Azure AD B2C SSO Login with Drupal OAuth Client | Drupal SSO Login


Drupal Azure AD B2C SSO integration will allow you to configure Single Sign-On ( SSO ) login between your Drupal site and Azure AD B2C using OAuth/OpenID protocol. Drupal OAuth 2.0/OpenID connect module gives the ability to enable login using OAuth 2.0/OIDC Single Sign-On to Drupal Site. We provide the Drupal OAuth/OpenID Client module for Drupal 7, Drupal 8, and Drupal 9.
Here we will go through a guide to configure the SSO login between Drupal and Azure AD B2C. By following these steps, users of Azure AD B2C will be able to log into the Drupal site using their Azure AD B2C credentials.
If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal OAuth & OpenID Connect Login – OAuth2 Client SSO Login module.


Video Setup Azure AD B2C Single Sign-on Integartion with Drupal OAuth/OpenID Client

You can refer the steps to Configure Azure AD B2C SSO integration with the Drupal OAuth/OIDC Client module from the Video or Documentation given below:




Features and Pricing

Know more about Drupal OAuth/OpenID Single Sign On from here.

Pre-requisites: Download

You can download the Drupal OAuth/OpenID Single Sign On module from here.

Module Handbook

This detailed Handbook for the Drupal OAuth/OpenID Single Sign On module, gives an in depth explanation of the features of the module. You can refer to the handbook at anytime - it is always available to you, either via This link, or directly from the module for quicker access.

1. Install Drupal OAuth Client module

    1.1. Using Composer:

    • For Windows:
      Composer require drupal/miniorange_oauth_client
    • For Linux:
      Composer require 'drupal/miniorange_oauth_client'
    • Navigate to Extend menu on your Drupal admin console and search for miniOrange OAuth Client Configuration using the search box.
    • Enable the module by checking the checkbox and click on the Install button.
    • You can configure the module at:
      {BaseURL}/admin/config/people/miniorange_oauth_client/config_clc

    1.2. Using Drush:

    • Download the module:
      drush dl drupal/miniorange_oauth_client
    • Install the module:
      drush en drupal/miniorange_oauth_client
    • Clear the cache:
       drush cr
    • You can configure the module at:
      {BaseURL}/admin/config/people/miniorange_oauth_client/config_clc

    1.3. Manual installation:

    • Navigate to Extend menu on your Drupal admin console and click on Install new module.
    • Install the Drupal OAuth & OpenID Connect Login - OAuth2 Client SSO Login module either by downloading the zip or from the URL of the package (tar/zip).
    • Click on Enable newly added modules.
    • Enable this module by checking the checkbox and click on install button.
    • You can configure the module at:
      {BaseURL}/admin/config/people/miniorange_oauth_client/config_clc
  • Navigate to the Configure OAuth tab and search for your Provider/Application using the search box. If you can't find a desired application/provider, select Custom OAuth Provider.
  • Drupal OAuth Client - Configure module
  • Copy the Callback/Redirect URL and keep it handy.
  • Drupal OAuth Client - Configure OAuth tab

2. Setup Azure AD B2C as an OAuth Provider

  • Sign in to Azure portal.
  • Go to Home and in the Azure services, select Azure AD B2C.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C SSO Login Azure AD B2C
  • From the left-hand navigation panel, click on the App registrations service, and then click on the New registration button to create a new Azure B2C application.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C new registration
  • Configure the following options to create a new application.
    • 1. Name: Name of the application.
    • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C enter app name
    • 2. Supported account types: Select 3rd option ‘Accounts in any organizational directory (for authenticating users with user flows)’. You can also refer to Help me choose an option if needed.
    • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C support account
    • 3. In the Redirect URI section, select the Web application and Paste the copied Callback /Redirect URL (Which we copied in the first step) in the Redirect URI text-field and Click on the Register button.
    • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C redirect url

    3. Integrating Drupal with Azure AD B2C

  • Azure AD B2C assigns a unique Application ID to your application. Copy the Application (client) ID and keep it handy. This will be your Client ID.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C Client ID
  • In Drupal’s Configure OAuth tab and paste the copied Application ID (copied from the Azure B2C Portal) in the Client ID text-field.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C Client ID
  • Now, head back to the Azure Portal, then click on Certificates and secrets and then click on New client secret to generate a client secret.
  • Enter the Description and select the duration from the Expires dropdown. Click on the Add button.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C Client secret
  • After that, copy the Value from the Client secrets section. This will be your Client Secret key.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C Client secret key
  • In Drupal’s Configure OAuth tab, paste the copied Client Secret Value (copied from the Azure B2C Portal) to the Client Secret text-field and click on the Save Configuration button.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C save configuration
  • Go to User Flows tab and then click on the New user flow button.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C user flow
  • Select a User flow type Sign up and Sign in then click on Create button.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C user flow select type
  • Fill all the information e.g. Name, Identity providers, etc. then click on Create button.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C user flow policy name
  • Copy the Policy name and paste it in Drupal OAuth Client module.
  • OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C user flow policy name OAuth/OpenID/OIDC Single Sign On (SSO), AzureB2C paste policy name

    Azure AD B2C Application Endpoints and Scope:


    Scope: openid
    Authorize Endpoint: https://{tenant-name}.b2clogin.com/{tenant-name}.onmicrosoft.com/{policy-name}/oauth2/v2.0/authorize
    Access Token Endpoint: https://{tenant-name}.b2clogin.com/{tenant-name}.onmicrosoft.com/{policy-name}/oauth2/v2.0/token

4. Test Configuration of Drupal with Azure AD B2C

  • After successfully saving the configurations, please click on the Test Configuration button to test the connection between Drupal and Azure AD B2C.
  • Azure AD B2C sso login with drupal OAuth OpenID Single Single On DeviantArt test Configuration
  • This Test Configuration window will provide you with a list of the attributes that are coming from the Azure AD B2C.
  • Select the Email Attribute from the dropdown menu in which the user's email ID is obtained and click on the Done button.
  • Azure AD B2C sso login with drupal OAuth OpenID Single Single On DeviantArt test Configuration successfully
  • Now, in the Attribute & Role Mapping tab, you can also choose the Username Attribute from the dropdown and click on the Save Configuration button.
  • Azure AD B2C sso login with drupal OAuth OpenID Single Single On DeviantArt test Configuration successfully

    Please note: Mapping the Email Attribute is mandatory for your login to work.

  • Now log out and go to your Drupal site’s login page. You will automatically find a Login with Azure AD B2C link there. If you want to add the SSO link to other pages as well, please follow the steps given in the image below :
  • Azure AD B2C sso login with drupal OAuth OpenID Single Single On DeviantArt test Configuration successfully

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal OAuth/OpenID Single Sign On module.

Additional Resources

Our Other modules

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com