DNN OAuth Single Sign-On (SSO) Using IdentityServer3 As OAuth Provider
DNN OAuth Single Sign-On (SSO) module gives the ability to enable OAuth Single Sign-On for your DotNetNuke site. Using Single Sign-On you can use only one password to access your DotNetNuke site and services. Our module is compatible with all the OAuth compliant identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between DNN and IdentityServer3 considering IdentityServer3 as OAuth Provider. To know more about the other features we provide for DNN OAuth Single Sign-On (SSO), click here.
Pre-requisites: Download and Installation
- Download the DNN Oauth Single Sign On module with above link.
- Extract the package and upload the extension dnn-oauth-single-sign-on_xxx_Install by going to Settings > Extension > Install Extension
1. Adding Module on DNN page
- Open any of the page on your DNN site (Edit Mode) and click on Add Module.
- Search for oauthclientsso and click on the oauthclientsso. Drag and drop the module on the page where you want.
- You have finished with the Installation of the module on your DNN site.
- If you want to add module on every page of your dnn site, go to Module Settings >> Module Settings >> Advanced Settings.
- Check the box for Display Module on All Pages and click on Update.
2. Configure IdentityServer3 as OAuth Provider
- Set up IdentityServer3 using guidelines provided here.
- From Configure OAuth tab in Oauth Client plugin, collect Redirect/Callback URL and enter it into your IdentityServer3.
- Copy your Client ID and Client Secret and save it on your miniOrange DNN OAuth Client Configuration.
- You have successfully completed your IdentityServer3 OAuth Server side configurations.
IdentityServer3 Endpoints and Scope:
| Client ID : | Click Here |
| Client Secret : | Click Here |
| Scope: | openid |
| Authorize Endpoint: | https://<your-domain>/connect/authorize |
| Access Token Endpoint: | https://<your-domain>/connect/token |
| Get User Info Endpoint: | https://<your-domain>/connect/userinfo |
| Custom redirect URL after logout:[optional] : | https://<your-domain>/connect/endsession?id_token_hint=##id_token## |
3. Test Configuration
- After saving settings, you can see the list of applications you have configured.
- Click on Edit to update the configuration.
- Click on Test Configuration to check if the configuration is correct.
- On successful configuration, you will get Attributes Name and Attribute Values on Test Configuration window.
4. Attribute Mapping
- Go to the oauthclientsso settings >> Advanced Settings >> Attribute Mapping.
- Map email and username with Attribute Name you can see in Test Configuration window.
5. Adding widget
- For adding the widget go to Add Widget.
- Click on Add Widget button. A button will be added on the DNN page.
You can configure the ASP.NET SAML Single Sign-On (SSO) module with any identity provider such as ADFS, Azure AD, Bitium, Centrify, G Suite, JBoss Keycloak, Okta, OneLogin, Salesforce, AWS Cognito, OpenAM, Oracle, PingFederate, PingOne, RSA SecureID, Shibboleth-2, Shibboleth-3, SimpleSAML, WSO2 or even with your own custom identity provider. To check other identity providers, click here.
Additional Resources
- DNN OAuth Single Sign-On (SSO)
- DNN SAML Single Sign-On (SSO)
- ASP.NET OAuth Single Sign-On (SSO)
- nopCommerce OAuth Single Sign-On (SSO)
- nopCommerce SAML Single Sign-On (SSO)
Need Help?
Not able to find your identity provider? Mail us on dnnsupport@xecurify.com and we'll help you set up SSO with your IDP and for quick guidance (via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.
Need Help? We are right here!
