Search Results :
×Users can sign in to your Shopify Store using their Shopify Store login credentials when using the Shopify Store as IDP Application. Once a user has logged in to one Store, they can access other applications, including the Shopify store, with a single click - there is no need to log in or sign up again. You can map any user profile attribute to your Application for a login experience that uses their current Shopify Store credentials if desired. Users can use their store credentials to log into any application that supports SAML, OAuth, JWT, or API authentication methods.
To configure SSO into your application with Shopify as IDP, you will need to install the miniOrange Store as IDP - SSO Login Application on your store
miniOrange Provides Secure Single Sign-On (SSO) access to your application using Shopify Store as IDP.
Here is the description of what each field means (present on the app configuration window).
SP Entity ID | SP Entity ID is used to identify your app against the SAML request received from SP. Make sure the SP Entity ID or Issuer is in this format: httpss://www.domain-name.com/a/[domain_name]/acs. |
ACS URL | Assertion Consumer Service URL defines where the SAML Assertion should be sent after authentication. Make sure the ACS URL is in the format: httpss://www.domain-name.com/a/[domain_name]/acs. |
Single Logout URL | A Single Logout URL defines where the user should be redirected after receiving the logout request from SP. You can mention your application logout page URL here. Make sure the Single Logout URL is in the format: httpss://mail.domain-name.com/a/out/tld/?logout. |
Audience URI | Audience URI, as the name suggests, specifies the valid audience for SAML Assertion. It is usually the same as the SP Entity ID. If the Audience URI is not specified separately by SP, leave it blank. |
NameID | NameID defines what SP is expecting in the subject element of SAML Assertion. Generally, NameID is the Username or Email Address |
Client Name | Enter appropriate Client Name. |
Redirect-URL | Make sure Redirect-URL is in this format https://<mycompany.domain-name.com> |
Description | Add Description if you required |
Custom Application Name | Choose an appropriate name according to your choice. |
Description | Add appropriate description according to your choice. |
Redirect-URL | Endpoint of your application, which will receive the JSON Web token and process it. |
Group Name | Default. |
Policy Name | Add policy name according to your Preference. |
Login Method | Password. |
https://login.xecurify.com/moas/jwt/mobile
Client ID | If your application provides its own client ID, you can configure it by clicking on the Customize button. |
App Secret | You can find App Secret by clicking on the icon as shown below. |
Description | Add appropriate description according to your choice. |
Signature Algorithm | Select your signature algorithm from the dropdown. |
Redirect URL |
Given below is your app url where you will receive your token. RSA 256 : <your_app-login-url> (Here token will be
added by the system)HS256 : <app-login-url/?id_token=>
|
If you don't find what you are looking for, please contact us at shopifysupport@xecurify.com or call us at +1 978 658 9387 to find an answer to your question about Shopify Single Sign-On (SSO).
Need Help? We are right here!
Thanks for your inquiry.
If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com