Drupal PingFederate SSO Login with OAuth/OpenID Client | Drupal PingFederate Login

Drupal PingFederate SSO integration will allow you to configure Single Sign-On ( SSO ) login between your Drupal site and PingFederate using OAuth/OpenID protocol. Drupal OAuth 2.0/OpenID connect module gives the ability to enable login using OAuth 2.0/OIDC Single Sign-On to Drupal Site. We provide the Drupal OAuth/OpenID Client module for Drupal 7, Drupal 8, Drupal 9 and Drupal 10.
Here we will go through a guide to configure the SSO login between Drupal and PingFederate. By following these steps, users of Gluu will be able to log into the Drupal site using their PingFederate credentials.
If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal OAuth & OpenID Connect Login – OAuth2 Client SSO Login module.

1. Configure SSO Application in PingFederate

• Login to your PingFederate User Admin dashboard.
• Click on the OAuth Server in the left navigation menu.
• Under CLIENTS section, click on Create New.

• Enter the CLIENT ID, NAME and DESCRIPTION. Select CLIENT SECRET in the CLIENT AUTHENTICATION tab and click on Generate Secret. Copy the CLIENT ID and CLIENT SECRET key and keep it handy.

• Copy the Redirect/Callback URL from miniOrange OAuth Client module and paste it REDIRECT URIS field and click on Add. Select the Authorization Code grant type and click on the Save.

2. Integrating Drupal with PingFederate

• PingFederate assigns a unique Application ID to your application. Copy the CLIENT ID and CLIENT SECRET key and keep it handy.
• In Drupal’s Configure OAuth tab and paste the copied Client ID and Client Secret (copied from the PingFederate Portal) in the Client ID and Client Secret text-field.

• You have successfully completed your PingFederate App OAuth Server side configurations.

Client ID	from the above step
Client Secret	from the above step
Scope	openid
Authorize Endpoint	https://{your-base-url}/as/authorization.oauth2
Access Token Endpoint	https://{your-base-url}/as/token.oauth2
Get User Info Endpoint	https://{your-base-url}/idp/userinfo.oauth2

3. Test Configuration of Drupal with PingFederate

• After successfully saving the configurations, please click on the Test Configuration button to test the connection between Drupal and PingFederate.

• This Test Configuration window will provide you with a list of the attributes that are coming from the PingFederate.
• Select the Email Attribute from the dropdown menu in which the user's email ID is obtained and click on the Done button.

• Now, in the Attribute & Role Mapping tab, you can also choose the Username Attribute from the dropdown and click on the Save Configuration button.


Please note: Mapping the Email Attribute is mandatory for your login to work.

• Now log out and go to your Drupal site’s login page. You will automatically find a Login with PingFederate link there. If you want to add the SSO link to other pages as well, please follow the steps given in the image below :

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal OAuth/OpenID Single Sign On module.

Additional Resources

• What is OAuth 2.0?
• What is OpenID Connect?
• Frequently Asked Questions (FAQs)

Our Other modules