Search Results :

×
Meet us at WordCamp Europe | ShopTalk | DrupalCon Conferences to explore our solutions. Know More

Headless SSO Solution with SAML & OAuth Providers

Headless SSO Solution with SAML & OAuth Providers

Through our Magento Headless SSO extension, miniOrange provides a seamless Single Sign-On solution for headless Magento 2 websites, integrating it with any Identity Provider that supports SAML or OAuth authentication protocols, enabling users to authenticate and SSO into any Progressive Web Application based on a Front End framework.

Click here to know more about other features we provide in Magento Headless SSO extension

Pre-requisites : Download And Installation

Installation using Composer:
  • Purchase the miniOrange Headless SSO extension from magento marketplace.
  • Go to My profile -> My Purchases
  • Please ensure you are using correct access keys (My Profile - Access Keys)
  • Paste the access keys in your auth.json file inside your project
  • Use the below command to add the extension to your project. 
    "composer require {module_name}:{version}"
  • You can see the module name and list of versions in the selector below the extension module name.
  • Run the following commands on command prompt to enable the extension.
    • php bin/magento setup:di:compile
    php bin/magento setup:upgrade

Manual Installation:
  • Download the miniOrange Headless SSO extension.
  • Unzip all contents of the zip inside the MiniOrange/Headless directory.
    • {Root Directory of Magento} app code MiniOrange OAuth
  • Run the following commands on command prompt to enable the extension.
    • php bin/magento setup:di:compile
    php bin/magento setup:upgrade

Steps to configure Headless SSO solution with SAML & OAuth providers

1. Configure SAML & OAuth provider

Follow the steps below to configure SAML & OAuth Provider



  • Log in to Azure AD Portal as an administrator.

  • Select Azure Active Directory.

    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - Azure AD
  • Select App registrations tab from left hand side menu.

    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - App registrations
  • Click on New registration button.

    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - New registrations
  • Choose an account type and give it a name.
  • Provide the ACS URL provided in the Service Provider Metadata tab of the plugin in the Redirect URL field and click the Register button.
    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - Application Registration
  • From the left menu panel, select Expose an API.
  • Replace the APPLICATION ID URL with the SP Entity ID of the plugin by clicking the Set button.

    • NOTE: Please double-check that the SP Entity ID value in the Service Provider Metadata tab does not have a trailing slash('/'). Remove the trailing slash from the SP EntityID / Issuer field under the Service Provider Metadata tab of the plugin, enter the revised value at Azure, and click the Save button if the SP Entity ID has a trailing slash.


    Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - Expose an API
  • Navigate back to Azure Active Directory then click on App Registrations button and click on Endpoints.

    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - endpoints
  • This will lead you to a window containing a list of URLs.
  • To obtain the Endpoints needed to configure your Service Provider, copy the Federation Metadata document URL.

    • Azure AD Magento headless SSO - Azure Single Sign-On(SSO) Login in Magento - federation metadata
  • You have successfully configured Azure AD as SAML IdP ( Identity Provider) for achieving Azure AD SSO login into your Magento Site.

2. Configure Magento Headless SSO ( Single Sign-On ) extension

  • After installing the Magento Headless SSO extension. Log in to Magento Backend and click on Headless SSO in the navigation panel.
    • Magento headless SSO | Magento Headless Single Sign-On (SSO) solution
  • Enter your Frontend Callback URL (This will be the same URL where your frontend is hosted) and where you will receive the JWT token.
  • JWT Secret When you receive a JWT from the client, you can verify that JWT with this this secret key stored on the server.
  • Headless SSO URL:- This URL will be embedded in your login button which will initiate the login flow from your frontend.

Additional Resources


If you are looking for anything which you cannot find, please drop us an email on magentosupport@xecurify.com

Trending searches:
Hello there!

Need Help? We are right here!
support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com