Integration of AWS Cognito Single Sign-on( Amazon Web Services Cognito SSO ) with Joomla using OAuth 2.0 Protocol. The miniOrange Joomla OAuth / OpenID Connect Single SIgn-on (SSO) plugin makes it simple to set up AWS Cognito SSO into Joomla and enable secure login into Joomla. As a result, users can log in to Joomla and access the site by authenticating with their AWS Cognito identity provider credentials.
Visit our Joomla OAuth Client Plugin webpage to learn more about the features and plans we offer for the Joomla OAuth Single Sign-on (OAuth & OpenID connect) plugin.
Plugin Download and Video Setup Guide
Joomla OAuth Client Handbook
This detailed Handbook for the Joomla OAuth/OpenID Single Sign On plugin, gives an in depth explanation of the features of the plugin. You can refer to the handbook at anytime - it is always available to you, either via this link , or directly from the plugin for quicker access.
Setup Amazon AWS Cognito as OAuth Provider with Joomla OAuth Client
- Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here .
- Login into your Joomla site’s administrator console.
- From Menu, click on System, then under Install section click on Extension.
- Upload the downloaded zip file to install the Joomla OAuth Client plugin.
- Installation of plugin successful. Now click on Start Using miniOrange OAuth Client plugin.
- Sign in to AWS Amazon.
- Now enter “Cognito” in search box & select Cognito from dropdown.
- Now click on “Manage User Pools”
- Click on “Create a user pool”
- Enter your pool name and click on “Review Defaults”.
- Click on “Add app client” & then click on Add an app client
- Enter App client name & then Click on “Create app client”.
- Click on Return to pool details. After this click on “Create Pool”.
- Navigate to App client settings.
- Select “Cognito User Pool”.
- Copy the Callback/Redirect URL form Configure OAuth tab of Joomla OAuth Client plugin and paste it into the Callback URL(s) text-field.
- Also, Click on checkbox of Authorization code grant of Allowed OAuth Flows & click on checkbox of OpenID of Allowed OAuth Scope. Then click on Save Changes button
- Now go to “App client” from left menu and then click on “Show details” to get a App Client ID and Client secret.
- Go to domain name and enter a domain name for your app. After adding domain name you can check its availability by clicking on “Check availability” button. After entering valid domain name click Save changes button.
- Complete domain name: The complete domain name that you need to enter in module is
{your domain name}.auth.{region name}.amazoncognito.com
- Go to miniOrange Joomla OAuth Client plugin, Paste the App Client ID, Client Secret and Domain then click on Save Settings button.
- Add Users / Groups to Cognito App : Go to Users and groups and then click on Users. After this click on Create user.
- Fill all required informations and click on Create user.
- Click on Groups and then click on Create group.
- Fill all required informations and click on Create group.
- AWS Cognito Endpoints and scope:
|
Scope:
|
openid
|
|
Authorize Endpoint:
|
https://<cognito-app-domain>/oauth2/authorize
|
|
Access Token Endpoint:
|
https://<cognito-app-domain>/oauth2/token
|
| Get User Info Endpoint: |
https://{domain}/oauth2/userInfo |
Attributes Mapping and SSO with AWS Cognito
- Once you click on Test Configuration button, You will be able to see the attributes in the Test Configuration output as follows.
- Now you have to do Attribute Mapping to perform SSO. Select the attribute name for Email and Username from dropdown.
- Now you can use Login / SSO URL to perform SSO.
In this Guide, you have successfully configured Joomla AWS Cognito Single Sign-On (SSO) by configuring AWS Cognito as OAuth Provider and Joomla as OAuth Client using our Joomla OAuth Client plugin.This solution ensures that you are ready to roll out secure access to your Joomla site using AWS Cognito login credentials within minutes.
Additional Resources
Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.
