WordPress OAuth & OpenID Connect Single Sign-On (SSO) plugin enables secure login into WordPress using CILogon as OAuth and OpenID Connect provider.
You can also configure plugin using different custom providers and standard IDPs.
It supports advanced Single Sign-On (SSO) features such as user profile Attribute mapping, Role mapping, etc.
Here we will go through a guide to configure SSO between WordPress and CILogon.
By the end of this guide, users should be able to login to WordPress from CILogon.
To know more about other features we provide in WP OAuth Single Sign-On ( OAuth & OpenID Connect Client ) plugin,
you can click here.
From Configure OAuth tab in OAuth Client Single Sign-On (SSO) plugin , collect Redirect/Callback URL, and enter it into your CILogon Application.
Copy your Client ID and Client Secret and save it on your miniOrange OAuth Client Single Sign-On (SSO) plugin Configuration.
You have successfully completed your CILogon App OAuth Server side configurations.
CILogon Endpoints and Scope:
Client ID :
from the step 3 above
Client Secret :
from the step 3 above
openid email profile
Access Token Endpoint:
Get User Info Endpoint:
You have successfully configured CILogon as OAuth Provider for achieving CILogon login into your WordPress Site.
Step 2: Setup WordPress as OAuth Client
Go to the Configure OAuth tab in the Plugin and search for Custom OpenID in the applications list, and select Custom OpenID Connect App .
Now, configure App Name, Client ID, Client Secret received from OAuth Provider and Click on Save Settings to save the configuration.
You have successfully configured WordPress as OAuth Client for achieving CILogon login into your WordPress Site.
Step 3: User Attribute Mapping.
User Attribute Mapping is mandatory for enabling users to successfully login into WordPress. We will be setting up user profile attributes for WordPress using below settings.
Finding user attributes
Go to Configure OAuth tab. Scroll down and click on Test Configuration.
You will see all the values returned by your OAuth Provider to WordPress in a table. If you don't see value for First Name, Last Name, Email or Username, make the required settings in your OAuth Provider to return this information.
Once you see all the values in Test Configuration, go to Attribute / Role Mapping tab, you will get the list of attributes in a Username dropdown.
Step 4: Login Settings / Sign In Settings.
The settings in SSO Settings tab define the user experience for Single Sign On. To add a login widget on your WordPress page, you need to follow below steps.
Sign In Settings
Go to WordPress Left Panel > Appearances > Widgets.
Select miniOrange OAuth. Drag and drop to your favourite location and save.
Open your WordPress page and you can see the login button there. You can test the SSO now.
In this Guide, you have successfully configured CILogon Single Sign-On (SSO) by configuring CILogon as OAuth Provider and WordPress as OAuth Client using our WP OAuth Single Sign-On ( OAuth & OpenID Connect Client ) plugin. This solution ensures that you are ready
to roll out secure access to your WordPress site using CILogon login credentials within minutes.
If you dont hear from us within 24 hours, please feel free to send a follow up email to firstname.lastname@example.org
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.