Single Sign-On (SSO) For Shopify Using Okta as Identity Provider

Single Sign-On (SSO) For Shopify Using Okta as Identity Provider


Okta Single Sign-On (SSO) for Shopify store, miniOrange provides a ready to use solution. This solution ensures that you are ready to roll out secure access to Shopify store using Okta within minutes.

Using our broker service you can SSO into Shopify store. You can configure Okta IDP which supports SAML to single sign-on into apps that support SAML or any other protocols like OAuth, OpenID Connect, JWT, etc.

Step by Step guide for Configuring Okta as IDP for SSO into Shopify

1.  Configure miniOrange as SP in Okta

  • Log in to Okta.

    Note: Switch to Classic UI from Developer Console, by selecting the Admin from the upper right corner then Developer Console > Classic UI

  • In Okta Developer site, navigate to Applications > Add Application or use following URL https://okta-domain-name/admin/apps/add-app

    Okta Single Sign On SSO okta applications
  • Okta Single Sign On SSO add app
  • Click on Create New App. A popup with sign on methods is shown. Select SAML 2.0 & click on Create

    Okta Single Sign On SSO okta SAML 2.0
  • Add appropriate App name then click Next.

    Okta Single Sign On SSO app name

    Okta Single Sign On SSO saml settings
  • For the above SAML configuration you need to get the Entity ID and ACS URLfrom miniOrange
  • Now go to your Shopify store and click on Setup IDP button in the top left in navigation bar.

    Single Sign-On (SSO)for Shopify (Plus and Non Plus), Configure IDP for enabling Single Sign-On (SSO)
  • Now click on the Click here link to get miniorange metadata as shown in Screen below.

    okt sso get miniorange metadata
  • For SP - INITIATED SSO section Select Show Metadata Details.

    okta sso SPintiatedMetadata
  • Enter the values in basic SAML configuration as shown in below screen.

    Single sign on URL ACS URL
    Audience URI (SP Entity ID) Entity ID or Issuer
  • Add Attribute Statement & Group Attribute Statement if required & click on Next.
  • Select Okta Configuration type & click on finish.
  • Navigate to Assigmment tab from Okta. Click on Assign & select Assign to People. Select the user from the popup & click on Done. You can also assign groups if required.

    Okta Single Sign On SSO Assignment

    Okta Single Sign On SSO assign people in app

2.   Configure Okta as IDP in miniOrange

  • Now go to your Shopify store and click on Setup IDP button in the top left in navigation bar.

    Single Sign-On (SSO)for Shopify (Plus and Non Plus), Configure IDP for enabling Single Sign-On (SSO)
  • From the left navigation bar select Identity Provider and SelectSAML.

    Okta Single Sign On SSO add IDP Okta Single Sign On SSO saml IDP
  • Now navigate to Sign on tab from Okta & select View Setup Instructions. After View Setup Instructions it will open new tab which contains Single Sign-On URL, Identity Provider Issuer & X.509 Certificate copy these data. These data is required for adding Identity Source in miniOrange.

    Okta Single Sign On SSO adding identity source Okta Single Sign On SSO saml configuration
  • Enter appropriate IdP Name. Also add following details
    IdP Entity ID Identity Provider Issuer from Okta
    SAML SSO Login URL Identity Provider Single Sign-On URL from Okta
    X.509 Certificate X.509 Certificate from Okta

  • Few other optional features that can be added to the Identity Provider(IDP) are listed in the table below:
    Domain Mapping Can be used to redirect specific domain user to specific IDP
    Show IdP to Users Enable this if you want to show this IDP to all users during Login
    Send Configured Attributes Enabling this would allow you to add attributes to be sent from IDP
  • Click on save.

3.   Test Connection

  • Go to Identity Providers tab.
  • Click on Select>>Test Connection option against the Identity Provider you configured.

    Okta Single Sign On SSO test connection
    Okta Single Sign On SSO azureAD login
  • On entering valid Okta credentials you will see a pop-up window which as shown in below screen.

    Okta Single Sign On SSO SucessTestConnection
  • Hence your configuration of Okta as IDP in miniOrange is sucesssfully completed.

Choose your preferred Identity Provider and start setting up SSO for Shopify right away


Additional Resources


If you are looking for anything which you cannot find, please drop us an email on socialloginsupport@xecurify.com

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com