Guide: Joomla OAuth Client Integration with Azure Active Directory B2C Single Sign-On (SSO) | Azure AD B2C SSO


Integration of Azure AD B2C Single Sign-on( Azure Active Directory B2C SSO ) with Joomla using OAuth 2.0 Protocol. The miniOrange Joomla OAuth / OpenID Connect Single SIgn-on (SSO) plugin makes it simple to set up Azure AD B2C (Microsoft Azure) SSO into Joomla and enable secure login into joomla. As a result, users can log in to Joomla and access the site by authenticating with their Azure AD B2C identity provider credentials.
Visit our Joomla OAuth Client Plugin webpage to learn more about the features and plans we offer for the Joomla OAuth Single Sign-on (OAuth & OpenID connect) plugin.

Plugin Download and Video Setup Guide


Steps to configure Azure AD Single Sign-On (SSO) Login into Joomla

1. Setup Azure Active Directory as OAuth Provider

  • Sign in to Azure portal.
  • Go to Home and in the Azure services, select Azure AD B2C.
  • Azure AD B2C Single Sign-on (SSO) - Select Azure AD B2C
  • Please make sure you are in the Azure AD B2C directory with an active subscription and if not, you can switch to the correct directory.
  • Azure AD B2C Single Sign-on (SSO) - Login Applications
  • In the Essentials tab, you will find the Azure B2C domain name, keep it handy, you will need it later for configuring the Azure B2C tenant name under Joomla as an OAuth client.

    What is Tenant Name?
    You will need to copy the highlighted domain name portion only in order to configure the tenant name in the Joomla OAuth Client plugin.
    Eg. If your domain name is 'exampledomain.onmicrosoft.com', then your tenant name will be 'exampledomain'.


  • Azure AD B2C Single Sign-on (SSO) - Generate Key
  • Now, click on App registrations and then click on the New registration option to create a new Azure b2c application.
  • Azure AD B2C Single Sign-on (SSO) - Login Applications
  • Configure the following options to create a new application.
    • Enter a name for your application under the Name text field.
    • In supported account types, select 3rd option ‘Accounts in any identity provider or organizational directory (for authenticating users with user flows)’
    • In the Redirect URI section, select the Web application and enter the Callback URL from the miniOrange OAuth Client plugin (Configure OAuth tab) and save it under the Redirect URL textbox.
    • Click on the Register button to create your application.
    • Azure AD B2C Single Sign-on (SSO) - Create
  • After successful application creation, you will be redirected to the newly created application’s overview page. If not, you can go to the app registrations and search the name of your application and you will find your application in the list.
  • Azure AD B2C Single Sign-on (SSO) - Applications option
  • Copy your Application ID and keep it handy, you will need it later for configuring the Client ID under Joomla as an OAuth Client plugin.
  • Azure AD B2C Single Sign-on (SSO) - Application ID
  • Now, click on Certificates and secrets and then click on New client secret to generate a client secret. Enter a description and click on the Add button.
  • Azure AD B2C Single Sign-on (SSO) - Generate Key
  • Copy the secret value from certificates & secrets page and keep it handy, you will need it later for configuring the Client Secret under Joomla as an OAuth Client plugin.
  • Azure AD B2C Single Sign-on (SSO) - Generate Key

Step 1.1: Add Users in your b2c application

  • In home page, go to the Users tab in the left corner
  • Azure AD B2C Single Sign-on (SSO) - user flow
  • Click on New user in the users page
  • Azure AD B2C Single Sign-on (SSO) - user flow
  • Select Create Azure AD B2C user. Then, scroll down and click on Email from sign in method and set your password and click create to save the user details to perform test configuration.
  • Azure AD B2C Single Sign-on (SSO) - user flow Azure AD B2C Single Sign-on (SSO) - user flow

Step 1.2: How to create & add Azure B2C Policy

  • Go to User Flows tab and then click on New user flow.
  • Azure AD B2C Single Sign-on (SSO) - user flow
  • Select a User flow type Sign up and Sign in then click on Create button.
  • Azure AD B2C Single Sign-on (SSO) - sect user flow
  • Fill all the information e.g. Name, Identity providers, etc. then click on Create button.
  • Azure AD B2C Single Sign-on (SSO) - information of user flow
  • Copy the Policy name this value whenever you need to enter Azure B2C Policy in miniOrange OAuth Client plugin.

Step 1.3: Add user claims to your application

  • Go to user flows under policies in the left corner.Select the configured policy.
  • Azure AD B2C Single Sign-on (SSO) - information of user flow
  • Select Application claims in settings
  • Azure AD B2C Single Sign-on (SSO) - information of user flow
  • Select the desired attributes to be displayed on the test configuration and save it.
  • Azure AD B2C Single Sign-on (SSO) - information of user flow

You have successfully configured Azure AD B2C as OAuth Provider for achieving user authentication with Azure AD B2C Single Sign-On (SSO) login into your Joomla Site.

1.4: Scope & Endpoints

Please refer the below table for configuring the scope & endpoints for Azure B2C in the plugin.

Scope: openid
Authorize Endpoint: https://<domain-name >.b2clogin.com/<domain-name>.onmicrosoft.com/<policy-name>/oauth2/v2.0/authorize
Access Token Endpoint: https://<domain-name>.b2clogin.com/<domain-name>.onmicrosoft.com/<policy-name>/oauth2/v2.0/token
Get User Info Endpoint: https://graph.microsoft.com/v1.0/me
Custom redirect URL after logout: [optional] https://<domain-name>.b2clogin.com/<domain-name>.onmicrosoft.com/<policy-name>/oauth2/v2.0/logout?post_logout_redirect_uri=<your url>

2. Configure Joomla as OAuth Client


  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • From left toggle menu, click on System, then under Install section click on Extension.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the Joomla OAuth Client plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • From left toggle menu click on Components, then click on miniOrange OAuth Client , then click on Configure OAuth tab.
  • Under Configure OAuth tab . Select your OAuth Provider. (If your OAuth Provider not listed then click on Custom OAuth/ Custom OpenID connect App .)
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider. Then click on Test Configuration button.
  • joomla oauth provider OAuth tab
  • After click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
  • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • Go to Extension Manage Install in the top navigation bar to install the plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the OAuth Client plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Navigate to Extensions Manage Manage and search for miniorange in the Search bar provided to see the list of the components.
  • Go to Components MiniOrange OAuth Client Configure OAuth tab from the top navigation bar to go to the configuration page of the plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Select your OAuth Provider from the Select Application dropdown. In case your OAuth Provider is not listed in the drop down, please select Custom OAuth Provider to continue.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider.
  • Click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
  • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

In this Guide, you have successfully configured Azure AD B2C Single Sign-On (SSO) by configuring Azure AD B2C as OAuth Provider and Joomla as OAuth Client using our Joomla OAuth Single Sign-On ( OAuth / OpenID Connect Client ) plugin.This solution ensures that you are ready to roll out secure access to your Joomla site using Azure AD B2C login credentials within minutes.

Additional Resources


Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com