In today's digital world, it can be really difficult to deal with a lot of usernames and passwords. That's where a powerful solution comes in – Single Sign-On (SSO). Our innovative solution seamlessly integrates with the WordPress OAuth plugin and MojeID, an identification method developed by CZ.NIC. It not only streamlines the complex task of verifying identities online but also offers several advantages that improve both user experience and administrative efficiency.
Introduction:
To implement this solution we will use MojeID as an identity provider (IDP) for Single Sign-On (SSO) with WordPress sites. We will explore the benefits of using MojeID as your IDP for SSO and how our solution can help you achieve Single Sign On (SSO) with WordPress OAuth plugin. By the end of this document, you will have a better understanding of how our MojeID SSO login solution can simplify user management and improve the user experience for your WordPress site.
Pre-requisites : Download And Installation
Get the plugin.
WordPress OAuth & OpenID Connect Single Sign-On (SSO) click here
What is MojeID?
- MojeID is an online identification solution from the association CZ.NIC designed for users of the Czech Internet, enabling them to use a single set of login credentials (username and password) to access a variety of websites including e-shops, libraries, and even online services provided by state and local government institutions.
- MojeID is based on the OpenID standard for managing online identities and it serves as a Single Sign-On (SSO) solution that eliminates the hassle of repetitive registrations and empowers users with a convenient and secure way to navigate the digital landscape. The aim is to make online interactions smoother and more efficient, gradually reducing the need for physical visits and traditional paperwork.
What is Single Sign-On?
- Single Sign-On (SSO) is a powerful mechanism that allows users to authenticate themselves only once, and subsequently, they can access multiple applications or sites without the need to log in again. This eliminates the hassle of remembering multiple usernames and passwords, thereby improving convenience and productivity. SSO can be implemented using different protocols such as OAuth, SAML, OpenID Connect, or custom APIs.
- In this particular use case of SSO using MojeID, It enables organizations associated with MojeID to provide their users with a unified login experience, granting them access to various services and resources without the need for separate login credentials.
How to achieve SSO with MojeID using WordPress OAuth Client?
- After downloading and activating WordPress OAuth Single Sign-On (SSO) plugin, Navigate to ‘Configure OAuth’ tab and click ‘Add New Application’ to add a new client application into your website.
- Choose your Application from the list of OAuth / OpenID Connect Providers, Here choose ‘Custom OAuth 2.0 App’.
- For OAuth Provider Configuration, you would need the Callback URL which you will get from miniOrange OAuth Single Sign-On plugin, this you need to configure at the developer application which is created at MojeID end.
- After your developer application is approved by MojeID, you will receive a Client ID and Client secret. Please enter these credentials in the plugin's corresponding fields.
- For configuring the Scope & Endpoints in the plugin. Refer to the table below.
Scope |
openid profile email |
Authorization Endpoint |
https://mojeid.cz/oidc/authorization |
Access Token Endpoint |
https://mojeid.cz/oidc/token |
Get User Info Endpoint: |
https://mojeid.cz/oidc/userinfo |
- After you have entered all the information, Click on Finish to save the configuration.
- You will get a test successful prompt with the attributes after saving the configurations. If you encounter an error and your test fails, Kindly reach out to us on oauthsupport@xecurify.com
User Attribute Mapping
-
User Attribute Mapping is mandatory for enabling users to successfully login
into WordPress. We will be setting up user profile attributes for WordPress
using below settings.
Finding user attributes
-
Go to Configure OAuth tab. Scroll down and click on
Test Configuration.
-
You will see all the values returned by your OAuth Provider to WordPress
in a table. If you don't see value for Email or Username, etc. make the
required settings in your OAuth Provider to return this information.
-
Once you see all the values in Test Configuration, go to
Attribute / Role Mapping tab, you will get the list of
attributes in a Username dropdown. After selecting the attributes, Click on Save Settings and you are done.
Now, You have seamlessly integrated WordPress as an OAuth Client to enable user authentication through MojeID's Single Sign-On (SSO) login on your WordPress site. This integration allows users to effortlessly log in to your WordPress platform using their MojeID SSO credentials.
Additional Resources
Need Help?
Mail us on oauthsupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.