 0 .315.225.69.825.57A12.02 12.02 0 0024 12c0-6.63-5.37-12-12-12z" />
-  </svg>
-);
-
-export const MicrosoftMark = (p: IconProps) => (
-  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
-    <path d="M1 1h10.5v10.5H1V1z" fill="#F25022" />
-    <path d="M12.5 1H23v10.5H12.5V1z" fill="#7FBA00" />
-    <path d="M1 12.5h10.5V23H1V12.5z" fill="#00A4EF" />
-    <path d="M12.5 12.5H23V23H12.5V12.5z" fill="#FFB900" />
-  </svg>
-);
-
-export const FacebookMark = (p: IconProps) => (
-  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
-    <path
-      d="M24 12c0-6.627-5.373-12-12-12S0 5.373 0 12c0 5.99 4.388 10.954 10.125 11.854V15.47H7.078V12h3.047V9.356c0-3.007 1.792-4.668 4.533-4.668 1.312 0 2.686.235 2.686.235v2.953H15.83c-1.491 0-1.956.925-1.956 1.874V12h3.328l-.532 3.47h-2.796v8.384C19.612 22.954 24 17.99 24 12z"
-      fill="#1877F2"
-    />
-  </svg>
-);
-
-export const AppleMark = (p: IconProps) => (
-  <svg viewBox="0 0 24 24" fill="currentColor" aria-hidden="true" {...p}>
-    <path d="M18.71 19.5c-.83 1.24-1.71 2.45-3.05 2.47-1.34.03-1.77-.79-3.29-.79-1.53 0-2 .77-3.27.82-1.31.05-2.3-1.32-3.14-2.53C4.25 17 2.94 12.45 4.7 9.39c.87-1.52 2.43-2.48 4.12-2.51 1.28-.02 2.5.87 3.29.87.78 0 2.26-1.07 3.81-.91.65.03 2.47.26 3.64 1.98-.09.06-2.17 1.28-2.15 3.81.03 3.02 2.65 4.03 2.68 4.04-.03.07-.42 1.44-1.38 2.83M13 3.5c.73-.83 1.94-1.46 2.94-1.5.13 1.17-.34 2.35-1.04 3.19-.69.85-1.83 1.51-2.95 1.42-.15-1.15.41-2.35 1.05-3.11z" />
-  </svg>
-);
diff --git a/packages/managed-auth-react/src/components/sso-provider.tsx b/packages/managed-auth-react/src/components/sso-provider.tsx
index 87a2421..d82c32b 100644
--- a/packages/managed-auth-react/src/components/sso-provider.tsx
+++ b/packages/managed-auth-react/src/components/sso-provider.tsx
@@ -1,40 +1,58 @@
-import type { ReactNode } from "react";
-import {
-  AppleMark,
-  BuildingIcon,
-  FacebookMark,
-  GitHubMark,
-  GoogleMark,
-  KeyIcon,
-  MicrosoftMark,
-} from "./icons";
+import { useState, type ReactNode } from "react";
+import { BuildingIcon, KeyIcon } from "./icons";
 
 export interface SSOProviderInfo {
   label: string;
   icon: ReactNode;
 }
 
+const NON_BRAND_ICONS: Record<string, { label: string; icon: ReactNode }> = {
+  passkey: { label: "Passkey", icon: <KeyIcon className="kma-sso-icon" /> },
+  sso: { label: "SSO", icon: <BuildingIcon className="kma-sso-icon" /> },
+  saml: { label: "SSO", icon: <BuildingIcon className="kma-sso-icon" /> },
+};
+
+function slugify(provider: string): string {
+  return provider.toLowerCase().replace(/[^a-z0-9]/g, "");
+}
+
+function titleCase(provider: string): string {
+  return provider
+    .split(/[\s_-]+/)
+    .filter(Boolean)
+    .map((w) => w.charAt(0).toUpperCase() + w.slice(1).toLowerCase())
+    .join(" ");
+}
+
+function SSOProviderIcon({ provider }: { provider: string }) {
+  const [errored, setErrored] = useState(false);
+  const slug = slugify(provider);
+  const letter = provider.trim().charAt(0).toUpperCase() || "?";
+
+  if (!slug || errored) {
+    return (
+      <span className="kma-sso-icon kma-sso-icon--letter" aria-hidden="true">
+        {letter}
+      </span>
+    );
+  }
+
+  return (
+    <img
+      src={`https://cdn.simpleicons.org/${slug}`}
+      alt=""
+      className="kma-sso-icon"
+      onError={() => setErrored(true)}
+    />
+  );
+}
+
 export function getSSOProviderInfo(provider: string): SSOProviderInfo {
-  const p = provider.toLowerCase();
-  if (p.includes("google"))
-    return { label: "Google", icon: <GoogleMark className="kma-sso-icon" /> };
-  if (p.includes("github"))
-    return { label: "GitHub", icon: <GitHubMark className="kma-sso-icon" /> };
-  if (p.includes("microsoft") || p.includes("azure"))
-    return {
-      label: "Microsoft",
-      icon: <MicrosoftMark className="kma-sso-icon" />,
-    };
-  if (p.includes("facebook"))
-    return {
-      label: "Facebook",
-      icon: <FacebookMark className="kma-sso-icon" />,
-    };
-  if (p.includes("apple"))
-    return { label: "Apple", icon: <AppleMark className="kma-sso-icon" /> };
-  if (p.includes("saml") || p.includes("sso"))
-    return { label: "SSO", icon: <BuildingIcon className="kma-sso-icon" /> };
-  if (p.includes("passkey"))
-    return { label: "Passkey", icon: <KeyIcon className="kma-sso-icon" /> };
-  return { label: provider, icon: null };
+  const key = slugify(provider);
+  const nonBrand = NON_BRAND_ICONS[key];
+  if (nonBrand) return nonBrand;
+  return {
+    label: titleCase(provider),
+    icon: <SSOProviderIcon provider={provider} />,
+  };
 }
diff --git a/packages/managed-auth-react/src/styles/styles.css b/packages/managed-auth-react/src/styles/styles.css
index ff3a2d5..c871c5e 100644
--- a/packages/managed-auth-react/src/styles/styles.css
+++ b/packages/managed-auth-react/src/styles/styles.css
@@ -510,6 +510,18 @@
   height: 1.25rem;
 }
 
+.kma-sso-icon--letter {
+  display: inline-flex;
+  align-items: center;
+  justify-content: center;
+  border-radius: 50%;
+  background: var(--kma-color-muted, #6b7280);
+  color: #fff;
+  font-size: 0.75rem;
+  font-weight: 600;
+  line-height: 1;
+}
+
 /* ---------- Form / Input ---------- */
 
 .kma-form {

From 3a4e6855b1944804d9e33f4e94fe73a107ea48ee Mon Sep 17 00:00:00 2001
From: Mason Williams <mason@onkernel.com>
Date: Wed, 13 May 2026 17:00:38 -0400
Subject: [PATCH 2/4] Hybrid SSO icons: inline SVGs for top providers, Simple
 Icons CDN fallback

Keep multicolor inline SVGs for Google, GitHub, GitLab, Microsoft,
Facebook, and Apple. Fall back to Simple Icons CDN for any other
provider, with a letter avatar as the final fallback.

Co-authored-by: Cursor <cursoragent@cursor.com>
---
 .../src/components/icons.tsx                  | 82 +++++++++++++++++++
 .../src/components/sso-provider.tsx           | 44 ++++++++--
 2 files changed, 117 insertions(+), 9 deletions(-)

diff --git a/packages/managed-auth-react/src/components/icons.tsx b/packages/managed-auth-react/src/components/icons.tsx
index 1624e75..9dbd6af 100644
--- a/packages/managed-auth-react/src/components/icons.tsx
+++ b/packages/managed-auth-react/src/components/icons.tsx
@@ -198,3 +198,85 @@ export const SpinnerIcon = (p: IconProps) => (
     />
   </svg>
 );
+
+// SSO provider marks
+export const GoogleMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
+    <path
+      d="M22.56 12.25c0-.78-.07-1.53-.2-2.25H12v4.26h5.92c-.26 1.37-1.04 2.53-2.21 3.31v2.77h3.57c2.08-1.92 3.28-4.74 3.28-8.09z"
+      fill="#4285F4"
+    />
+    <path
+      d="M12 23c2.97 0 5.46-.98 7.28-2.66l-3.57-2.77c-.98.66-2.23 1.06-3.71 1.06-2.86 0-5.29-1.93-6.16-4.53H2.18v2.84C3.99 20.53 7.7 23 12 23z"
+      fill="#34A853"
+    />
+    <path
+      d="M5.84 14.09c-.22-.66-.35-1.36-.35-2.09s.13-1.43.35-2.09V7.07H2.18C1.43 8.55 1 10.22 1 12s.43 3.45 1.18 4.93l2.85-2.22.81-.62z"
+      fill="#FBBC05"
+    />
+    <path
+      d="M12 5.38c1.62 0 3.06.56 4.21 1.64l3.15-3.15C17.45 2.09 14.97 1 12 1 7.7 1 3.99 3.47 2.18 7.07l3.66 2.84c.87-2.6 3.3-4.53 6.16-4.53z"
+      fill="#EA4335"
+    />
+  </svg>
+);
+
+export const GitHubMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" fill="currentColor" aria-hidden="true" {...p}>
+    <path d="M12 0C5.37 0 0 5.37 0 12c0 5.31 3.435 9.795 8.205 11.385.6.105.825-.255.825-.57 0-.285-.015-1.23-.015-2.235-3.015.555-3.795-.735-4.035-1.41-.135-.345-.72-1.41-1.23-1.695-.42-.225-1.02-.78-.015-.795.945-.015 1.62.87 1.845 1.23 1.08 1.815 2.805 1.305 3.495.99.105-.78.42-1.305.765-1.605-2.67-.3-5.46-1.335-5.46-5.925 0-1.305.465-2.385 1.23-3.225-.12-.3-.54-1.53.12-3.18 0 0 1.005-.315 3.3 1.23.96-.27 1.98-.405 3-.405s2.04.135 3 .405c2.295-1.56 3.3-1.23 3.3-1.23.66 1.65.24 2.88.12 3.18.765.84 1.23 1.905 1.23 3.225 0 4.605-2.805 5.625-5.475 5.925.435.375.81 1.095.81 2.22 0 1.605-.015 2.895-.015 3.3 0 .315.225.69.825.57A12.02 12.02 0 0024 12c0-6.63-5.37-12-12-12z" />
+  </svg>
+);
+
+export const GitLabMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
+    <path d="M12 23.054l3.684-11.335H8.316L12 23.054z" fill="#E24329" />
+    <path
+      d="M12 23.054L8.316 11.719H1.647L12 23.054z"
+      fill="#FC6D26"
+    />
+    <path
+      d="M1.647 11.719L.253 16.01a.95.95 0 00.346 1.062L12 23.054 1.647 11.719z"
+      fill="#FCA326"
+    />
+    <path
+      d="M1.647 11.719h6.669L5.633.926a.477.477 0 00-.908 0L1.647 11.719z"
+      fill="#E24329"
+    />
+    <path
+      d="M12 23.054l3.684-11.335h6.669L12 23.054z"
+      fill="#FC6D26"
+    />
+    <path
+      d="M22.353 11.719l1.394 4.291a.95.95 0 01-.346 1.062L12 23.054l10.353-11.335z"
+      fill="#FCA326"
+    />
+    <path
+      d="M22.353 11.719h-6.669l2.683-10.793a.477.477 0 01.908 0l3.078 10.793z"
+      fill="#E24329"
+    />
+  </svg>
+);
+
+export const MicrosoftMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
+    <path d="M1 1h10.5v10.5H1V1z" fill="#F25022" />
+    <path d="M12.5 1H23v10.5H12.5V1z" fill="#7FBA00" />
+    <path d="M1 12.5h10.5V23H1V12.5z" fill="#00A4EF" />
+    <path d="M12.5 12.5H23V23H12.5V12.5z" fill="#FFB900" />
+  </svg>
+);
+
+export const FacebookMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
+    <path
+      d="M24 12c0-6.627-5.373-12-12-12S0 5.373 0 12c0 5.99 4.388 10.954 10.125 11.854V15.47H7.078V12h3.047V9.356c0-3.007 1.792-4.668 4.533-4.668 1.312 0 2.686.235 2.686.235v2.953H15.83c-1.491 0-1.956.925-1.956 1.874V12h3.328l-.532 3.47h-2.796v8.384C19.612 22.954 24 17.99 24 12z"
+      fill="#1877F2"
+    />
+  </svg>
+);
+
+export const AppleMark = (p: IconProps) => (
+  <svg viewBox="0 0 24 24" fill="currentColor" aria-hidden="true" {...p}>
+    <path d="M18.71 19.5c-.83 1.24-1.71 2.45-3.05 2.47-1.34.03-1.77-.79-3.29-.79-1.53 0-2 .77-3.27.82-1.31.05-2.3-1.32-3.14-2.53C4.25 17 2.94 12.45 4.7 9.39c.87-1.52 2.43-2.48 4.12-2.51 1.28-.02 2.5.87 3.29.87.78 0 2.26-1.07 3.81-.91.65.03 2.47.26 3.64 1.98-.09.06-2.17 1.28-2.15 3.81.03 3.02 2.65 4.03 2.68 4.04-.03.07-.42 1.44-1.38 2.83M13 3.5c.73-.83 1.94-1.46 2.94-1.5.13 1.17-.34 2.35-1.04 3.19-.69.85-1.83 1.51-2.95 1.42-.15-1.15.41-2.35 1.05-3.11z" />
+  </svg>
+);
diff --git a/packages/managed-auth-react/src/components/sso-provider.tsx b/packages/managed-auth-react/src/components/sso-provider.tsx
index d82c32b..7548de6 100644
--- a/packages/managed-auth-react/src/components/sso-provider.tsx
+++ b/packages/managed-auth-react/src/components/sso-provider.tsx
@@ -1,15 +1,34 @@
 import { useState, type ReactNode } from "react";
-import { BuildingIcon, KeyIcon } from "./icons";
+import {
+  AppleMark,
+  BuildingIcon,
+  FacebookMark,
+  GitHubMark,
+  GitLabMark,
+  GoogleMark,
+  KeyIcon,
+  MicrosoftMark,
+} from "./icons";
 
 export interface SSOProviderInfo {
   label: string;
   icon: ReactNode;
 }
 
-const NON_BRAND_ICONS: Record<string, { label: string; icon: ReactNode }> = {
-  passkey: { label: "Passkey", icon: <KeyIcon className="kma-sso-icon" /> },
-  sso: { label: "SSO", icon: <BuildingIcon className="kma-sso-icon" /> },
-  saml: { label: "SSO", icon: <BuildingIcon className="kma-sso-icon" /> },
+const BUILTIN_PROVIDERS: Record<
+  string,
+  { label: string; Icon: (p: { className?: string }) => ReactNode }
+> = {
+  google: { label: "Google", Icon: GoogleMark },
+  github: { label: "GitHub", Icon: GitHubMark },
+  gitlab: { label: "GitLab", Icon: GitLabMark },
+  microsoft: { label: "Microsoft", Icon: MicrosoftMark },
+  azure: { label: "Microsoft", Icon: MicrosoftMark },
+  facebook: { label: "Facebook", Icon: FacebookMark },
+  apple: { label: "Apple", Icon: AppleMark },
+  passkey: { label: "Passkey", Icon: KeyIcon },
+  sso: { label: "SSO", Icon: BuildingIcon },
+  saml: { label: "SSO", Icon: BuildingIcon },
 };
 
 function slugify(provider: string): string {
@@ -24,7 +43,7 @@ function titleCase(provider: string): string {
     .join(" ");
 }
 
-function SSOProviderIcon({ provider }: { provider: string }) {
+function CDNProviderIcon({ provider }: { provider: string }) {
   const [errored, setErrored] = useState(false);
   const slug = slugify(provider);
   const letter = provider.trim().charAt(0).toUpperCase() || "?";
@@ -49,10 +68,17 @@ function SSOProviderIcon({ provider }: { provider: string }) {
 
 export function getSSOProviderInfo(provider: string): SSOProviderInfo {
   const key = slugify(provider);
-  const nonBrand = NON_BRAND_ICONS[key];
-  if (nonBrand) return nonBrand;
+
+  const builtin = BUILTIN_PROVIDERS[key];
+  if (builtin) {
+    return {
+      label: builtin.label,
+      icon: <builtin.Icon className="kma-sso-icon" />,
+    };
+  }
+
   return {
     label: titleCase(provider),
-    icon: <SSOProviderIcon provider={provider} />,
+    icon: <CDNProviderIcon provider={provider} />,
   };
 }

From 65cc025b41a811b5de5f42f5d787fd98a4a242e5 Mon Sep 17 00:00:00 2001
From: masnwilliams <43387599+masnwilliams@users.noreply.github.com>
Date: Tue, 12 May 2026 23:27:14 +0000
Subject: [PATCH 3/4] fix sso provider matching and stale error state

---
 .../src/components/sso-provider.tsx                  | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/packages/managed-auth-react/src/components/sso-provider.tsx b/packages/managed-auth-react/src/components/sso-provider.tsx
index 7548de6..c387209 100644
--- a/packages/managed-auth-react/src/components/sso-provider.tsx
+++ b/packages/managed-auth-react/src/components/sso-provider.tsx
@@ -1,4 +1,4 @@
-import { useState, type ReactNode } from "react";
+import { useEffect, useState, type ReactNode } from "react";
 import {
   AppleMark,
   BuildingIcon,
@@ -45,6 +45,7 @@ function titleCase(provider: string): string {
 
 function CDNProviderIcon({ provider }: { provider: string }) {
   const [errored, setErrored] = useState(false);
+  useEffect(() => setErrored(false), [provider]);
   const slug = slugify(provider);
   const letter = provider.trim().charAt(0).toUpperCase() || "?";
 
@@ -67,10 +68,13 @@ function CDNProviderIcon({ provider }: { provider: string }) {
 }
 
 export function getSSOProviderInfo(provider: string): SSOProviderInfo {
-  const key = slugify(provider);
+  const slug = slugify(provider);
 
-  const builtin = BUILTIN_PROVIDERS[key];
-  if (builtin) {
+  const builtinKey = Object.keys(BUILTIN_PROVIDERS).find((k) =>
+    slug.includes(k),
+  );
+  if (builtinKey) {
+    const builtin = BUILTIN_PROVIDERS[builtinKey];
     return {
       label: builtin.label,
       icon: <builtin.Icon className="kma-sso-icon" />,

From d518bb4d2b2f510c6b7fa611c188914d8223a84e Mon Sep 17 00:00:00 2001
From: masnwilliams <43387599+masnwilliams@users.noreply.github.com>
Date: Tue, 12 May 2026 23:47:26 +0000
Subject: [PATCH 4/4] track errored slug to avoid stale fallback flash

useEffect runs after paint, so when the provider prop changes the
first render still sees errored=true and briefly shows the letter
avatar. Tracking the errored slug directly makes the check happen
during render.
---
 packages/managed-auth-react/src/components/icons.tsx   | 10 ++--------
 .../managed-auth-react/src/components/sso-provider.tsx |  9 ++++-----
 2 files changed, 6 insertions(+), 13 deletions(-)

diff --git a/packages/managed-auth-react/src/components/icons.tsx b/packages/managed-auth-react/src/components/icons.tsx
index 9dbd6af..431bc57 100644
--- a/packages/managed-auth-react/src/components/icons.tsx
+++ b/packages/managed-auth-react/src/components/icons.tsx
@@ -230,10 +230,7 @@ export const GitHubMark = (p: IconProps) => (
 export const GitLabMark = (p: IconProps) => (
   <svg viewBox="0 0 24 24" aria-hidden="true" {...p}>
     <path d="M12 23.054l3.684-11.335H8.316L12 23.054z" fill="#E24329" />
-    <path
-      d="M12 23.054L8.316 11.719H1.647L12 23.054z"
-      fill="#FC6D26"
-    />
+    <path d="M12 23.054L8.316 11.719H1.647L12 23.054z" fill="#FC6D26" />
     <path
       d="M1.647 11.719L.253 16.01a.95.95 0 00.346 1.062L12 23.054 1.647 11.719z"
       fill="#FCA326"
@@ -242,10 +239,7 @@ export const GitLabMark = (p: IconProps) => (
       d="M1.647 11.719h6.669L5.633.926a.477.477 0 00-.908 0L1.647 11.719z"
       fill="#E24329"
     />
-    <path
-      d="M12 23.054l3.684-11.335h6.669L12 23.054z"
-      fill="#FC6D26"
-    />
+    <path d="M12 23.054l3.684-11.335h6.669L12 23.054z" fill="#FC6D26" />
     <path
       d="M22.353 11.719l1.394 4.291a.95.95 0 01-.346 1.062L12 23.054l10.353-11.335z"
       fill="#FCA326"
diff --git a/packages/managed-auth-react/src/components/sso-provider.tsx b/packages/managed-auth-react/src/components/sso-provider.tsx
index c387209..27eb5c8 100644
--- a/packages/managed-auth-react/src/components/sso-provider.tsx
+++ b/packages/managed-auth-react/src/components/sso-provider.tsx
@@ -1,4 +1,4 @@
-import { useEffect, useState, type ReactNode } from "react";
+import { useState, type ReactNode } from "react";
 import {
   AppleMark,
   BuildingIcon,
@@ -44,12 +44,11 @@ function titleCase(provider: string): string {
 }
 
 function CDNProviderIcon({ provider }: { provider: string }) {
-  const [errored, setErrored] = useState(false);
-  useEffect(() => setErrored(false), [provider]);
+  const [erroredSlug, setErroredSlug] = useState<string | null>(null);
   const slug = slugify(provider);
   const letter = provider.trim().charAt(0).toUpperCase() || "?";
 
-  if (!slug || errored) {
+  if (!slug || erroredSlug === slug) {
     return (
       <span className="kma-sso-icon kma-sso-icon--letter" aria-hidden="true">
         {letter}
@@ -62,7 +61,7 @@ function CDNProviderIcon({ provider }: { provider: string }) {
       src={`https://cdn.simpleicons.org/${slug}`}
       alt=""
       className="kma-sso-icon"
-      onError={() => setErrored(true)}
+      onError={() => setErroredSlug(slug)}
     />
   );
 }