Drupal IdentityServer4 SSO Login with OAuth Client | Drupal IdentityServer4 Login
Drupal IdentityServer4 SSO Login with OAuth Client | Drupal IdentityServer4 Login
Drupal IdentityServer4 SSO integration will allow you to configure Single Sign-On ( SSO ) login between your Drupal site and IdentityServer4 using OAuth/OpenID protocol. Drupal OAuth 2.0/OpenID connect module gives the ability to enable login using OAuth 2.0/OIDC Single Sign-On to Drupal Site.
We provide the Drupal OAuth/OpenID Client module for Drupal 7, Drupal 8, Drupal 9 and Drupal 10.
Here we will go through a guide to configure the SSO login between Drupal and IdentityServer4. By following these steps,
users of IdentityServer4 will be able to log into the Drupal site using their IdentityServer4 credentials.
If you have any queries or if you need any sort of assistance in configuring the module, you can contact us at drupalsupport@xecurify.com. If you want, we can also schedule an online meeting to help you configure the Drupal
OAuth & OpenID Connect Login – OAuth2 Client SSO Login module.
Pre-requisite: Download and Installation
- Download the module:
Composer require 'drupal/miniorange_oauth_client'
- Navigate to Extend menu on your Drupal admin console and search for miniOrange OAuth Client Configuration using the search box.
- Enable the module by checking the checkbox and click on the Install button.
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc
- Install the module:
drush en drupal/miniorange_oauth_client
- Clear the cache:
drush cr
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc
- Navigate to Extend menu on your Drupal admin console and click on Install new module.
- Install the Drupal OAuth & OpenID Connect Login - OAuth2 Client SSO Login module either by downloading the zip or from the URL of the package (tar/zip).
- Click on Enable newly added modules.
- Enable this module by checking the checkbox and click on install button.
- You can configure the module at:
{BaseURL}/admin/config/people/miniorange_oauth_client/config_clc
- Navigate to the Configure OAuth tab and search for your Provider/Application using the search box. If you can't find a desired application/provider, select Custom OAuth Provider.
- Copy the Callback/Redirect URL and keep it handy.
1. Configure SSO Application in IdentityServer4
- Set up IdentityServer4 using guidelines provided here.
- From Configure OAuth tab in Oauth Client Module, collect Redirect/Callback URL and enter it into your IdentityServer4.
2. Integrating Drupal with IdentityServer4
- Copy your Client ID and Client Secret from IdentityServer4 site.
- In Drupal’s Configure OAuth tab and paste the copied Client ID and Client Secret in the Client ID and Client Secret text-field.
- You have successfully completed your IdentityServer4 OAuth Server side configurations.
- Scope and Endpoints of IdentityServer4
| Client ID : | from the step 2 above |
| Client Secret : | from the step 2 above |
| Scope: | openid |
| Authorize Endpoint: | https://[your-domain]/connect/authorize |
| Access Token Endpoint: | https://[your-domain]/connect/token |
| Get User Info Endpoint: | https://[your-domain]/connect/userinfo |
3. Test Configuration of Drupal with IdentityServer4
- After successfully saving the configurations, please click on the Test Configuration button to test the connection between Drupal and IdentityServer4.
- This Test Configuration window will provide you with a list of the attributes that are coming from the IdentityServer4.
- Select the Email Attribute from the dropdown menu in which the user's email ID is obtained and click on the Done button.
- Now, in the Attribute & Role Mapping tab, you can also choose the Username Attribute from the dropdown and click on the Save Configuration button.
- Now log out and go to your Drupal site’s login page. You will automatically find a Login with IdentityServer4 link there. If you want to add the SSO link to other pages as well, please follow the steps given in the image below :
Please note: Mapping the Email Attribute is mandatory for your login to work.
24*7 Active Support
If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal OAuth/OpenID Single Sign On module.
Additional Resources
Our Other modules
Need Help? We are right here!
