OAuth Single Sign On – SSO (OAuth Client)

WordPress Single Sign-On (WordPress SSO) with our OAuth & OpenID Connect plugin allows unlimited login/SSO (Single Sign On) with your Azure AD, Azure B2C, G Suite / Google Apps / Google Workspace, ClassLink, Clever, Office 365, AWS Cognito, Discord, PingFederate, Salesforce, Keycloak, Okta, Identity Server, Invision Community or other custom OAuth 2.0 and OpenID Connect providers. WordPress SSO plugin supports Single Sign On (SSO) with many OAuth 2.0, OAuth 2.1, OAuth 1.0 & OpenID Connect (OIDC) 1.0 providers.

An unlimited number of users can perform Single Sign-On with OAuth/OIDC supported Identity Providers on WordPress using SSO capabilities.

| Features | OAuth / OpenID Providers Setup guides | Videos |

POPULAR OAUTH AND OPENID CONNECT (OIDC) PROVIDERS SINGLE SIGN-ON

The following providers support OAuth 2.0/OpenID Connect SSO for WordPress login.

• AWS Cognito SSO | Login with AWS Cognito
• Office 365 SSO | Login with Office 365
• Azure B2C SSO | Login with Azure B2C
• Azure AD SSO | Login with Azure AD
• ADFS SSO | Login with ADFS
• Auth0 SSO | Login with Auth0
• OKTA SSO | Login with OKTA
• ClassLink SSO | Login with ClassLink
• Keycloak SSO | Login with Keycloak
• Clever SSO | Login with Clever
• Google Classroom SSO | Login with Google Classroom
• Salesforce SSO | Login with Salesforce
• Criipto SSO | Login with Criipto
• G Suite / Google Apps SSO | Login with Google
• Ping Federate SSO ( Ping / Ping Identity ) | Login with Ping Federate
• IdentityServer4 SSO | Login with IdentityServer4
• WordPress IdentityServer3 SSO | Login with IdentityServer3
• Discord SSO | Login with Discord
• OneLogin SSO | Login with OneLogin
• Swiss-RX-Login SSO ( Swiss RX Login ) | Login with Swiss-RX-Login
• Neon CRM SSO | Login with Neon CRM
• iMIS SSO | Login with iMIS
• Signicat SSO | User Verification with Signicat
• ID.me SSO | Login with ID.me
• Canvas SSO | Login with Canvas
• WordPress SSO | Login with WordPress
• WSO2 SSO | Login with WSO2
• OpenAthens SSO | Login with OpenAthens
• HP SSO | Login with HP
• Servicenow SSO | Login with Servicenow
• Invision Community SSO | Login with Invision Community
• OpenAM / Forgerock SSO | Login with Forgerock
• NextCloud SSO | Login with NextCloud
• Orcid SSO | Login with Orcid
• Memberclicks SSO | Login with MemberClicks
• SheepCRM SSO | Login with SheepCRM
• Amazon SSO | Login with Amazon
• Slack SSO | Login with Slack
• Yahoo SSO | Login with Yahoo
• LinkedIn SSO | Login with LinkedIn
• Gitlab SSO | Login with Gitlab
• GitHub SSO | Login with GitHub
• Apple SSO | Login with Apple
• Strava SSO | Login with Strava
• Blizzard / Battle.net SSO | Login with Battle.net
• Eve Online SSO | Login with Eve Online
• Hubspot SSO | Login with Hubspot
• X(Twitter) SSO | Login with Twitter
• Zoho SSO | Login with Zoho
• Idaptive SSO | CyberArk SSO | Login with CyberArk
• WHMCS SSO | Login with WHMCS
• France Connect SSO | Login with France Connect

OTHER OAUTH AND OPENID CONNECT (OIDC) PROVIDERS WE SUPPORT FOR WORDPRESS SINGLE SIGN-ON (SSO)

• Other OAuth 2.0 and OpenId Connect ( OIDC ) 1.0 servers WordPress Single Sign-On ( SSO ) plugin support includes Office 365, AWS Cognito, Microsoft Dynamic CRM 365, Auth0, Google Workspace, Egnyte, Autodesk, Zendesk, Foursquare, Harvest, Mailchimp, Bitrix24, Spotify, Vkontakte, Huddle, Reddit, Strava, Ustream, Yammer, RunKeeper, Instagram, SoundCloud, Pocket, PayPal, Pinterest, Vimeo, Nest, Heroku, DropBox, Buffer, Box, Hubic, Deezer, DeviantArt, Delicious, Dailymotion, Bitly, Mondo, Netatmo, Amazon, FitBit, Clever, Sqaure Connect, Windows, Microsoft Live, Dash 10, Github, Invision Community, Blizzard, authlete, Keycloak, Procore, Eve Online, Laravel Passport, Nextcloud, Renren, Soundcloud, OpenAM / Forgerock, IdentityServer, ORCID, Diaspora, Timezynk, Idaptive CyberArk, Duo Security, Rippling, Crowd, Janrain, Numina Solutions, Ubuntu Single Sign-On, Apple, Ipsilon, Zoho, Stripe, Itthinx, Fellowshipone, Miro, Naver, Clever, Coil, Parallel Markets, VATSIM, Liferay, Fatsecret, Intuit, iMIS, ORY Hydra, FusionAuth, Kakao, ID.me, MoxiWorks, HR Answerlink / Support center, ClassLink, Google Classroom, MemberClicks, BankID, CSI, Splitwise, Infusionsoft, Hubspot, Join It, MyAcademicID, MemberConnex, Novi, Coassemble, Servicenow, IBM APP ID, Nimble AMS, iSpring LMS, Neon CRM, EPIC, IPB forum, Wiziq, Sprinklr, Elvanto, ABSORB LMS, Wechat, Weibo, Shibboleth, Centrify, FranceConnect, Church Online, Bigcommerce, Sewobe, PracticePanther, SubscribeStar, Eventbrite, Medi-Access, Lichess, CILogon, Servicem8, Gigya, PhantAuth, XING, Simplecast, SURF, MediaWiki, UNA, NetSuite, Oracle IDCS, Globus, Square, SimpleSAMLphp, Basecamp, HP, SHELL, Otoy, Steam, Webflow, Simplepass, Feide, SingPass, Asmodee, SwissID, Miro, Alkami, Switch, Citrix, Schoology, iGov, LearnWorlds, France Connect, DID, Blackboard, UAEPass, Polar, CodeB, Vincere CRM, F5, TicketMaster, BizLibrary, Skolon, Rapattoni, PowerSchool, Minecraft, NETS, Joomla, Drupal, ASP.NET, CA Siteminder, Outseta, XUMM, ID Austria, Ubisecure, Gravitee.io, SheepCRM, Wahoo, WeatherFlow Tempest, OneWelcome / iWelcome, Xbox, Trovo, Cornerstone, Criipto, bare.id, Discourse, Authentik, Sailpoint, Coil, Asset Bank, GrowthZone, Vipps, Authorizer, Deviant Art, Miracl, Teamsnap, Authelia, Django, IDsampa, Cvent, SERMO, Pixelfed, Finys, Login.gov, Fastcase, Acuity, ARPA, Zitadel, Yeti, myID.be, memberful,Open edX / eduNEXT, Teachable, Mindbody etc. This comprehensive SSO support facilitates seamless integration and secure authentication across a wide range of platforms.

WordPress Single Sign-On ( Login to WordPress )

WordPress Single Sign-On allows users to log into any website/application using the single set of credentials of another app/site through the SSO feature. Example:Let’s say you have all your users/customers/members/employees stored on a site, called ‘site A’ and you want all of them to register/login using SSO to your WordPress site called ‘site B’. In this scenario, you can register/login all your users of site A into site B using the login credentials/account of site A. This is called Single Sign-On, and it simplifies user management.

WordPress Single Sign-On supported Third-Party Application / OAuth OpenID Provider

• The Third-Party Application can be anything where user accounts are stored or a site/application where you want to store/migrate all the users. It can be your social login app, WordPress site, OAuth provider, OpenID provider, custom provider or any database.

• Identity providers such as OAuth Identity Provider, OAuth Server, OpenID Connect Server, OpenID Connect Provider, and OIDC Application support Single Sign-On. SSO integration ensures secure user authentication and management across these platforms.

• OAuth and OpenID Connect are token-based Single Sign-On protocols that allow an end user’s account information to be used by third-party services without exposing the user’s password.

WordPress Single Sign-On USE CASES

• WordPress to WordPress SSO: Single Sign On to one/multiple WordPress site (single/multisite) using User Credentials stored on another WordPress site with WordPress SSO plugin.
• Single Sign On to one/multiple WordPress site (single / multisite) using User Credentials stored on your OAuth / OpenID Connect (OIDC) application.
• Single Sign On into WordPress using existing User stores (Active Directory/Database)
• SSO and extended plugin functionality using tokens (access_token / JWT token / id_token) such as secure API calls using third-party token
• Others: eCommerce Single Sign On/Login, Single sign on for Educational and Healthcare paltforms

Microsoft SSO/Azure SSO

This WordPress Single Sign-On (OAuth / OpenID Connect SSO) plugin supports SSO with Microsoft apps like Azure AD, Azure B2C, Office 365, Microsoft Dynamics CRM, Microsoft Teams, and Windows Live. It also supports policy-based login redirections, including sign-up, sign-in, forgot password, and custom policies, enhancing the login experience across Microsoft services.

WordPress integrates with Microsoft services like Azure AD, Azure B2C, and Office 365 for secure Single Sign-On across single-site and multisite networks (including subdomains). Users can perform single sign-on, map profile attributes, and manage role-based access across applications and tenants using SSO

Apart from SSO, it also supports WordPress-Azure integrations and customizations, such as token-based calls to specific APIs and the Microsoft Graph API, enhancing the login experience

Cognito SSO

The WordPress Single Sign-On plugin supports WordPress Login with AWS Cognito, Amazon, and WordPress using Cognito. It provides user profile syncing, role mapping, and token fetching from AWS Cognito for API calls. Customizations include integrating Cognito SDKs, syncing new registrations, logging in via the default WordPress form instead of Cognito’s SSO page, connecting to the Cognito User Pool, and configuring login redirections.

Discord SSO This WordPress Single Sign-On plugin enables Discord login into WordPress. It supports syncing user profiles from Discord to WordPress, mapping Discord roles to WordPress roles, mapping WordPress roles to Discord roles, and managing Discord role memberships based on WordPress purchases.

Keycloak SSO The WordPress Single Sign-On (OAuth / OpenID Connect SSO) plugin works with Keycloak to enable SSO on your WordPress site. It also lets WordPress use Keycloak access tokens to call external services. In addition, the plugin supports role-based access control (RBAC), so you can map Keycloak roles to WordPress roles and capabilities.

Ping Federate SSO Oauth Single sign-on plugin enables Login to WordPress using PingFederate. It supports Single Sign-On with authorized access to Ping REST APIs via access tokens or bearer tokens, ensuring seamless SSO integration and secure interactions with PingFederate.

Clever SSO Oauth Single sign-on plugin supports WordPress Login with Clever for users (teachers, students, admins) and integrates with LearnDash to sync lessons and assignments. It also provides SSO with other IDPs like ClassLink, Google Classroom, and Canvas, as well as any Identity Provider (SAML, OAuth, OpenID Connect, Active Directory, databases) via miniOrange IDP.

FREE VERSION FEATURES

• WordPress Single Sign-On OAuth & OpenID Connect Login supports unlimited SSO with any 3rd party OAuth & OpenID Connect server or custom OAuth & OpenID Connect server like AWS Cognito, Azure AD, Azure AD B2C, Office 365, Google Apps, etc.
• WordPress Single Sign-On Grant Support – Standard OAuth2 Grant: Authorization Code
• Auto Create Users ( User Provisioning ) : After Single Sign On, a new user automatically gets created in WordPress
• Account Linking : After SSO, if the user already exists in WordPress, then their profile gets updated. Else, a new WordPress User is created.
• Attribute Mapping : OAuth Login allows you to map your Identity Provider’s unique attribute with WordPress Username Attribute.
• Login Widget : Use Widgets to integrate the Single Sign-On login on your WordPress site easily.
• OpenID Connect & OAuth Provider Support : WordPress Single Sign On (OAuth Login) supports any OpenID Connect & OAuth Provider seamless Single Sign-On.
• Redirect URL after Login : WordPress Single Sign On (OAuth Login) automatically redirects the user after successful Single Sign-On login.
• Logging : If you run into issues, WordPress Single Sign On (OAuth Login) can be helpful to enable debug logging.

PAID FEATURES

• WordPress Single Sign-On Grant Support: Standard OAuth2 Grants including Authorization Code, Implicit Grant, Password Grant, Refresh Token Grant, Client Credential Grant, authorization code grant with PKCE flow, and Hybrid Grant (Customization Available)
• Auto Register Users: Automatic user registration after SSO if the user is not already registered with your site.
• Advanced Attribute Mapping: Ability to map WordPress user profile attributes, such as username, first name, last name, and email.
• Advanced Role Mapping: Assign roles to users based on defined rules through Single Sign-On.
• Force Authentication / Protect Complete Site: Protect the entire website for public users and grant access only to authenticated users through Single Sign-on.
• Custom Attribute Mapping: Map custom user attributes received from OAuth / OpenID Connect providers to any WordPress user attribute for Single Sign-On.
• Multiple OAuth & OpenID Connect Provider Support: Support for multiple SSO providers.
• Single Login button for Multiple Apps: Provides a single login button for multiple providers.
• Extended OAuth API Support: Extend OAuth / OpenID Connect API support for enhanced Single Sign-On functionality.
• WordPress Single Sign-On Login Reports: Generate user login and registration reports based on the application used for SSO.
• Enable / Disable WordPress Default Login: Option to disable the default WordPress login form and use SSO instead.
• FrontChannel & BackChannel Single Logout Support: Allows users to be logged out from WordPress as well as the IDP through Single Sign-On.
• Third-Party Plugin Compatibility for Single Sign-On: Compatible with WooCommerce and other third-party plugins for seamless Single Sign-On integration.
• Add-on Support with Plugin: Support for various add-ons including SCIM User Provisioning, Page & Post Restriction, BuddyPress Integration, Login Form Add-on, LearnDash Integration, Media Restriction, Attribute/Membership-Based Redirection, SSO Session Management, Paid Membership Pro Integrator, WooCommerce Integrator, SSO Login Audit, Memberpress Integration, and Guest User Login.
• No SSL Restriction: Allows SSO login without SSL or HTTPS-enabled site using Google credentials or any other app.