nopCommerce OAuth Single Sign-On (SSO) using Azure AD as OAuth Provider
nopCommerce OAuth Single Sign-On (SSO)
module gives the ability to enable OAuth Single Sign-On for your nopCommerce
store or site. Using Single Sign-On you can use only one password to access
your nopCommerce store or site and services. Our module is compatible with all
the OAuth-compliant identity providers. Here we will go through a step-by-step
guide to configure Single Sign-On (SSO) between nopCommerce and Azure AD
considering Azure AD as OAuth Provider.
Pre-requisites: Download and Installation
for the nopCommerce OAuth Single Sign-On (SSO) module.
To install the plugin, login as admin into your nopCommerce site or store.
In the admin dashboard, navigate to
Configuration Tab >> Local plugins.
On the top right corner of the page select the
Upload plugin or theme button to upload the downloaded plugin zip.
Follow the instructions further to install the plugin.
Steps to configure nopCommerce OAuth Single Sign-On (SSO) using Azure AD as
For "Web app / API" applications, provide the base URL of your app.
eg, https://<domain-name> might be the URL for a web app running
on your local machine. Users would use this URL to sign in to a web
When finished, click Register.
Azure AD assigns a unique Application ID to your application. The
Application ID is your Client ID and the
Directory ID is your Tenant ID, keep these values handy as you
will need them to configure the miniOrange OAuth Client plugin.
Go to Certificates and Secrets from the left navigaton panel and
click on New Client Secret. Enter description and expiration time and
click on ADD option.
Copy the secret key "value" and keep the value handy it will be
required later to configure Client Secret under the miniOrange
nopCommerce OAuth Plugin.
You have successfully configured Azure AD as OAuth Server (identity provider)
for achieving SSO login into your nopCommerce application.
2. Configure nopCommerce as SP
Under the Configure OAuth/OIDC tab, select Azure AD from the
list of identity providers shown below
When you are done configuring your identity provider, you will get client
ID, client secret and all required authentication endpoints.
Redirect/Callback URL from the plugin and provide it to your identity
provider to configure it on their side.
Fill the rest acquired details into the corresponding fields shown below:
Click on Save.
Note: Please make sure the Enable SSO checkbox is ticked.
3. Testing OAuth SSO
if you haven't already configured MFA on Azure AD. You can also disable MFA
for Azure AD by clicking
Click on Test Configuration to verify if you have configured the
On successful configuration, you will get attributes name and attribute
values in the test configuration window.
4. Attribute Mapping
Under Attribute/Role Mapping tab, map the attribute names provided by
your identity provider with your nopcommerce store attributes.
Click on Save button.
5. Adding SSO link for your nopCommerce store
Redirection & SSO Link tab, use the URL labelled as
Your Store SSO Link in your store to initiate the SSO.
You can even configure the
Umbraco SAML Single Sign-On (SSO)
module with any identity provider such as
ADFS, Azure AD, Bitium, centrify, G Suite, JBoss Keycloak, Okta, OneLogin,
Salesforce, AWS Cognito, OpenAM, Oracle, PingFederate, PingOne, RSA
SecureID, Shibboleth-2, Shibboleth-3, SimpleSAML, WSO2
or even with your own custom identity provider. To check other identity
Not able to find your identity provider? Mail us on
and we'll help you set up SSO with your IDP and for quick guidance (via
email/meeting) on your requirement and our team will help you to select the
best suitable solution/plan as per your requirement.
Need Help? We are right here!
Contact miniOrange Support
Thanks for your inquiry.
If you dont hear from us within 24 hours, please feel free to send a follow up email to email@example.com
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.