Search Results :
×This solution enables you to configure Single Sign-On (SSO) into your Shopify store and authenticate via JWT with your Cognito credentials. When you use JWT authentication with single sign-on (SSO), a user's identity is verified when they sign in to Cognito. The user can then access the Shopify store without entering any additional sign-in information. The Shopify store is only accessible to users who have been authenticated by your Cognito application.
When a user logs in to your Cognito application, the JWT issuer pulls the user's information from the Cognito userbase to create a JWT token with three parts: header, payload, and signature. This JWT token is then appended to the Shopify SSO link, and when the user clicks on the SSO link, a signature validation process occurs; if the signature is validated, the user is authentic, and access to the Shopify store is granted; otherwise, access is denied.
To configure Single Sign-On (SSO) on your Shopify store using JWT, you will need to install the miniOrange Single Sign On - SSO Application on your Shopify store:
miniOrange Provides Secure Single Sign-On (SSO) access to your Shopify applications(both plus and Non plus Stores).
JWT Identifier | Enter appropriate IDP name (It will be used in SSO link) |
Login URL | Authentication endpoint of company on which the user will get authenticated and get redirected to miniOrange JWT SSO link |
User Identifier | The attribute in which you are passing email address as parameter |
JWT Signing Algorithm |
Token Introspection |
Introspection Endpoint | The token introspection endpoint provided by the Cognito application using which we will verify the jwt token. |
Customer ID | miniOrange will provide customer ID |
IdpIdentifier | JWT Identifier in above image |
JWT token | Provided by the organization using SSO services. The JWT token needs to have these three mandatory parameters in the payload:
iat - The time when this token was issued. exp - expiration time of this token. user_identifier - attribute in which you are passing email address |
Store-domain | The primary domain of your Shopify store |
https://store.xecurify.com/moas/broker/login/jwt/callback/{customerId}/{idpIdentifier}/{jwtToken}?relay=https://store.xecurify.com/moas/broker/login/shopify/<store-domain>/account
If you are looking for anything which you cannot find, please drop us an email on shopifysupport@xecurify.com.
Need Help? We are right here!
Thanks for your inquiry.
If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com
This privacy statement applies to miniorange websites describing how we handle the personal information. When you visit any website, it may store or retrieve the information on your browser, mostly in the form of the cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not directly identify you, but it can give you a more personalized web experience. Click on the category headings to check how we handle the cookies. For the privacy statement of our solutions you can refer to the privacy policy.
Necessary cookies help make a website fully usable by enabling the basic functions like site navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any personal identifiable information. However, some parts of the website will not work properly without the cookies.
These cookies only collect aggregated information about the traffic of the website including - visitors, sources, page clicks and views, etc. This allows us to know more about our most and least popular pages along with users' interaction on the actionable elements and hence letting us improve the performance of our website as well as our services.