Setup Guide For Joomla Oauth Sign-On (SSO) Using WSO2

If you want users to log in to your Joomla site using their WSO2 credentials, you can simply do it using our Joomla WOS2 OAuth plugin. Once you configure the WSO2 with the Joomla WSo2 OAuth plugin, you can allow users to SSO to your Joomla site using WSO2.
Similarly, you can map your Joomla roles based on your WSO2 attributes/groups. To know more about other features we provide in Joomla WSO2  OAuth plugin, you can click here.

Download And Installation

  • Log into your Joomla instance as an admin.
  • Go to the Joomla Dashboard -> Extensions -> Manage and click on Install.
  • Seach for a Joomla OAuth Client plugin and click on Install Now.

Step 1: Setup WSO2 as OAuth Provider

  • First, let’s register this Consumer App in WSO2 IS. Download and start WSO2 IS.
  •  WSO2 Oauth client, sso-appregister-wso2
  • Once logged in, go to Main -> Service Provider and click on Add.
  • Joomla WSO2 OAuth/OpenID,-sso-sp-Add
  • Enter the Service Provider Name and Description and click on Register.
  • Joomla WSO2 OAuth/OpenID, Enter-spname-description
  • Now go to the Service Provider->List and edit the Service Provider you have created.
  • Scroll down and select Inbound Authentication Configuration and then select OAuth/OpenID Connect Configuration and click on Configure.
  • Joomla WSO2 OAuth/OpenID, Configure
  • Select the OAuth Version 2.0 and enter the Redirect/Callback URL from the plugin in Callback URL field. Click on Add.
  • Joomla WSO2 OAuth/OpenID, CallbackURL
  • When the app has been added, Client ID and Client Secret are generated for the application. Configure the Joomla OAuth SSO plugin with Client ID, Client Secret, Authentication and Access Token, Get User Info Endpoint of WSO2. Endpoints are provided at the bottom of this guide.
  • Joomla WSO2 OAuth/OpenID, Getclient-secret
  • Attribute Mapping: To get attributes from WSO2 you have to add following Claim URIs in your WSO2 application.
  • Go to Service Provider->Claim Configuration.
  • Select https://wso2.org/claims/emailaddress from Subject Claim URI dropdown.
  • Add following URIs in Service Provider Claim Dialect: https://wso2.org/oidc/claim & https://wso2.org/claims
  • Joomla WSO2 OAuth/OpenID, Claim-url
  • You have successfully completed your WSO2 Server side configurations.

  • WSO2 Endpoints and Scope:


    Client ID : From above steps
    Client Secret : From above steps
    Scope: openid
    Authorize Endpoint: https://<wso2-app-domain>/oauth2/authorize
    Access Token Endpoint: https://<wso2-app-domain>/oauth2/token
    Get User Info Endpoint: https://<wso2-app-domain>/oauth2/userinfo
    Custom redirect URL after logout: [optional] https://<wso2-app-domain>/oidc/logout?id_token_hint=<id_token>&post_logout_redirect_uri=<redirect URI>&state=<state>

Step 2: Setting up the miniOrange Joomla OAuth Client plugin

  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
  • Joomla WSO2 OAuth/OpenID,miniorange joomla ouath client download
  • Login into your Joomla site’s administrator console.
  • Go to Extension Manage Install in the top navigation bar to install the plugin.
  • Joomla WSO2 OAuth/OpenID,joomla ouath client install step1
  • Upload the downloaded zip file to install the OAuth Client plugin.
  • Joomla WSO2 OAuth/OpenID,joomla oauth client plugin
  • Navigate to Extensions Manage Manage and search for miniorange in the Search bar provided to see the list of the components.
  • Go to Components MiniOrange OAuth Client in the top navigation bar to go to the configuration page of the plugin.
  • Joomla WSO2 OAuth/OpenID, miniorange oauth client component
  • Register/ Login with miniOrange.
  • Go to the Configure OAuth tab in the plugin. FIll in the details you received from your OAuth Provider and click on the Save Settings button.
  • Joomla WSO2 OAuth/OpenID, joomla-oauth-client-configuration

    Select your OAuth Provider from the Select Application dropdown. In case your OAuth Provider is not listed in the drop down, please select Custom OAuth Provider to continue.

  • Copy the Redirect/Callback URL given in the plugin and save it in your OAuth Provider.
  • Click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
  • Joomla WSO2 OAuth/OpenID,joomla oauth client test configuration Joomla WSO2 OAuth/OpenID,joomla oauth client Attribute Mapping
  • Add a button on your site login page with the following URL:your_home_page/base_url/?morequest=oauthredirect&app_name=xxxxxxxxx
  • You would find appropriate URL in Instructions to configure in the bellow section of Attribute Mapping (After completing test configuration please choose URL and Add a button on your site login page).

  • Now logout and go to your site. You will see a login link where you placed that button.
  • Click on the Licensing Plans Tab to check out our complete list of features and various licensing plans.
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support dialog box in the Account Setup and Configure OAuth tabs.
  • Joomla WSO2 OAuth/OpenID, joomla ouath client support

    In addition to the above, miniOrange also provide support for ADFS, AWS cognito, Bitrix24, Reddit, WHMCS, Square Connect, WSO2, Windows, Gigya, Dash 10, Foursquare, Harvest, MailChimp, Huddle, Ustream, Yammer, RunKeeper, SoundCloud, Pocket, Nest, Heroku, DropBox, Buffer, Hubic, Deezer, Delicious, Bitly, Mondo, Netatmo, Wechat, Weibo, Shibboleth, Invision Community, HR Answerlink/Support center, Blizzar and many more OAuth provider.

    Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider. In case you have any questions in mind, you can always mail us at joomlasupport@xecurify.com.