Search Results :

×

nopCommerce OAuth Single Sign-On (SSO) with ADFS as OAuth Provider

nopCommerce OAuth Single Sign-On (SSO) module gives the ability to enable OAuth Single Sign-On for your nopCommerce store or site. Using Single Sign-On you can use only one password to access your nopCommerce store or site and services. Our module is compatible with all the OAuth-compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between nopCommerce and ADFS considering ADFS as OAuth Provider.

Pre-requisites: Download and Installation

  • Download the nopCommerce OAuth Single Sign-On (SSO) module.
  • To install the plugin, login as admin into your nopCommerce site or store. In the admin dashboard, navigate to Configuration Tab >> Local plugins.
  • On the top right corner of the page select the Upload plugin or theme button to upload the downloaded plugin zip. Follow the instructions further to install the plugin.

Steps to configure nopCommerce OAuth Single Sign-On (SSO) using ADFS as Identity Provider

1. Configure ADFS as IDP

  • To perform SSO with ADFS as Provider, your application must be https enabled.
  • Navigate to Server Manager Dashboard->Tools->ADFS Management.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - ADFS Management
  • Navigate to ADFS->Application Groups. Right click on Application Groups & click on Add Application group then enter Application Name. Select Server Application & click on next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Application Group
  • Copy Client Identifier. This is your Client ID. Add Callback URL in Redirect URL. You can get this callback URL from miniOrange nopCommerce OAuth Single Sign-On (SSO) plugin. Click on next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Client Identifier
  • Click on Generate shared secret. Copy the Secret value. This is your Client Secret. Click on Next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Generate Client Secret
  • On the Summary screen, click Next. On the Complete screen, click Close.
  • Now, right-click on the newly added Application Group and select Properties.
  • Click on Add application from App Properties.
  • Click on the Add application. Then select Web API and click Next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Add application
  • On the Configure Web API screen, enter the domain name address into the Identifier section. Click Add. Click Next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - SSO Login Configure
  • On the Choose Access Control Policy screen, select Permit everyone and click Next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Access Control Policy
  • On the Configure Application Permission, by default openid is selected as a scope. You can select email and, profile as well, then click on next.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Configure Application
  • On the Summary screen, click Next. On the Complete screen, click Close.
  • On the Sample Application Properties click OK.

You have successfully configured ADFS as OAuth Server (identity provider) for achieving SSO login into your nopCommerce application.

2. Configure nopCommerce as SP

  • Under the Configure OAuth/OIDC tab, select ADFS from the list of identity providers shown below
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - SAML-compliant identity providers list
  • When you are done configuring your identity provider, you will get client ID, client secret and all required authentication endpoints.
  • Copy the Redirect/Callback URL from the plugin and provide it to your identity provider to configure it on their side.
  • Fill the rest acquired details into the corresponding fields shown below:
  • Click on Save.
  • Note: Please make sure the Enable SSO checkbox is ticked.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Fill in identity provider's endpoints

3. Testing OAuth SSO

  • Click on Test Configuration to verify if you have configured the plugin correctly.
  • On successful configuration, you will get attributes name and attribute values in the test configuration window.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Testing OAuth SSO test configuration

4. Attribute Mapping

  • Under Attribute/Role Mapping tab, map the attribute names provided by your identity provider with your nopcommerce store attributes.
  • Click on Save button.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Attribute Mapping

5. Adding SSO link for your nopCommerce store

  • Under the Redirection & SSO Link tab, use the URL labelled as Your Store SSO Link in your store to initiate the SSO.
    • nopCommerce OAuth Single Sign-On (SSO) using ADFS as IDP - Attribute Mapping

You can even configure the Umbraco SAML Single Sign-On (SSO) module with any identity provider such as ADFS, Azure AD, Bitium, centrify, G Suite, JBoss Keycloak, Okta, OneLogin, Salesforce, AWS Cognito, OpenAM, Oracle, PingFederate, PingOne, RSA SecureID, Shibboleth-2, Shibboleth-3, SimpleSAML, WSO2 or even with your own custom identity provider. To check other identity providers, click here.

Additional Resources


Need Help?

Not able to find your identity provider? Mail us on nopcommercesupport@xecurify.com and we'll help you set up SSO with your IDP and for quick guidance (via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.


Hello there!

Need Help? We are right here!
support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com