How to set up Drupal SAML SSO using Shopify store as an Identity Provider (IdP)?

Drupal SAML Shopify store SSO setup will allow your user to login to your Drupal site using their Shopify store Credentials. Drupal SAML module gives the ability to enable SAML Single Sign-On for Drupal. This module is compatible with all SAML Identity Providers ( IDP ). Here we will go through a guide to configure SAML SSO between Drupal and Shopify store IDP. By the end of this guide, users from your Shopify store should be able to login into the Drupal site.

Pre-requisite: Install Store as IDP Application

To set up Drupal Single Sign-On (SSO) with Shopify as identity provider, install the miniOrange Store as IDP - SSO Login app on your Shopify store. This app lets your store act as an identity provider (IDP) so Drupal members can log in with one set of credentials.

• Log in to your Shopify Admin.
• Go to Apps → Shopify App Store.
• Search for Store as IDP - SSO login to Apps (by miniOrange).
• Click Get this application to add the app to your store.
• Open the app from Apps to start Drupal SAML SSO configuration.

Steps to configure SAML Single Sign-On (SSO) Login into Drupal site using Shopify store as IDP

Step 1: Get metadata from the Drupal site Service Provider

• Login in your Drupal site’s admin console and click on Extend from the top navigation bar..
• Select the Install new module option to install a new module on your Drupal site.

• Upload the downloaded zip file of the Module and click on the Install button to continue.

• Select Enable newly added modules.

• Scroll down till you find miniOrange SAML Service Provider. Click on the checkbox next to it and click on the Install button to enable the module.

• Click on Configuration from the top navigation bar and Select miniOrange SAML Login Configuration.

• In the miniOrange SAML Service Provider module, navigate to Service Provider Metadata tab. Here, you can find the SP metadata such as SP Entity ID / Issuer, SP ACS URL (AssertionConsumerService) and X.509 Certificate which are required to configure the Identity Provider (Shopify Store). Copy it and keep it handy.

Step 2: Configure Shopify store as Identity Provider

• Now go to your shopify store, click on Apps tab and select Store as IDP-SSO login application.

• From the left navigation bar select Apps and click on Add Application button.

• Go to SAML tab and search for drupal and select Drupal (SAML).

• Enter the values corresponding to the information from Drupal site. Refer to the table below.

• Click on the Save button to save your configuration.
• Now navigate to Select option and choose Metadata tab.

• Now click on Show Metadata Details under INFORMATION REQUIRED TO AUTHENTICATE VIA EXTERNAL IDPS section. Click on Download Metadata or copy down these data as they will be used in furthur steps.

• You have successfully completed Shopify side configuration.

Step 3: Configure Drupal site as Service Provider

• In the miniOrage SAML Service Provider module, go to Service Provider Setup tab of the module. There are two way to configure Drupal SAML Service Provider SSO module:

A. By Uploading IDP Metadata

• Click on Upload IDP Metadata link.
• Click on Upload Metadata File >> Choose File and Select the downloaded file from Step 2. Click on Upload File to fetch your information.

B. Manual Configuration

• Provide the required data (i.e. Identity Provider Name, Idp Entity ID or Issuer, SAML Login URL, SAML Logout URL and X.509 Certificate ) from your Identity Provider (Shopify store) and click on Save Configuration button to save your configuration.

• You have successfully completed Drupal side configuration.

Step 4: Testing SSO for Drupal site

• Go to your Drupal site login page.
• Click on the login button . You’ll be redirected to the login page of the Shopify store.

• Enter your Shopify Store login credential and click on Login. You will be automatically logged in to your Drupal site.
• You have successfully configured Shopify as Identity Provider for your Drupal site.