Guide: Joomla OAuth Client Integration with Okta Single Sign-On (SSO) | Okta SSO

Guide: Joomla OAuth Client Integration with Okta Single Sign-On (SSO) | Okta SSO


Integration of Okta Single Sign-on (Okta SSO ) with Joomla using OAuth 2.0 Protocol. The miniOrange Joomla OAuth / OpenID Connect Single Sign-on (SSO) plugin makes it simple to set up Okta SSO into Joomla and enable secure login into joomla. As a result, users can log in to Joomla and access the site by authenticating with their Okta identity provider credentials.
Visit our Joomla OAuth Client Plugin webpage to learn more about the features and plans we offer for the Joomla OAuth Single Sign-on (OAuth & OpenID connect) plugin.

Plugin Download and Video Setup Guide


Steps to configure Okta Single Sign-On (SSO) into Joomla

1. Setup Okta as OAuth Provider


  • First of all, go to https://www.okta.com/login and log into your Okta account.
  • Go to the Okta Admin panel. Go to Applications -> Applications.
  • okta Single Sign-On (SSO) OAuth/OpenID-addapp-shortcut

  • You will get the following screen. Click on Create App Integration button.
  • okta Single Sign-On (SSO) OAuth/OpenID-addapplication
  • Select sign in method as the OIDC - OpenID Connect option and select Application type as web application, click on Next button.
  • okta Single Sign-On (SSO) OAuth/OpenID-select-webplatform
  • You will be redirected to the app details page. Enter App integration name and Sign-in redirect URIs. you will get that from miniOrange OAuth/OpenID connect Client Plugin's 'Configure OAuth' tab under the Redirect/Callback URL field.
  • okta Single Sign-On (SSO) OAuth/OpenID-callbackURL
  • Scroll down and you will see the Assignments section. Select an option for controlled access and click on Save button.
  • okta Single Sign-On (SSO) OAuth/OpenID-clientcredentials
  • Now you will get the Client credentials and okta domain. Copy these credentials in Miniorange OAuth client single sign-on (SSO) Plugin configuration on corresponding fields.
  • Note: Enter https:// in the Okta domain field in the Joomla OAuth Single Sign-On (SSO) plugin which you will get from General Settings. eg.( https://dev-32414285.okta.com ).


    okta Single Sign-On (SSO) OAuth/OpenID-clientcredentials

    1.1 Profile Attributes for the idToken

    • In your Okta admin dashboard, navigate to Security -> API.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • Select your SSO application and click on the edit icon.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • Go to claims tab and select the ID token option.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • click on Add claim button.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • Give a Name to your claim/attribute and Select ID Token from the token type dropdown. Now, enter the value user.$attribute in the Value field based on the attribute you want to receive. Keep other settings as default and click on Create button.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • Follow the similar steps for all the attributes you want to see. You will have a list similar to the below one.
    • Okta Single Sign-on SSO with Joomla | OAuth OIDC create-newclient login button setting
    • You will be able to see the attributes in the Test Configuration output as follows.
    • Scope & Endpoints which required for configuring Joomla as OAuth Client
    • Please refer the below table for configuring the scope & endpoints for Okta in the plugin.

      Scope: openid email
      Authorize Endpoint: https://{yourOktaDomain}.com/oauth2/default/v1/authorize
      Access Token Endpoint: https://{yourOktaDomain}.com/oauth2/default/v1/token
      Custom redirect URL after logout:[optional] https://{yourdomain.okta}.com/login/signout?fromURI= <your url>

You have successfully configured Okta as OAuth Provider for for achieving Okta Single Sign-On (SSO) with Joomla for user integration.



2. Configure Joomla as OAuth Client


  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • From left toggle menu, click on System, then under Install section click on Extension.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the Joomla OAuth Client plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • From left toggle menu click on Components, then click on miniOrange OAuth Client , then click on Configure OAuth tab.
  • Under Configure OAuth tab . Select your OAuth Provider. (If your OAuth Provider not listed then click on Custom OAuth/ Custom OpenID connect App .)
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider. Then click on Test Configuration button.
  • joomla oauth provider OAuth tab
  • After click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
  • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

  • Download the zip file for the miniOrange OAuth Client plugin for Joomla from the link here.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Login into your Joomla site’s administrator console.
  • Go to Extension Manage Install in the top navigation bar to install the plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Upload the downloaded zip file to install the OAuth Client plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Navigate to Extensions Manage Manage and search for miniorange in the Search bar provided to see the list of the components.
  • Go to Components MiniOrange OAuth Client Configure OAuth tab from the top navigation bar to go to the configuration page of the plugin.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Select your OAuth Provider from the Select Application dropdown. In case your OAuth Provider is not listed in the drop down, please select Custom OAuth Provider to continue.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Fill in the details you received from your OAuth Provider.
  • Copy the Redirect/Callback URL given in the plugin and click on the Save Settings button to save details in your OAuth Provider.
  • Click on the Test Configuration button and copy the email and name attributes and save these attributes in Email Attribute and Name Attribute text field respectively. Now click on the Save Attribute Mapping button to save your configurations.
  •  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration  Joomla Oauth / OpenID Connect Single Sign-on SSO for Joomla - App Client Configuration
  • Use the Login URL to perform the SSO of your pre-configured OAuth/OpenID Connect Provider, (After completing test configuration please copy the Login URL and Add a button on your site login page).
  • Joomla OAuth Client - Login URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.
  • Congratulations, you have successfully configured the miniOrange OAuth Client plugin with your desired OAuth Provider.
  • Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans
  • If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login Here
  • In case, you are facing some issue or have any question in mind, you can reach out to us by sending us your query through the Support button in the plugin or by sending us a mail at joomlasupport@xecurify.com.

Using our Joomla OAuth Client plugin, you have successfully configured Joomla Okta Single Sign-On (SSO) by Okta as OAuth Provider and Joomla as OAuth Client. This solution ensures that you are ready to provide safe access to your Joomla site using Okta login credentials in minutes.

Additional Resources


Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com