nopCommerce OAuth Single Sign-On with miniOrange as OAuth Provider

nopCommerce OAuth Single Sign-On (SSO) module gives the ability to enable OAuth Single Sign-On for your nopCommerce store or site. Using Single Sign-On you can use only one password to access your nopCommerce store or site and services. Our module is compatible with all the OAuth-compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between nopCommerce and miniOrange considering miniOrange as OAuth Provider.

Pre-requisites: Download and Installation

• Download the nopCommerce OAuth Single Sign-On (SSO) module.
• To install the plugin, login as admin into your nopCommerce site or store. In the admin dashboard, navigate to Configuration Tab >> Local plugins.
• On the top right corner of the page select the Upload plugin or theme button to upload the downloaded plugin zip. Follow the instructions further to install the plugin.

Steps to configure nopCommerce OAuth Single Sign-On (SSO) using miniOrange as OAuth Provider

1. Configure miniOrange as IDP

• Sign in to miniOrange dashboard.

• To set the branding, go to Customization from the left menu and go to Login and Registration Branding tab.

• Under the Basic Settings change the Organization Name and click on Save.

• On the dashboard, go to Apps and click on Add Application.

• Click on the OAuth / OIDC tab and select OAuth2/OpenID Connect to create an application.

• For your created application, go to Select → Edit under the Action tab.

You have successfully configured miniOrange as OAuth Server (identity provider) for achieving SSO login into your nopCommerce store or application.

2. Configure nopCommerce as SP

• Under the Configure OAuth/OIDC tab, select miniOrange from the list of identity providers shown below

• When you are done configuring your identity provider, you will get client ID, client secret and all required authentication endpoints.
• Copy the Redirect/Callback URL from the plugin and provide it to your identity provider to configure it on their side.
• Fill the rest acquired details into the corresponding fields shown below:
• Click on Save.
• Note: Please make sure the Enable SSO checkbox is ticked.


• Please refer the below table for configuring the scope & endpoints for miniOrange in the plugin.

  Scope:	openid email profile
  Authorize Endpoint:	https://<miniOrange-domain>.xecurify.com/moas/idp/openidsso
  Token Endpoint:	https://<miniOrange-domain>.xecurify.com/moas/rest/oauth/token
  User Info Endpoint:	https://<miniOrange-domain>.xecurify.com/moas/rest/oauth/getuserinfo

3. Testing OAuth SSO

• Click on Test Configuration to verify if you have configured the plugin correctly.
• On successful configuration, you will get attributes name and attribute values in the test configuration window.

4. Attribute Mapping

• Under Attribute/Role Mapping tab, map the attribute names provided by your identity provider with your nopcommerce store attributes.
• Click on Save button.

5. Adding SSO link for your nopCommerce store

• Under the Redirection & SSO Link tab, use the URL labelled as Your Store SSO Link in your store to initiate the SSO.

You can even configure the Umbraco SAML Single Sign-On (SSO) module with any identity provider such as ADFS, Azure AD, Bitium, Centrify, G Suite, JBoss Keycloak, Okta, OneLogin, Salesforce, Cognito, OpenAM, Oracle, PingFederate, PingOne, RSA SecureID, Shibboleth-2, Shibboleth-3, SimpleSAML, WSO2 or even with your own custom identity provider. To check other identity providers, click here.

Additional Resources

• nopCommerce OAuth Single Sign-On (SSO)
• Web3 Login & NFT Gating for nopCommerce Applications
• ASP.NET SAML Single Sign-On (SSO)
• ASP.NET OAuth Single Sign-On (SSO)
• DNN OAuth Single Sign-On (SSO)
• DNN REST API Authentication
• Kentico SAML Single Sign-On (SSO)