We provide a 7 day full feature trial wherein you can fully test out all the features of the module. Please drop us an email at drupalsupport@xecurify.com and ask for a trial.

Key Features

Support for Headless Drupal

Support for integrating SSO for a decoupled Drupal site i.e. allowing your users to login to the Drupal backend as well as the front-end application

Role based access to Drupal REST APIs

Based on user's Drupal roles/capabilities users can get access to his Drupal Dashboard and REST APIs for that site.

Custom Token Expiry

Default token expiry time provided is 1 hour. Using this feature admin can change the token expiry date as per his requirement.

Signature Validation

Provide the Signature Verification and Validation along with JWT Token Validation. Also, an option to select the Signing Algorithm to validate the JWT token.

Exclude REST APIs

Default all the Drupal REST APIs will be protected. Using this feature admin can make some APIs to publicly accessible without authentication.

Custom Header

Default Authorization Header will be used to authenticate the requests. Using this feature admin can change Authorization header to any other header accordingly.

Authentication Methods We Support

Basic Authentication

API Key Authentication

OAuth 2.0 Authentication

Pricing Plans for Everyone

Licenses are perpetual and includes 12 months of free maintenance (version updates). You can renew maintenance after 12 months at 50% of the current license cost. Know more about EULA
What is an instance?
A Drupal instance refers to a single installation of a Drupal site. It refers to each individual website where the module is active. In the case of multisite/subsite Drupal setup, each site with a separate database will be counted as a single instance. For eg. If you have the dev-staging-prod type of environment then you will require 3 licenses of the module (with additional discounts applicable on pre-production environments). Contact us at drupalsupport@xecurify.com for bulk discounts.


$ 0



$ 399

No. of instances:





Single App Support
API Key Authentication
Basic Authentication
Access Token Authentication
JWT Token Authentication
OAuth 2.0 Authentication
Custom Header
Custom Token Expiry
Restrict APIs
Whitelist APIs
Support Basic Email Support Plans on Demand Go To Meeting Support Plans on Demand

Return Policy -

At miniOrange, we want to ensure 100% customer satisfaction with our product/module purchase. If the module you purchased is not working as advertised and you've attempted to resolve any issues with our support team, which couldn't get resolved, we will refund the whole amount given that you have raised a refund request within the first 10 days of the purchase. For any queries regarding the return policy, please email us at drupalsupport@xecurify.com.

Note : miniOrange does not store or transfer any data which is coming from the Provider to the Drupal. All the data remains within your premises / server. We do not provide the developer license for our paid module and the source code is protected. It is strictly prohibited to make any changes in the code without having written permission from miniOrange. There are hooks provided in the module which can be used by the developers to extend the module's functionality.

Payment Methods

Credit cards (American Express, Discover, MasterCard, and Visa) - If the payment is made through Credit Card/International Debit Card, the license will be created automatically once the payment is completed.

  Bank Transfer

Please contact us here or drop an email at drupalsupport@xecurify.com so that we can provide you the bank details.

Please contact us here or drop an email at drupalsupport@xecurify.com for more information

Why Customers choose miniOrange REST API Authentication Solutions?

Support for

First in the market to use our module to configure SSO using the OAuth Client for Headless / Decoupled Drupal Websites.

Know more

Extensive Setup

Easy and precise step-by-step instructional videos and setup guides to help you configure the module within minutes.

Setup Guides


miniOrange modules are trusted by Government Agencies, NGOs and Educational institutions all over the world. Click the button below to view our trusted customers.

Trusted Customers


Our customers trust our products to secure their website. You can see for yourself, the first-hand accounts of our customers over the years.



miniOrange provides 24*7 support for all the Secure Identity Solutions. We ensure high quality support to meet your satisfaction.

Contact Us
Hello there!

Need Help? We are right here!

Contact miniOrange Support

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com