Search Results :

×
Sign Up Contact Us

nopCommerce SAML Single Sign-On (SSO) with miniOrange as IDP

nopCommerce SAML Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On for your nopCommerce applications. Using Single Sign-On you can use only one password to access your nopCommerce application and services. Our plugin is compatible with all the SAML compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between nopCommerce and miniOrange considering miniOrange as IdP. To know more about the features we provide for nopCommerce SSO, click here.

Pre-requisites : Download And Installation

    Download from nopCommerce Dashboard
  • To download the plugin zip, login as admin into your nopCommerce store. In the admin dashboard, go to Configuration Tab > All Plugins and Themes or search for All Plugins and Themes in the Admin search bar.
  • Search for the SAML Single Sign-On (SSO) - miniOrange plugin and click the Download button to get the zip.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - install plugin
    From nopCommerce marketplace
  • You can download the plugin zip file from nopCommerce store - nopCommerce SAML Single Sign-On (SSO)
  • To install the plugin, login as admin into your nopCommerce website. In the admin dashboard, go to Configuration Tab >> Local plugins.
  • On the top right corner of the page select the Upload plugin or theme button to upload the downloaded plugin zip. Follow the instructions further to install the plugin.

Steps to configure nopCommerce Single Sign-On (SSO) using miniOrange as Identity Provider.

1. Configure miniOrange as IDP

  • You need to send your SP metadata to identity provider, miniOrange. For SP metadata, use the SP metadata URL or download the SP metadata as a .xml file and upload it at your IdP end. You can find both these options under the Service Provider Metadata tab.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - SP metadata
  • Alternatively, you can manually add the SP Entity ID and ACS URL from Service Provider metadata tab in the plugin to your IdP configurations.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - SP table
  • Go to miniOrange Admin console https://login.xecurify.com/moas/login and login with your miniOrange credentials.
  • From the left menu, click on the Apps tab.
  • In the right upper corner, select Add Application.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Add application
  • Choose the Application type as SAML/WS-FED.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Choose application type
  • In the search apps textbox, type custom SAML App.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Search Apps
  • Fill in the metadata details in the textboxes below manually or you can Import SP Metadata.
    • Custom Application Name App name you like to provide.
    SP Entity ID or Issuer Enter SP Entity ID / Issuer from Service Provider Info tab of the plugin
    ACS URL Enter ACS (Assertion Consumer Service) URL from Service Provider Info tab of the plugin
    Single Logout URL Enter Single Logout URL from Service Provider Info tab of the plugin
  • Click on Save to add the App.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Import SP Metadata
  • Under the Login Policy, select the Default from the Group Name dropdown.
  • Enter Policy Name you would like to provide.
  • Select Password from the Login Method dropdown.
  • Click on Save.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Login Policy
  • Navigate to the Apps in the left menu.
  • Click on the metadata link against your app.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - IDP Metadata
  • Download the Metadata XML File or note down the given information and keep it handy to configure the Service Provider
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Download IDP Metadata

You have successfully configured miniOrange as SAML IdP (identity provider) for achieving login into your nopCommerce applications.

2. Configure nopCommerce as SP (SSO Plugin)

Note: After installation of the plugin, we need to setup the trust between your nopCommerce application and your miniOrange account. SAML metadata is shared with miniOrange so they can update their inbuilt configuration to support Single Sign-On.

2.1: Share SP SAML metadata with miniOrange

  • Click on Add New IDP to configure nopCommerce Single Sign-On (SSO) using miniOrange as IDP.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Add new IDP
  • Under Service Provider Metadata tab, you can either copy-paste the metadata URL on your IDP side or download the SP metadata as an XML file. Additionally, you have the choice to manually copy and paste Base URL, SP Entity ID, and ACS URL.
  • Share SAML metadata with miniOrange.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - nopCommerce SP metadata

2.2: Import miniOrange SAML metadata

  • Under Identity Provider Settings tab, select miniOrange as your preferred identity provider.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Choose identity provider
  • There are two methods for configuring nopCommerce as service provider:
    • To upload IDP's metadata, you can either provide the metadata URL or upload XML file.
      • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Upload IDP metadata
    • Alternatively, under the Identity Provider Settings tab, you can manually fill in the mandatory fields like IDP Name, IDP Entity ID and Single Sign-On URL and hit Save.
      • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - IDP Configuration

3. Testing SAML SSO

  • Before testing, please ensure the following:
    • The nopCommerce (SP) SAML metadata has been exported to miniOrange (IDP).
    • Importing the miniOrange (IDP) SAML metadata in nopCommerce (SP).
  • Hover on Select Action and click on the Test Configuration button to verify if you have configured the plugin correctly.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Click on Test Configuration
  • Click the Test Configuration button to verify if you have configured the plugin correctly.
  • On successful configuration, you will get Attribute Name and Attribute Values in Test Configuration window.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Test Configuration Result

4. Attribute Mapping

  • After successful test configuration, click on Edit Configuration and navigate to Attribute Mapping section.
  • On the right side, you can see the IDP response table, map attribute names provided by your IDP with your store attributes, under Attribute/Role Mapping tab.
  • Click on Save button.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Attribute Mapping

5. Enabling SSO in your nopCommerce store

  • Enable SSO for your nopCommerce store by dragging the slider as shown below.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Enable SSO
  • Under the Redirection & SSO link tab, use the URL labeled as Your Store SSO Link in your store to initiate the SSO.
    • nopCommerce Single Sign-On (SSO) using miniOrange as IDP - Store SSO Link

You can even configure Umbraco SAML Single Sign-On (SSO) with identity providers such as Azure AD, ADFS, Okta, OneLogin, PingFederate, Google Apps, Keycloak, WordPress, Salesforce, Auth0 or even with your own custom identity provider. To check other identity providers, click here.

Additional Resources

Need Help?

Not able to find your identity provider? Mail us on nopcommercesupport@xecurify.com and we'll help you set up SSO with your IDP and for quick guidance (via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.

Hello there!

Need Help? We are right here!

support