Search
START TYPING AND PRESS ENTER TO SEARCH

Apple Single Sign-On (SSO) OAuth / OpenID Connect into Joomla | Apple SSO Login

Integration of Apple Login ( Apple SSO ) with Joomla using OAuth 2.0 Protocol.
The Joomla OAuth / OpenID Connect Single Sign-On (SSO) plugin makes it simple to set up Apple Login to Joomla (Apple Single Sign-on) using OAuth2.

Click here to learn more about the additional capabilities included in the Joomla OAuth Single Sign-On (OAuth & OpenID Connect Client) plugin.

What is OAuth 2.0?

OAuth 2.0 is the industry-standard authorization protocol. OAuth 2.0 priorities client developer ease of use while offering particular authorization processes for web apps, desktop applications, mobile phones, and living room devices.

OAuth2 allows application developers to create apps that use authentication and data from the Apple API. There are several methods of OAuth2 authentication available in Apple. We support the authorization code grant, the implicit grant, client credentials, and certain customized specials for Apple flows.

Joomla OAuth & OpenID Connect Single Sign-On (SSO) plugin allows for secure login into Joomla while utilizing Apple as an OAuth and OpenID Connect provider. You may also configure the plugin to use several Oauth providers, such as Azure B2C, Office 365, and custom providers. It enables sophisticated Single Sign-On functionalities like user profile Attribute mapping, Role mapping, and so on. In this article, we will go through how to set up SSO between Joomla and Apple.

Click here to know more about other features we provide in Joomla OAuth Single Sign-On ( OAuth & OpenID Connect Client ) plugin

Pre-requisites : Download And Installation


  • Log into your Joomla instance as an admin.
  • Go to the Joomla Dashboard -> Extensions -> Manage and click on Install.
  • Seach for a Joomla OAuth Client plugin and click on Install Now.

Steps to configure Apple Single Sign-On (SSO) Login into Joomla

1. Setup Apple as OAuth Provider

  • First of all, go to https://developer.apple.com click on Account and Login with your Apple developer account.
    • Apple Single Sign-On With Joomla Oauth Client, Apple Single Sign-On With Joomla Oauth Client,
  • Click on Certificates, Identifiers & Profiles tab.
    • Apple Single Sign-On With Joomla Oauth Client, Identifiers and Profiles
  • In the left menu Click on Identifiers and after that click on the Plus Icon(blue color) . Click on Continue for the next 2 pages.
    • Apple Single Sign-On With Joomla Oauth Client, login user Identifiers
  • Enter Description and Bundle ID for the App ID. (The Bundle ID should be in reverse-dns style string.)
    • Apple Single Sign-On With Joomla Oauth Client,login app Description
  • In the Capabilities section scroll down and select sign with apple and Click on Edit link.
    • Apple Single Sign-On With Joomla Oauth Client,login Capabilities and Enable as a primary App Id
  • Select Enable as a primary App Id and click on Save. Click on Continue and then click on Register.
    • Apple Single Sign-On With Joomla Oauth Client, primary App
  • In the right corner click on Continue and after that Register button.
  • Again click the Plus icon( blue color). Select Service IDs and click on Continue.
    • Apple Single Sign-On With Joomla Oauth Client, app Plusicon
  • Enter Description and Identifier( Identifier would be your client id). and click on the Continue and after that Register button.
    • Apple Single Sign-On With Joomla Oauth Client, login description and clientid
  • Click on Keys tab from the left menu.Click on the Plus icon to register a new key.
    • Apple Single Sign-On With Joomla Oauth Client, app register a new key
  • Give your Key a name, and select Sign In with Apple and click on Configure button.
    • Apple Single Sign-On With Joomla Oauth Client, login key
  • Select your Primary Id and click on the Save button and after that at the right corner click on Continue and Register button.
    • Apple Single Sign-On With Joomla Oauth Client, login app Register
  • Click on the Download button once the key is downloaded click on the Done button.
    • Apple Single Sign-On With Joomla Oauth Client, Download once the key is downloaded
  • In the left menu click on Identifiers and the right top click on App IDs.
    • Apple Single Sign-On With Joomla Oauth Client, select app id
  • Click on Service IDs from the drop down menu.
    • Apple Single Sign-On With Joomla Oauth Client, select service IDs is apple AppIDs
  • Select your Service Id from the List.
    • Apple Single Sign-On With Joomla Oauth Client, select service IDs is apple AppIDs
  • Select Sign In with Apple and click on Configure button.
    • Apple Single Sign-On With Joomla Oauth Client, login app configure
  • Select the Primary App Id from the drop down, and Enter the Domain and Redirect URL in Domains and Subdomains and Return URLs respectively and click on the Next button (You will get the Domain name and Redirect URL from miniOrange plugin).
    • Apple Single Sign-On With Joomla Oauth Client, social login apple redirectURL
  • Verify the details and click on the Done button. After that at the right corner click on the Continue button.
  • Copy the Identifier value and click on the Save button.
    • Apple Single Sign-On With Joomla Oauth Client, app id and secret
  • Enter the Identifier value in the Client ID and copy the downloaded key value in Client secret of the miniOrange OAuth Client plugin.

1.1. Generating Secret Key

  • Download the Ruby installer from the following link https://rubyinstaller.org/downloads/ and then install it.
  • Search for the Start command prompt with ruby open the ruby command prompt andinstall the JWT gem by running the following command on the command line:gem install JWT.
  • Copy the below code in a file and save the file with the .rb extension. Keep this .rb fileand downloaded .p8 file in the same folder.
  • Enter the name of downloaded file example= "key.P8", key_id , client_id, team_id in the code
  • Open Ruby command prompt and run the above code using the following command ruby filename.rb
  • require 'jwt'key_file = 'key.P8'
    
    team_id = ''
    
    client_id = ''
    key_id = ''
    ecdsa_key = OpenSSL::PKey::EC.new IO.read key_file
    headers = {
    'kid' => key_id
    }
    claims = {
    'iss' => team_id,
    'iat' => Time.now.to_i,
    'exp' => Time.now.to_i + 86400*180,
    'aud' => 'https://appleid.apple.com',
    'sub' => client_id,
    }
    token = JWT.encode claims, ecdsa_key, 'ES256', headers
    puts token
  • You will get your secret key. Copy the secret key.
    • Apple Single Sign-On With Joomla Oauth Client, apple secret key

You have successfully configured Apple as OAuth Provider for for achieving Apple Single Sign-On (SSO) with Joomla for user integration.



2. Configure Joomla as OAuth Client


  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • From left toggle menu, click on System, then under Install section click on Extension.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the Joomla OAuth Client plugin.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • From left toggle menu click on Components, then click on miniOrange OAuth Client , then click on Configure OAuth tab.
  • Under Configure OAuth tab . Select your OAuth Provider. (If your OAuth Provider not listed then click on Custom OAuth/ Custom OpenID connect App .)
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider. Then click on Test Configuration button.
    • joomla oauth provider OAuth tab
  • After click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
    • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • Go to Extension Manage Install in the top navigation bar to install the plugin.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the OAuth Client plugin.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Navigate to Extensions Manage Manage and search for miniorange in the Search bar provided to see the list of the components.
  • Go to Components MiniOrange OAuth Client Configure OAuth tab from the top navigation bar to go to the configuration page of the plugin.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Select your OAuth Provider from the Select Application dropdown. In case your OAuth Provider is not listed in the drop down, please select Custom OAuth Provider to continue.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider.
  • Click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
    • Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
    • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

Recommended Add-Ons

Page and Post
Restriction

Page and Post Restriction plugin restricts Joomla pages and posts of the site based on User Roles and their Login Status.

Know More

Role/Group Based Redirection

Role/Group-Based Redirection Add-on can be used to redirect the user to a specific URL based on the roles/groups received from the OAuth server.

Know More

SSO Session
Management

SSO session management add-on manages the login session time of your users based on their Joomla roles.

Know More

Using our Joomla OAuth Client plugin, you have successfully configured Joomla Apple Single Sign-On (SSO) by Apple as OAuth Provider and Joomla as OAuth Client. This solution ensures that you are ready to provide safe access to your Joomla site using Apple login credentials in minutes.

Additional Resources


Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.

Hello there!

Need Help? We are right here!
support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com