Step By Step Guide For WordPress Single Sign On (SSO) using OpenAthens


If you want users to login to your WordPress site using their OpenAthens Keystone credentials, you can simply do it using our WP OAuth Client plugin. Once you configure the OpenAthens Keystone with WordPress plugin, you can allow users to SSO to your WordPress site using OpenAthens Keystone. Similarly, you can map your WordPress roles based on your OpenAthens Keystone attributes/groups. To know more about other features we provide in WP OAuth Client plugin, you can click here.



You can download OAuth Client plugin using the following link.



Step by Step guide to configure OpenAthens as an OAuth/OpenId Connect Server

  • First of all, go to the publisher dashboard of OpenAthens https://sp.openathens.net and login in your account to Configure OpenAthens.
  • Click on Applications tab, click on Create new application to create new application.
  • Configure OpenAthens App Client
  • Select OpenID Connect from the list.
  • Configure OpenAthens App Client
  • Add the name you want to give to your application, URL of the application under the Application Name and Application URL fields respectively. Enter the Redirect/Callback URI from miniOrange OAuth Client plugin/module under the Authorized redirect URIs field.
  • Click on Create application button.
  • Configure OpenAthens App Client
  • You will see the Client ID and Client Secret generated.
  • Copy the Client ID and Client Secret and save it on your miniOrange OAuth Client plugin Configuration.
  • Configure OpenAthens App Client
  • You have successfully completed your OpenAthens App OAuth Server side configurations.
  • Activate the OAuth Single Sign On - SSO (OAuth Client) plugin.
  • Go to the Configure OAuth tab and select Custom OAuth 2.0 App from the Custom Applications list.
  • Enter the Client ID and Client Secret generated from openathens application.
  • Enter the scope and endpoints given in below table.
  • Click on the Save button to save the configuration and click on the Test Configuration.

OpenAthens Endpoints and Scope:


Client ID : from the step 7 above
Client Secret : from the step 7 above
Scope: openid
Authorize Endpoint: https://sp.openathens.net/oauth2/authorize
Access Token Endpoint: https://sp.openathens.net/oauth2/token
Get User Info Endpoint: https://sp.openathens.net/oauth2/userInfo

Free Trial

If you are facing any difficulty please mail us on info@xecurify.com.