Search Results :

×

SAML Single Sign-On (SSO) For Shopify Using Salesforce as Identity Provider

miniOrange allows Salesforce to act as an IDP (Identity Provider), which allows users to Single Sign-On (SSO) into Shopify using Salesforce Credentials. Our application is compatible with all the SAML / OAuth-compliant Identity Providers. We will go through a step-by-step guide to configure Single Sign-On (SSO) into Shopify using Salesforce as IdP (Identity Provider) and Shopify store as SP (Service Provider).

To configure SSO into Shopify with Salesforce as IDP (SAML), you will need to install the miniOrange Shopify Single Sign On - SSO Login Application on your store.


Youtube-color Created with Sketch.

Check out our video, to know more about how Single-Sign-On works in Shopify.

Step by Step guide for Configuring Salesforce as IDP for SSO into Shopify

  • Log in to the Salesforce Portal.
  • After logging in, if you find yourself in Salesforce Classic mode, follow the below step to switch to Salesforce Lightning mode, else jump to the next step
  • Switch to Salesforce Lightning mode from the profile menu.
Shopify Store SSO App login - Shopify Okta SSO

  • Simply click on the Setup icon in the upper right corner, and then click on the Setup option. You will be automatically redirected to the setup page.
Shopify Store SSO App login - Shopify Okta SSO

  • From the left menu, navigate to Identity » Identity Provider in the Settings section.
Shopify Store SSO App login - Shopify Okta SSO

  • Click on the Enable Identity Provider button. After enabling the Identity Provider, you should be able to see Salesforce metadata endpoints and certificate details.
Shopify Store SSO App login - Shopify Okta SSO

  • Under the Service Providers Section, click on Service Providers are now created via Connected Apps. Click here link.
  • /wp-content/uploads/2023/11/shopify-salesforce-service-provider.webp
Shopify Store SSO App login - Shopify Okta SSO

  • Enter the Connected App Name, API Name, and Contact Email.
  • Under Web App Settings, check the Enable SAML checkbox.
Shopify Store SSO App login - Shopify Okta SSO

  • For the above SAML configuration, you need to get the Entity ID and ACS URL from Shopify.
  • Now go to your Shopify store, navigate to the App section and click on Single Sign On - SSO login application.

Shopify Store SSO App login - Shopify Okta SSO

  • Click on the Add Identity Provider button to add your IDP.
Add IDP - Shopify Okta SSO

  • Select SAML protocol.
SAML - Shopify Okta SSO

  • Now choose Salesforce from the list of IDPs.
Okta IDP - Shopify Okta SSO

  • Click on the Get metadata button, as shown on the screen below, to get the service provider metadata.
Get Metadata - Shopify Okta SSO

  • Navigate to the SP Initiated Metadata section and copy down the ACS URL and Entity ID or Issuer.
SP Initiated Metadata - Shopify Okta SSO

  • Paste the copied values from the previous step into the Basic SAML configuration section in Salesforce. (Refer to the below table)
Get Metadata - Shopify Okta SSO

Entity ID Entity ID or Issuer from the above Step.
ACS URL (Assertion Consumer Service URL) ACS URL from above Step.
  • Then, click on the Save button.
  • Now from the left menu, under Platform Tools, select Apps » Connected Apps » Manage Connected Apps . Click on the App you just created.
Get Metadata - Shopify Okta SSO

  • Under the Profiles section, click on the Manage Profiles button.
Get Metadata - Shopify Okta SSO

  • Assign the Profiles you want to give access to login through this app.
Get Metadata - Shopify Okta SSO

  • Under SAML Login Information, click on the Download Metadata button as shown in the below image to allow your Organization users to SSO into Shopify.
SP Initiated Metadata - Shopify Okta SSO

  • Under SAML Login Information, click on Download Metadata button as shown in the below image to allow your Communities users to SSO into Shopify.
IDP Initiated Metadata - Shopify Okta SSO

  • Keep this metadata handy for configuring the Service Provider.

You have completed the Salesforce side configuration.

  • Navigate back to the miniOrange Single Sign On-SSO application and click on the Add Identity Provider button.
miniorange SSO - Shopify Okta SSO

  • Select SAML protocol.
SAML - Shopify Okta SSO

  • From the list of IDPs, select Salesforce .
Okta - Shopify Okta SSO

  • Click on the Import IDP Metadata button.
Import IDP metadata - Shopify Okta SSO

  • Select the upload method as Metadata Link. Paste the copied XML file link from Step 1 and Click on Import.
Metadata Link - Shopify Okta SSO

  • Add the appropriate IDP Name and click on Save.
Save Configuration - Shopify Okta SSO


  • After saving the IDP configuration, you will be redirected to the Test Connection step.
    Please perform Test Connection before mapping or fetching attributes, test connection ensures that your IDP configuration is correct.
  • Click on the Test Connection button.
Test Connection - Shopify Okta SSO

  • On entering valid Salesforce credentials you will see a pop-up window which is shown in the below screen.
Connection Succesfull - Shopify Okta SSO

  • Click on the Fetch Attributes button to fetch the IDP attribute.
Fetch Attributes - Shopify Okta SSO

  • Click on the + Attribute Mapping button to map attributes between Shopify and Salesforce.
Attribute Mapping - Shopify Okta SSO

  • Map the attributes by referring to the table below:
Attribute Name in Shopify Choose the attribute from the list of predefined attributes
Attribute Type IDP Attribute
Attribute Value Select the attribute value you have fetched from your IDP
Map Attributes - Shopify Okta SSO

  • Click on Next.
  • Navigate to the application home page. Go to More actions against the IDP you have configured and click on the Make Default button to make the IDP default.
Make default - Shopify Okta SSO

Please select your store type to test Single Sign-On (SSO) for your Shopify store:

  • Go to your Shopify Store login page.(https://<your-shopify-storedomain>/account/login)
  • Click on the User login icon.
SSO Login into Store - Shopify miniOrange SSO

  • If you encounter an "invalid or missing reCAPTCHA token" error, accompanied by a "Something went wrong" message, refer to this FAQ to resolve the error.
Shopify miniOrange SSO - Something went wrong error

  • Else, you’ll be redirected to the login page of the identity provider (IDP) you configured in the previous step. Log in with your IDP account credentials.
  • Next, enter the six-digit OTP that will be sent to your registered email address. (This is a one-time process)
Shopify miniOrange SSO - 6 Digit OTP customer account

  • You’ll be successfully logged in to your Shopify store.
  • Go to your Shopify Store login page.(https://<your-shopify-storedomain>/account/login)
  • Click on the login button you customized earlier.
SSO Login into Store - Shopify miniOrange SSO

  • If you encounter an "invalid or missing reCAPTCHA token" error, accompanied by a "Something went wrong" message, refer to this FAQ to resolve the error.
Shopify miniOrange SSO - Something went wrong error

  • Else, you'll be redirected to the identity provider (IDP) login page. Now log in with your existing account credentials.
  • You’ll be successfully logged in to your Shopify store.

Hence you have successfully configured Shopify Single Sign-On (SSO) using Salesforce as IDP and Shopify as SP using Shopify Single Sign-On (SSO) login application. This solution ensures that you are ready to roll out secure access to your Shopify store using Salesforce login credentials within minutes.


Follow the steps outlined here to configure SSO in Shopify with your preferred IDP.

Redirection to any other site might be blocked in the browser. Please follow the steps given here to resolve the issue.

Follow the steps outlined here to redirect your customer to collections/cart or any other page.

You must upgrade to the SSO application’s Enterprise plan to enable the Auto-Redirect to the IDP feature. Follow the steps outlined here to enable this feature.


Please reach out to us at shopifysupport@xecurify.com, and our team will assist you with setting up the Shopify SSO application. Our team will help you to select the best suitable solution/plan as per your requirement.

ADFS_sso ×
Hello there!

Need Help? We are right here!

support