What is the difference between a Single & Multisite network?

If you have a WP multisite installation, you need to install the Multisite plugin.

WordPress OAuth Single Sign-On

WordPress Single Sign-On SSO plugin allows SSO login in WordPress via any OAuth/OpenID Connect Identity provider such as Azure AD, Azure B2C, AWS Cognito, Clever, ClassLink, Discord, KeyCloak, and others. WordPress SSO allows secure login to your WordPress site without having to remember a username and password. WordPress SSO

Wordpress SSO - WordPress Single Sign-On - WordPress OAuth client banner image

Our loyal and trusted customers across the globe

What WordPress Single Sign-On (SSO) can do?

Why OpenID Connect for your WordPress Single Sign-On?

OIDC, built on OAuth 2.0, offers a standardized, secure, and adaptable SSO protocol, making it ideal for user-friendly WordPress SSO across web and mobile applications. Learn more about the OAuth2.1 SSO protocol.

OIDC SSO supports diverse authentication flows, including authorization code with PKCE, implicit, and hybrid flows, catering to different use cases and client types in WordPress SSO. Discover more about why you should use OAuth/OpenID Connect for WordPress SSO.

WordPress Single Sign-On enhances security with encrypted ID token validation, mitigating risks like token theft and man-in-the-middle attacks, aligning seamlessly with OIDC flow.

How to setup WordPress Single Sign-On SSO?

Step 1

Get started with a few clicks-download and install with ease!

Download and Install WordPress Single Sign On – SSO (OAuth Client) plugin from WordPress.org.

Download the Plugin

WordPress SSO - WordPress Single Sign-On - Download & Install plugin

WordPress SSO - WordPress Single Sign-On - Configure providers

Step 2

Experience seamless configuration

After installation, configure Single Sign-On application in your Identity provider by configuring your WordPress site URL as a Redirect / Callback URL on IDP and bring back Client ID and Client secret from your IDP side.

Step 3

Congratulations! You are all done with SSO setup!

Configure Client ID and Client secret received from IDP in WordPress SSO plugin to estalblish a successful Single Sign-On connection.

WordPress SSO - WordPress Single Sign-On - Successful configuration

Key Features

Protect Site with SSO

Restrict complete site from non logged-in users which will auto-redirect users to SSO provider's login page. Users will be forced to do Single Sign-On before accessing WordPress site.

Discover amazing features of the WordPress SSO plugin

WordPress SSO - WordPress Single Sign-On - SSO User Account Linking

Auto Create SSO users in WP

If the user is not present in the WordPress user list, it will be auto-created during Single Sign-On (SSO)

Multiple IDP Support

Allow users to login into WordPress by choosing a IDP among multiple IDPs (OAuth/OpenID/JWT providers) configured with WordPress SSO

WordPress SSO - WordPress Single Sign-On - Key feature illustration

Domain Restrictions

Based on the user's email domain, allow/deny users to login into Website using WordPress Single Sign-On

SSO User Account Linking

Sync user profile attributes from IDP to WordPress user profile fields during Single Sign-On (SSO), Also assign WordPress roles based on the user's groups in the IDP

Page Restriction

Restrict the WordPress pages, posts, and categories based on SSO users' roles/groups and their logged-in status. Redirect the restricted users to configured WordPress SSO Provider Login page.

Multisite Multinetwork support

Configure SSO on WordPress multisite network with the same IDP for all subsites and manage WordPress SSO settings for each subsite at the network level.

Discover our wide range of integrations

100+

OAuth and OpenID providers support

24/7

Support

6000+

Plugin Active Installations

Azure AD

Office 365

Cognito

Keycloak

Discord

Clever

ClassLink

Azure B2C

Salesforce

Okta

Other Integrations

Effortlessly activate Single Sign-On (SSO) on your WordPress site with our plugin, seamlessly connecting to any Identity Provider supporting OAuth 2.0 and OpenID Connect (OIDC) 1.0 protocols. Elevate WordPress SSO login by integrating with popular providers like Azure AD, Azure B2C, AWS Cognito, Clever, ClassLink, Discord, KeyCloak, and others.

We also support advanced SSO functionalities for Cognito and Discord. Explore other Addons in our WordPress SSO Integrations. Additionally, our integrations extend to various digital identity providers, including Criipto, Signicat & etc.

WordPress Cognito Integrator

Discord WordPress Integrator

Our Pricing

If you have a dev-staging-prod type of environment, you will require 3 plugin licenses (with discounts applicable on pre-production environments). This is because the license is linked to the domain of the WordPress instance. Contact us at oauthsupport@xecurify.com for bulk discounts.

Single Site Multisite Network

STANDARD

349

No. Of Instances:

Basic Attribute & Role Mapping
Auto-create SSO users & SSO Widget
Shortcode and SSO Link

PREMIUM

499

No. Of Instances:

Protect Site with SSO
Email Domains Restriction
JWT Validation Support
Advanced Role + Group Mapping

ENTERPRISE

549

No. Of Instances:

Multiple Providers Support
Developer Hooks
PKCE Flow Support
Enable/Disable WordPress Login

ALL - INCLUSIVE

699

No. Of Instances:

All Enterprise plan features

Addons
Page and Post Restriction
LearnDash Integration
Check out others →

Features

OAuth/OpenID/JWT compliant provider
No. of OAuth/OpenID/JWT compliant provider Supported
Just In Time User Provisioning / Auto-creation
Account Linking Syncs user profile from IDP to WordPress
Basic Attribute Mapping (Username, FirstName, LastName, Email)
SSO Widget, Shortcode and SSO Link
SSO Button Customization
OAuth/OpenID Supported Grant Types
Basic Role Mapping (Set Default role to all SSO users)
Redirect all SSO users to specific URL after Login or Logout
Custom + Advanced Attribute Mapping Extended user profile Mapping
Advanced Role + Group Mapping
JWT Validation Support (HSA, RSA support for signature verification)
Protect Complete Site with SSO (Forced Authentication)
Email Domain Restriction (Whitelist/Blacklist email domains from SSO)
WP hooks to read token, Login event plugin functionality & many more
End User Single Sign-On Reports / Analytics
Enable/Disable WordPress Default Login Prerequisite: your IDP has SLO support
Front channel and Backchannel Single Logout (SLO) Support
Other Add-ons

Standard

The price is for one instance

^$349

Users

One

Authorization Code Grant

Premium

The price is for one instance

^$499

Users

One

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Enterprise Most Purchased

The price is for one instance

^$549

Users

Unlimited

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

All - Inclusive Most Popular

The price is for one instance

^$699

Users

Unlimited

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

PREMIUM

589

No. of instances:

No. of Subsites:

Protect Site with SSO
Email Domains Restriction
JWT Validation Support
Advanced Role + Group Mapping

ENTERPRISE

639

No. of instances:

No. of Subsites:

Multiple Providers Support
Developer Hooks
PKCE Flow Support
Enable/Disable WordPress Login

ALL - INCLUSIVE

789

No. of instances:

No. of Subsites:

All Enterprise plan features

Addons
Page and Post Restriction
LearnDash Integration
Check out others →

Features

OAuth/OpenID/JWT compliant provider
No. of OAuth/OpenID/JWT compliant provider Supported
Just In Time User Provisioning / Auto-creation
Account Linking Syncs user profile from IDP to WordPress
Basic Attribute Mapping (Username, FirstName, LastName, Email)
SSO Widget, Shortcode and SSO Link
SSO Button Customization
OAuth/OpenID Supported Grant Types
Custom Redirect URL after login and logout
Advanced Role + Group Mapping
Redirect all SSO users to specific URL after Login or Logout
JWT Validation Support (HSA, RSA support for signature verification)
Protect Complete Site with SSO (Forced Authentication)
Email Domain Restriction (Whitelist/Blacklist email domains from SSO)
WP hooks to read token, Login event plugin functionality & many more
End User Single Sign-On Reports / Analytics
Enable/Disable WordPress Default Login Prerequisite: your IDP has SLO support
Other Add-ons

Premium

The price is for one instance

^$589

Users

One

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Enterprise

The price is for one instance

^$639

Users

Unlimited

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

All - Inclusive Most Popular

The price is for one instance

^$789

Users

Unlimited

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

Frequently Asked Questions

WordPress SSO - WordPress Single Sign-On - FAQ Illustration

Do I need to pay one-time or annually?

The plugin licenses are subscription based and you have to pay annually
What is the refund policy?

You will be able to claim refund only if the request has been raised within 10 days from the date of purchase, only under the following circumstances: a) if the software or the features you have purchased is not working as advertised on the website/ marketplace and you have attempted to resolve the issues with our support team; b) you have purchased the wrong license or Xecurify/miniOrange product and informed us within a period of 10 days from your purchase; Please read more about the Refund Policy in our End User License Agreement.
What is one instance?

A single installation of a WordPress site is referred to as a WordPress instance. It refers to each and every website on which the plugin is installed. Each website will be counted as a single instance in the case of a single site WordPress installation.
What is the difference between a Single & Multisite network?

If you have a WP multisite installation, you need to install the Multisite plugin, Click here. You can check how our multisite plugin works here. There is an additional cost for the number of subsites in the Multisite Network since the Multisite licenses are based on the total number of subsites in your WordPress Network.
Need seperate license for my non-production environment?

Yes, we have an instance-based licensing policy. The plugin's licensing is linked to the domain of the WordPress instance. Thus, if you have a dev-staging-prod environment, you'll need three licenses (with discounts applicable on pre-production environments). Additionally, If you need to transfer a license to a different domain, you can deactivate it from the current domain and activate it on the new one.

Popular Usecases

Single Sign On +
Page Restriction

This integration with Page & Post restriction allows you to control who can view and/or edit individual pages. You can add restrictions for individual pages or for WordPress groups. Multiple roles could be assigned to users simultaneously.

Single Sign On +
Media Restriction

The Media Restriction plugin gives you the ability to prevent direct access to your WordPress media files, directories, & uploads folders with ease. You can prevent access based on user login status, roles, purchased memberships etc.

Learn More

AWS Cognito
Integration

Cognito Integration plugin offers a solution that allows users to sync user data between WordPress and AWS Cognito, like the membership status can be synchronized to Cognito when members upgrade, downgrade, or when their subscriptions expire. How to AWS SSO?.

Learn More

Single Sign-On +
Learndash/LMS Integration

Single Sign-On (SSO) with Learndash intgeration saves the tedious task of signing up and remembering new credentials for the teachers & students by mapping the Learndash groups based on the attributes sent by the Identity Provider.

Learn More

Transparency is key - explore our plugin policies

Our paid plugins don't come with a developer license, and unauthorized code modifications are prohibited. Developers can enhance functionality within set boundaries using the plugin's hooks.
At miniOrange, we prioritize data security. No information from the OAuth/OpenID/JWT Connect provider is stored or transferred to WordPress; it remains securely on your premises/server.
Our flexible licensing covers diverse use cases. Unlimited instances initially come with up to 200 licenses, and smaller needs can opt to buy licenses directly.

See what our customers are saying about us!

WordPress SSO - WordPress Single Sign-On - Testimonial Illustration

The WordPress SSO plugin has amazing capabilities, including working well with dated and confusing integration providers. Even better, our team had an excellent experience working with miniOrange support crew over the course of implementation. They were able to work through any issues with us and provided comprehensive instruction needed to utilize the plugin for our specific requirements.

Grassroots Online Inc., US

I worked with the miniOrange support reps and they were all excellent. Very knowledgeable and willing to answer all my questions and work through my WordPress SSO setup. I was very happy with the support and responsiveness of the miniOrange team.

EUDA Health Limited, US

The miniOrange OAuth SSO plugin truly helped to simplify the process of connecting our identity provider to our new website for authentication support. Documentation is good but having a very knowledgeable support team available and eager to help put this over the top. The support team was super responsive in working out what we needed and providing us with just the right advice to get this configured correctly. Much appreciated!

Bentley Systems, US

What is WordPress Reseller/Partner program?

By joining the miniOrange WordPress Reseller/Partner program, you can become a part of an elite community that offers exceptional partnership and product management practices for WordPress. If you are interested in this program, you can find out more about it clicking on know more.

Know More

Want to Schedule a Demo?

Thank you for your response. We will get back to you soon.

Something went wrong. Please submit your query again

WordPress Single Sign-On SSO OAuth/OpenID

What WordPress Single Sign-On (SSO) can do?

How to setup WordPress Single Sign-On SSO?

Discover our wide range of integrations

Our Pricing

STANDARD

No. Of Instances:

PREMIUM

No. Of Instances:

ENTERPRISE

No. Of Instances:

ALL - INCLUSIVE

No. Of Instances:

Features

Users

Authorization Code Grant

Users

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Users

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

Users

Authorization Code Grant, Password Grant, Client Credentials Grant, Implicit Grant, Refresh token Grant, Authorization code grant with PKCE flow

PREMIUM

ENTERPRISE

ALL - INCLUSIVE

Features

Users

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Users

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Users

Authorization Code Grant, Password Grant, Implicit Grant, Refresh token Grant

Frequently Asked Questions

Do I need to pay one-time or annually?

What is the refund policy?

What is one instance?

What is the difference between a Single & Multisite network?