Search Results :

×
Sign Up Contact Us

Contents

Single Sign-On (SSO) between Two Magento Sites

Magento as an IDP Single Sign On (SSO) extension would allow you to configure Single Sign On (SSO) between your 2 Magento sites. This extension will let you configure one of your Magento Sites as your Service Provider (Magento as SP) and your other Magento Site as the IdP (Magento as IdP). Login into one Magento site using second site Magento user credentials. This guide will help you integrate SSO between two Magento sites using the miniOrange Magento IDP (Identity Provider) Extension.

download plugin button Download plugin pricing button plugin pricing button Pricing Plans plugin pricing button schedule meeting button Schedule a Meeting
  • Purchase the miniOrange Magento IDP Single Sign-On extension from magento marketplace.
  • Go to My profile -> My Purchases
  • Please ensure you are using correct access keys (My Profile - Access Keys)
  • Paste the access keys in your auth.json file inside your project
  • Use the below command to add the extension to your project. 
    "composer require {module_name}:{version}"
  • You can see the module name and list of versions in the selector below the extension module name.
  • Run the following commands on command prompt to enable the extension.
    • php bin/magento setup:upgrade
  • Download the miniOrange Magento IDP Single Sign-On extension.
  • Unzip all contents of the zip inside the MiniOrange/IDPSaml directory.
    • {Root Directory of Magento} app code MiniOrange IDPSaml
  • Run the following commands on command prompt to enable the extension
    • php bin/magento setup:upgrade

Step 1. Setup 1st Magento Site as IdP (Identity Provider)

  • In the miniOrange Magento SAML SSO extension, navigate to Service Provider Metadata tab. In this tab you will find the SP metadata such as SP Entity ID and ACS (AssertionConsumerService) URL which are required to configure the second Magento site as the Identity Provider.
    • Configure Azure AD as IDP -SAML Single Sign-On(SSO) for Magento - Azure AD SSO Login

  • Now navigate to the second Magento site. In the miniOrange IDP (Identity Provider) extension, go to Applications tab.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Search for Custom SAML in the choose application searchbox and select the application.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Enter the Application name under SP Name.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Now, enter the SP Entity ID or Issuer and ACS URL copied earlier and save the details.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites

Step 2. Configure 2nd Magento Site as Service Provider

  • Navigate to the Applications tab and click on Metadata settings for the Magento application
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Here, you can find the Identity Provider Metadata URL /XML Metadata or endpoints like IDP Entity ID, SAML Login URL, SAML Logout URL (Premium Feature), Certificate. You can also download the IdP Metadata XML file which will be used for Magento configuration.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • You will now have 2 options to provide the IDP Metadata to your another Magento site by downloading the XML Metadata, Metadata URL or providing the detials manually.
  • Option 1 - Download the XML Metadata.
  • Download the XML Metadata by clicking it on Download XML Metadata button.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Navigate to your another Magento site and upload the XML metadata file downloaded and click on the Save button.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Option 2 - Metadata URL.
  • You can also copy the Metadata URL and provide it to your service provider to fetch the metadata.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Option 3 - Provide the details manually to the another Magento site.
  • Copy the metadata details according to the table below.
    • Magento SAML IDP | Login with Magento Users - SSO between Two Magento Sites
    IDP-EntityID / Issuer IDP-EntityID / Issuer
    Single Sign On URL SAML Login URL / Passive Login URL
    SAML X509 Certificate Certificate
  • Navigate to your another Magento site and paste the metadata details.

Step 3. Attribute Mapping *(This is a Premium Feature)

  • In the miniOrange Magento IDP extension, navigate to the Applications tab and click on Edit settings for the Magento application.
    • Magento 2 SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Click on Add Attribute button.
    • Magento 2 SAML IDP | Login with Magento Users - SSO between Two Magento Sites
  • Add the attribute name you want to send to your service provider and select the attribute from the dropdown menu and click on Save Button to save changes.
    • Magento 2 SAML IDP | Login with Magento Users - SSO between Two Magento Sites

You have successfully configured the SSO between two Magento sites using one Magento site as SAML Service Provider.


Step 1. Configure 1st Magento Site as OAuth Client

  • Download the miniOrange Magento OAuth SSO extension from Magento Marketplace.
  • Once installed, Go to the OAuth Providers tab.
  • Copy the callback URL and keep it handy.
    • OAuth server Single Sign-On(SSO)Magento- Salesforce go to setup


Step 2. Configure 2nd Magento Site as OAuth Server

  • In the miniOrange IDP extension, go to Applications tab and Click on Add Application button.
    • Magento as IDP Add Application

  • Select OAuth/OpenID from the applications menu.
    • Magento as IDP OAuth

  • Search for Magento in the choose application searchbox and select the application.
    • Magento as IDP Choose App

  • Enter the OAuth Client Name as Magento
    • Magento as IDP client name

  • Paste the Redirect URL copied earlier in the Redirect URL field.
    • Magento as IDP redirect URL

  • Enter openid email profile in the scope field and save the changes.
    • Magento as IDP scope

  • Navigate to the Applications tab and click on Edit settings for your application
    • Magento as IDP edit app

  • You would see that the Client ID and Client Secret are automatically generated. Copy them and keep them handy.
    • Magento as IDPclient id secret

  • Paste the Client ID and Client Secret in the Magento as OAuth Client extension.
  • Navigate back to the Magento IDP extension and Click on Click Here link to get the Magento OAuth Endpoints
    • Magento as IDP go to endpoints

  • Here you would receive all the Endpoints. Copy them as requried.
    • Magento as IDP copy endpoints

  • Paste the Endpoints in the endpoints field in your Magento as OAuth Client extension and click on Save to save the configuration.

Step 4. Attribute Mapping (This is a Premium Feature)

  • In the miniOrange Magento IDP extension, navigate to the Applications tab and click on Edit settings for your application.
    • Magento as IDP - Edit app

  • Add the attribute name you want to send to your OAuth Server and select the attribute from the dropdown menu.
    • Magento as OAuth Server - Attribute Mapping

  • Click on Add Attribute and add the attribute name you want to send to your OAuth Client and select the attribute from the dropdown menu and click on Save Button to save changes.
    • Magento as OAuth Server - add and save attribute mapping

You have successfully configured the SSO between two Magento sites using one Magento site as an OAuth Client


Please reach out to us at magentosupport@xecurify.com, and our team will assist you with setting up the Magento IDP SSO Extension. Our team will help you to select the best suitable solution/plan as per your requirement.

ADFS_sso ×
Hello there!

Need Help? We are right here!

support