Search Results :

×
Sign Up Contact Us

Drupal OAuth Server - SSO

Drupal OAuth/OIDC Server module allows users to perform Single Sign-On (SSO) to access client apps. To achieve this, the module converts your site to an OAuth server. OAuth 2.0 Server supports client apps such as Salesforce, Slack, Magento, Jira, Azure, WordPress, Joomla, Bitbucket, AWS Cognito, and Google.

Drupal OAuth Server

Our Trusted Customers

Nestle Logo Sony Pictures Logo UNICC Logo

Setup Drupal OAuth Server In 3 Simple Steps

Drupal 2FA/MFA | Step1

Step 01

Download and Install

Download and install the Drupal OAuth Server module from the Drupal marketplace.


Drupal 2FA for Admin | Step2

Step 02

Add OAuth Client

To Add Client enter Application Name and Callback/Redirect URL of OAuth Client.


Drupal 2FA policy for End users | Step3

Step 03

OAuth Server Scope & Endpoints

Copy Scope and Endpoitns for OAuth Client.

Step Image

Key Features of Drupal OAuth Server Module

JWT Support and Signing Algorithm
Support for all Grant Types
Customise Response Attributes
OIDC Support
Multiple Client Configuration
Customise Token Expiry
Active Drupal 7 Support
Drupal OAuth Server - JWT Support and Signing Algo

JWT Support and Signing Algorithm

Ensure JSON Web Token (JSON) support with our Drupal OAuth 2.0 Server module. Further, the signing algorithm ascertains that the content in JWT is authentic and unaltered during its transmission between client and server applications.

Drupal OAuth Server - Support for all grant

Support for all Grant Types

The OAuth 2.0 server module is designed to support all grant types, such as authorization code (with & without PKCE), client credentials, password, implicit, and refresh token grants.

Drupal IdP - Encrypte

Customise Response Attributes

This allows you to add more detailed information about the user such as roles, permissions, or departments in the ID tokens. You can also send the customized response to the userinfo endpoint.

Drupal OAuth Server OIDCsupport

OIDC Support

The module offers OpenID Connect support for user authentication.

Drual OAuth Server Multiple Client configuration

Multiple Client Configuration

This module allows you to configure multiple OAuth/OIDC compatible clients to your Drupal site.

Drupal OAuth Server - Cusotmise token expiry

Customise Token Expiry

This module allows you to configure multiple OAuth/OIDC compatible clients to your Drupal site.

Drupal Active7 Support

Active Drupal 7 Support

While official support for Drupal 7 has ended, our module continues to offer full compatibility, ensuring seamless functionality for your Drupal 7 site.

Pricing Plans for Everyone

Transparent, Simple Pricing

Contact us at

drupalsupport@xecurify.com

Community

Users stored in your own Drupal database

$0

per year

Only for Admin users

Enterprise

Users stored in your own Drupal database

$450

per year

$45

per month

For over 5,000 users, please get in touch with us for special discounted pricing.

No. Of User:

OAuth Server Integration Features

Features
Authorization Code Grant
Enables a secure, two-step OAuth 2.0 flow where users authenticate and receive an authorization code, which is then exchanged for an access token. Ideal for web applications.
OIDC Support
Adds OpenID Connect support to extend OAuth with user identity verification and ID tokens, enabling SSO and richer user profile sharing.
Support for Symmetric JWT Signing Algorithms
Sign and verify JWTs using symmetric algorithms like HS256, HS384, and HS512 with a shared secret, suitable for trusted internal integrations.
Enable/Disable Master Switch
Toggle the OAuth server functionality on or off instantly from a central setting, useful during maintenance or staging setups.
Support for Multiple OAuth/OIDC Clients
Manage multiple client applications, each with its own configuration, credentials, grant types, and redirect URIs—all from one interface.
Customized Claims in ID Token
Add custom fields from user profiles into the ID token claims to share additional information with connected clients.
Multiple Callback URLs
Register and manage multiple redirect URIs per client for different environments (e.g., dev, staging, prod) or app modules.
Support for Implicit, Password, Client Credentials, Refresh Token, and PKCE
Support all major OAuth 2.0 flows to accommodate web, mobile, API, and headless apps with varying security and interaction needs.
Customize Token Expiry
Define how long access tokens remain valid to balance security with user experience, configurable per client.
Customize Callback URL Validation
Control how strictly redirect URIs are validated during authorization to support both static and dynamic apps.
Enforce State Parameter
Enable strict usage of the state parameter to prevent CSRF attacks and maintain request integrity across redirects.
Consent Screen
Display a consent screen during login to show users what data will be shared with the client app.
Support for Headless Integration
Enable OAuth authentication in headless or decoupled frontend applications where no UI interaction is involved.
Customize Response Attributes
Map complex or custom user fields to be included in token responses or sent as claims, tailored for app-specific needs.

Frequently Asked Questions

WordPress SSO - WordPress Single Sign-On - plugin inquiries  Module Inquiries

Does miniOrange store any user data?

miniOrange does not transfer any data out of your systems or store any Personal Identifiable Information (PII). All the modules are completely on premise. All the data remains within your premises / server. Only for the Drupal 2FA module - We need to store the user's email address. For Risk Based Authentication, information such as device type, location, IP address, and time are necessary to identify the user and give access based on the risk.

Does miniorange provide developer license for paid module?

We do not provide the developer license for our paid module and the source code is protected. It is strictly prohibited to make any changes in the code without having written permission from miniOrange. There are hooks provided in the module which can be used by the developers to extend the module's functionality.

Does miniOrange offer technical support?

Yes, we provide 24*7 support for all and any issues you might face while using the module, which includes technical support from our developers. You can get prioritized support based on the Support Plan you have opted for. You can check out the different Support Plans here.

How to activate the Premium Module on my Drupal Site?

  1. Once you complete the payment, go to the miniOrange Dashboard to download your premium module or follow the Composer installation steps.
  2. To activate the paid module, go to the Registration /Login tab and login with your miniOrange account for which you have purchased a license.
  3. Once you are logged in, it will ask you to enter your license key. Go to miniOrange Dashboard → License → View License Key to get your license key.

How can I free up my license Key?

You can remove the license key from the module by clicking on the Remove Account button from the Register/Login tab of the module.

WordPress SSO - WordPress Single Sign-On - license inquires  Legal Documents

GDPR Compliance

End User License Agreement

Privacy Policy

Security Practices

SOC Compliance

How Can We Help You?

See Documentation
Documentation

Learn how to setup the plugin

Read Docs
YouTube Videos
YouTube Videos

Watch how to setup the plugin

Watch Videos
24/7 Support
24/7 Support

Connect with our support team

Contact Us

Want to Schedule a Demo?

Schedule a Demo?


 Thank you for your response. We will get back to you soon.

Something went wrong. Please submit your query again

Hello there!

Need Help? We are right here!

support