OAuth Server / OpenID Connect Server (OAuth 2.0 Server) also known as Authorization Server, It is the modern standard for securing access to APIs & implements network protocol flows which allow a client (OAuth Client) to act on behalf of a user. OAuth Server allows clients to verify the identity of end-users based on the authentication performed by an Authorization Server and also to obtain basic profile (Scope) information about the end-users in an interoperable and REST-like manner.
How does OAuth / OpenID work?
OAuth 2.0 Server is used to set up any Application as Identity Server to allow users to Single Sign-On / Login into their client site/application with login using OAuth / OpenID Connect protocol flows. The primary goal of this OAuth 2.0 server/Oauth Provider is to allow users to interact with multiple apps without requiring them to store sensitive credentials. You can easily configure an OAuth 2.0/OpenID Connect server to protect your API with access tokens, or allow clients to request new access tokens and refresh them.
Joomla OAuth & OpenID Connect Single Sign-On (SSO) plugin enables secure login into Joomla using Google Apps as OAuth and OpenID Connect provider. You can also configure the plugin using different Oauth providers such as Azure B2C, Office 365, and other custom providers. It supports advanced Single Sign-On (SSO) features such as user profile Attribute mapping, Role mapping, multi-tenant login, etc. Here we will go through a guide to configure SSO between Joomla and Google Apps. By the end of this guide, users should be able to login to Joomla from Google Apps.
Click here to know more about other features we provide in Joomla OAuth Single Sign-On ( OAuth & OpenID Connect Client ) plugin
Steps to configure Google Apps Single Sign-On (SSO) Login into Joomla
Click on Select Project to create a new Google Apps Project for Joomla Oauth Client, you will see a popup with the list of all your projects.
You can click on the New project button to create new project for Google apps as Oauth server.
Enter your Project name under the Project Name field and click on Create.
Go to Navigation MenuAPIsServicesCredentials.
Click on Create Credentials button and then select OAuth Client ID from the options provided.
In case you are facing some warning saying that in order to create an OAuth Client ID, you must set a product name on consent screen (as shown in below image). Click on the Configure consent screen button.
Enter the required details such as App Name, User Support Email. and click on Save and Continue button.
Now for configuring scopes, click on Add or Remove the Scopes button.
Now, Select the Scopes to allow your project to access specific types of private user data from their Google Account and click on Save and Continue button.
Go to the Credentials tab and click on Create Credentials button. Select Web Application from dropdown list to create new application.
Enter the name you want for your Client ID under the name field and enter the Redirect/Callback URI from miniOrange OAuth Client plugin under the Authorized redirect URIs field and click on Create button.
You will see a popup with the Client ID and Client Secret Copy your Client ID and Client Secret and save it on your miniOrange OAuth Client plugin Configuration.
You have successfully completed your Google Apps as OAuth Server side configurations.
Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
Login into your Joomla site’s administrator console.
Go to Extension Manage Install in the top navigation bar to install the plugin.
Upload the downloaded zip file to install the OAuth Client plugin.
Navigate to Extensions Manage Manage and search for miniorange in the Search bar provided to see the list of the components.
Go to Components MiniOrange OAuth Client Configure OAuth tab from the top navigation bar to go to the configuration page of the plugin.
Select your OAuth Provider from the Select Application dropdown. In case your OAuth Provider is not listed in the drop down, please select Custom OAuth Provider to continue.
Fill in the details you received from your OAuth Provider.
Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider.
Click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click hereto check features and licensing plans
If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at email@example.com.