Azure AD B2C SSO Login with Drupal OAuth Client | Drupal SSO Login
Drupal Azure AD B2C SSO integration will allow you to configure Single Sign-On ( SSO ) login between your Drupal site and Azure AD B2C using OAuth/OpenID protocol. Drupal OAuth 2.0/OpenID connect module gives the ability to enable login using OAuth 2.0/OIDC Single Sign-On to Drupal Site.
We provide the Drupal OAuth/OpenID Client module for Drupal 7, Drupal 8, and Drupal 9.
Here we will go through a guide to configure the SSO login between Drupal and Azure AD B2C. By following these steps,
users of Azure AD B2C will be able to log into the Drupal site using their Azure AD B2C credentials.
If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal
OAuth & OpenID Connect Login – OAuth2 Client SSO Login module.
Video Setup Azure AD B2C Single Sign-on Integartion with Drupal OAuth/OpenID Client
You can refer the steps to Configure Azure AD B2C SSO integration with the Drupal OAuth/OIDC Client module from the Video or Documentation given below:
Features and Pricing
Know more about Drupal OAuth/OpenID Single Sign On from here.
Pre-requisites: Download
You can download the Drupal OAuth/OpenID Single Sign On module from here.
Module Handbook
This detailed Handbook for the Drupal OAuth/OpenID Single Sign On module, gives an in depth explanation of the features of the module. You can refer to the handbook at anytime - it is always available to you, either via This link, or directly from the module for quicker access.
1. Install Drupal OAuth Client module
- For Windows:
Composer require drupal/miniorange_oauth_client
- For Linux:
Composer require 'drupal/miniorange_oauth_client'
- Navigate to Extend menu on your Drupal admin console and search for miniOrange OAuth Client Configuration using the search box.
- Enable the module by checking the checkbox and click on the Install button.
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc - Download the module:
drush dl drupal/miniorange_oauth_client
- Install the module:
drush en drupal/miniorange_oauth_client
- Clear the cache:
drush cr
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc - Navigate to Extend menu on your Drupal admin console and click on Install new module.
- Install the Drupal OAuth & OpenID Connect Login - OAuth2 Client SSO Login module either by downloading the zip or from the URL of the package (tar/zip).
- Click on Enable newly added modules.
- Enable this module by checking the checkbox and click on install button.
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc - Navigate to the Configure OAuth tab and search for your Provider/Application using the search box. If you can't find a desired application/provider, select Custom OAuth Provider.
- Copy the Callback/Redirect URL and keep it handy.
1.1. Using Composer:
1.2. Using Drush:
1.3. Manual installation:
2. Setup Azure AD B2C as an OAuth Provider
- Sign in to Azure portal.
- Go to Home and in the Azure services, select Azure AD B2C.
- From the left-hand navigation panel, click on the App registrations service, and then click on the New registration button to create a new Azure B2C application.
- Configure the following options to create a new application.
- 1. Name: Name of the application.
- 2. Supported account types: Select 3rd option ‘Accounts in any organizational directory (for authenticating users with user flows)’. You can also refer to Help me choose an option if needed.
- 3. In the Redirect URI section, select the Web application and Paste the copied Callback /Redirect URL (Which we copied in the first step) in the Redirect URI text-field and Click on the Register button.
- Azure AD B2C assigns a unique Application ID to your application. Copy the Application (client) ID and keep it handy. This will be your Client ID.
- In Drupal’s Configure OAuth tab and paste the copied Application ID (copied from the Azure B2C Portal) in the Client ID text-field.
- Now, head back to the Azure Portal, then click on Certificates and secrets and then click on New client secret to generate a client secret.
- Enter the Description and select the duration from the Expires dropdown. Click on the Add button.
- After that, copy the Value from the Client secrets section. This will be your Client Secret key.
- In Drupal’s Configure OAuth tab, paste the copied Client Secret Value (copied from the Azure B2C Portal) to the Client Secret text-field and click on the Save Configuration button.
- Go to User Flows tab and then click on the New user flow button.
- Select a User flow type Sign up and Sign in then click on Create button.
- Fill all the information e.g. Name, Identity providers, etc. then click on Create button.
- Copy the Policy name and paste it in Drupal OAuth Client module.
- After successfully saving the configurations, please click on the Test Configuration button to test the connection between Drupal and Azure AD B2C.
- This Test Configuration window will provide you with a list of the attributes that are coming from the Azure AD B2C.
- Select the Email Attribute from the dropdown menu in which the user's email ID is obtained and click on the Done button.
- Now, in the Attribute & Role Mapping tab, you can also choose the Username Attribute from the dropdown and click on the Save Configuration button.
- Now log out and go to your Drupal site’s login page. You will automatically find a Login with Azure AD B2C link there. If you want to add the SSO link to other pages as well, please follow the steps given in the image below :
3. Integrating Drupal with Azure AD B2C
Azure AD B2C Application Endpoints and Scope:
| Scope: | openid |
| Authorize Endpoint: | https://{tenant-name}.b2clogin.com/{tenant-name}.onmicrosoft.com/{policy-name}/oauth2/v2.0/authorize |
| Access Token Endpoint: | https://{tenant-name}.b2clogin.com/{tenant-name}.onmicrosoft.com/{policy-name}/oauth2/v2.0/token |
4. Test Configuration of Drupal with Azure AD B2C
Please note: Mapping the Email Attribute is mandatory for your login to work.
24*7 Active Support
If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal OAuth/OpenID Single Sign On module.
Additional Resources
Our Other modules
Need Help? We are right here!
