Laravel OAuth 2.0 Single Sign On (SSO) connector

Laravel OAuth Single Sign On Connector allows an end user to login to your Laravel site with approval of resource-owner or end user using their accounts from the OAuth/OpenID Server.

Laravel OAuth SSO flow

The user initiates the login / SSO into the Laravel Application either by clicking on the SSO button or as soon as he navigates to the Application (using Protect complete site feature).
The connector sends the Authorization Request to the OAuth / OpenID Provider and the user is redirected to the OAuth / OpenID Provider’s login page.
If the credentials entered are successful, the OAuth / OpenID Provider will redirect the user back to the Laravel application along with the Authorization Code.
The connector picks the code and makes an API call to the Access token API endpoint.
The OAuth / OpenID Provider verifies the authorization code and other parameters provided by the connector, if everything is alright, it sends the access token / ID token in the JSON response.
If the configured application in the connector is of OpenID Connect protocol, the connector decodes an ID token to fetch the user information.
If it is of OAuth protocol, then the connector makes another API call to the User Info / Resource API endpoint with an access token.
The provider verifies the access token and sends the user information to the connector in the JSON response.
The connector then checks if the user is already present in the DB. If present it updates the user profile, if not it creates the user, as per the attribute mapping configured, and finally logs the user into the application.

Key Features

Single Sign On

Easy and seamless access to all resources. Laravel Single Sign-On (SSO) via any existing OAuth 2.0 or OpenID 1.0 Provider

Protect Your Complete Site

You can restrict your site to only logged in users by redirecting the users to your IdP if logged in session is not found

Custom Login and Logout Links

Use your own custom login and logout urls

Attribute Mapping

Offers you to map the attributes from your IdP to your Laravel application

Custom Redirect URL after Login and Logout

Redirect the user after login and logout to the desired page.

Multiple Providers Supported

Support SSO with multiple OAuth 2.0 or OpenID 1.0 Providers

Support for all OAuth grants

Module has support for all OAuth grant types including Authorization code, Implicit, Password, Client Credentials and Refresh token grant.

Domain specific registration

Restrict the user login based on configured domains. You can allow/deny the user login based on email domain.

Benefits

Support for Customization

Laravel OAuth & OpenID Connect SSO plugin supports customization in the Single Sign-On (SSO) flow based on your customized IDP or additional requirements.

Easy Configuration

Configure your OAuth Providers with minimal settings. End to end configuration, videos & setup guides available.

Active Support

Just drop an email and the support person will reach out to you. Support available via Emails, calls, screen share sessions.

List of the Popular OAuth/OpenID Connect providers supported

Azure AD

Azure AD B2C

Office 365

Amazon Cognito

Keycloak

WHMCS

Discord

Ping Federate

Okta

WSO2

OneLogin

miniOrange

Salesforce

Clever

ClassLink

IdentityServer 4

WordPress

Google Apps

Facebook

Twitter

Orcid

Slack

Vimeo

Gluu Server

Deviantart

Eve Online

LinkedIn

Strava

Fitbit

Box

In addition to the above, miniOrange also provide support for ADFS, Bitrix24, WHMCS, Square Connect, Windows, Gigya, Dash 10, Foursquare, Harvest, MailChimp, Huddle, Ustream, Yammer, RunKeeper, SoundCloud, Pocket, Nest, Heroku, DropBox, Buffer, Hubic, Deezer, Delicious, Bitly, Mondo, Netatmo, Wechat, Weibo, Shibboleth, Invision Community, HR Answerlink/Support center, Blizzar,Swiss-Rx-Login (Swiss RX Login), Procore, Dailymotion, Wild Apricot, Laravel Passport, Diaspora, GitHub, Gitlab, Paypal, Yahoo, Invision Community, Autodesk, Zendesk, Spotify, Vkontakte, Reddit, Pinterest, Connect2id, Twitch, NextCloud, etc.

For any Support, please Contact Us