Search Results :

×

Joomla OAuth Client Integration with WSO2 Single Sign-On (SSO)


Integration of WSO2 Single Sign-on (WSO2 SSO) with Joomla using OAuth 2.0 Protocol. The miniOrange Joomla OAuth / OpenID Connect Single Sign-on (SSO) plugin makes it simple to set up WSO2 SSO into Joomla and enable secure login into Joomla. As a result, users can log in to Joomla and access the site by authenticating with their WSO2 OAuth Provider credentials.
Visit our Joomla OAuth Client Plugin webpage to learn more about the features and plans we offer for the Joomla OAuth Single Sign-on (OAuth & OpenID connect) plugin.

Pre-requisites: Download And Installation


Steps to Install Joomla OAuth Client Plugin

  • Download the zip file for the miniOrange OAuth Client plugin for Joomla.
  • Login into your Joomla site’s administrator console.
  • From left toggle menu, click on System, then under Install section click on Extension.
  • Upload the downloaded zip file to install the Joomla OAuth Client plugin.
  • Installation of the plugin is successful. Now click on Start Using miniOrange OAuth Client plugin.
  • Under Configure OAuth -> Pre-Configured Apps tab, select your OAuth Provider. You can also search for custom OAuth or custom OpenID application in the search bar, and configure your own custom provider.
  • Joomla OAuth Single Sign-On SSO - Select your OAuth Provider

Steps to configure OAuth SSO into Joomla

1. Configure Callback/Redirect URL

  • After selecting your OAuth provider, you will be redirected to the Step 1 [Redirect URL] tab. Now copy the Callback/Redirect URL which we will use to configure the OAuth Server, then click on the Save & Next button.
  • OAuth Single Sign-On SSO into Joomla - Copy Redirect URL
  • First, let’s register this Consumer App in WSO2 IS. Download and start WSO2 IS.
  •  WSO2 Oauth client, sso-appregister-wso2
  • Once logged in, go to Main -> Service Provider and click on Add.
  • WSO2 Single Sign-On SSO into Joomla,-sso-sp-Add
  • Enter the Service Provider Name and Description and click on Register.
  • WSO2 Single Sign-On SSO into Joomla, Enter-spname-description
  • Now go to the Service Provider->List and edit the Service Provider you have created.
  • Scroll down and select Inbound Authentication Configuration and then select OAuth/OpenID Connect Configuration and click on Configure.
  • WSO2 Single Sign-On SSO into Joomla, Configure
  • Select the OAuth Version 2.0 and enter the Redirect/Callback URL from which is copied from here. Click on Add button.
  • WSO2 Single Sign-On SSO into Joomla, CallbackURL

2. Configure Client ID and Secret

  • When the app has been added, Client ID and Client Secret are generated for the application. Configure the Joomla OAuth SSO plugin with Client ID, Client Secret, Authentication and Access Token, Get User Info Endpoint of WSO2. Endpoints are provided at the bottom of this guide.
  • WSO2 Single Sign-On SSO into Joomla, Getclient-secret
  • Attribute Mapping: To get attributes from WSO2 you have to add following Claim URIs in your WSO2 application.
  • Go to Service Provider->Claim Configuration.
  • Select https://wso2.org/claims/emailaddress from Subject Claim URI dropdown.
  • Add following URIs in Service Provider Claim Dialect: https://wso2.org/oidc/claim & https://wso2.org/claims
  • WSO2 Single Sign-On SSO into Joomla, Claim-url
  • Now go to the Joomla OAuth Client plugin, under Configure OAuth tab, enter the all the details. Then click on Save Settings and then click on Test Configuration.
  • WSO2 Single Sign-On (SSO) OAuth/OpenID
  • Go to the Step 2 [Client ID & Secret] tab of the Joomla OAuth Client plugin, here paste the Client ID, Client Secret and Tenant. Click on the Save Configuration button.
  • OAuth Single Sign-On SSO into Joomla - Save Configuration

2.1. Scope & Endpoints

    WSO2 Endpoints and Scope:


    Scope:
    openid
    Authorize Endpoint:
    https://<wso2-app-domain>/oauth2/authorize
    Access Token Endpoint:
    https://<wso2-app-domain>/oauth2/token
    Get User Info Endpoint:
    https://<wso2-app-domain>/oauth2/userinfo
    Custom redirect URL after logout: [optional]
    https://<wso2-app-domain>/oidc/logout?id_token_hint=<id_token>&post_logout_redirect_uri=<redirect URI>&state=<state>
    Set Client Credentials:
    In Both (In Header and In Body)

3. Configure Attribute Mapping

    User Attribute Mapping is mandatory for enabling users to successfully login into Joomla. We will be setting up user profile attributes for Joomla using below settings.

  • Go to Step 3 [Attribute Mapping] tab and click on Test Configuration button.
  • OAuth Single Sign-On SSO into Joomla - Test Configuration
  • You will be able to see the attributes in the Test Configuration output as follows.
  • OAuth Single Sign-On SSO into Joomla - Configuration output
  • Now go to the Step 3 [Attribute Mapping] tab and Select the attribute name for Email and Username from dropdown. Then click on Finish Configuration button.
  • OAuth Single Sign-On SSO into Joomla - Attribute Mapping

4. Setup Login/SSO URL

  • Now go to Step 4 [SSO URL] tab, here copy the Login/SSO URL and add it to your Site by following the given steps.
  • OAuth Single Sign-On SSO into Joomla - Login/SSO URL
  • Now logout and go to your Joomla site's pages where you have added this link. You will see a login link where you placed that button. Click on this button to perform SSO.

You have successfully configured Joomla as OAuth Client for achieving Joomla WSO2 Single Sign-On (SSO) with Joomla for user authentication.


In this guide, you have successfully configured Joomla WSO2 Single Sign-On (SSO) by configuring WSO2 as OAuth Provider and Joomla as OAuth Client using our Joomla OAuth Client plugin.This solution ensures that you are ready to roll out secure access to your Joomla site using WSO2 login credentials within minutes.

Additional Resources


Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.

Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com