OAuth Single Sign On – SSO (OAuth Client)


This plugin allows login (Single Sign On) into WordPress with your Office 365, Azure AD, Azure B2C, AWS Cognito, WSO2, Keycloak, WHMCS, Okta, LinkedIn, Invision Community, Slack, Amazon, Discord or other custom OAuth 2.0 / OpenID Connect providers. WordPress OAuth Client plugin works with any Identity provider that conforms to the OAuth 2.0 Server and OpenID Connect (OIDC) 1.0 standard.
It also covers User Authentication with OAuth & OIDC protocol and allow authorized user to login into WordPress site.

Single Sign-On(SSO)

In simple term, Single Sign-On(SSO) means login into 1 site / application using the credentials of another app/site.
Example. If you have all your Users/Customers/Members/Employees stored on 1 site(ex. gmail, wordpress, etc.), lets say site A and you want all of them to register/login into your WordPress site say site B. In this scenario, you can register/login all your users of site A into Site B using the login credentials/account of Site A. This is call Single Sign-On or SSO.

Third Party Application / OAuth-OIDC Provider

  • The other terms are: OAuth Provider, OAuth Server, OpenID Connect Server, OpenID Connect Provider, OIDC Provider, OIDC Server, OAuth Application, OpenID Connect Application, OIDC Application, OpenIDConnect Server, OpenIDCConnect Provider, OpenIDConnect Application
  • This Third Party Application can be anything where User Accounts are stored or site/application where you want to store/migrate all the users. It can be your social app/site, wordpress, custom app or any database.


  • Single Sign-On between WordPress – WordPress(Login with WordPress) :
    1. Single Sign-On to 1 WordPress site using User Credentials stored on Another WordPress site
    2. Single Sign-On to 1 / multiple WordPress sites (or subsites) using User Credentials stored on Another WordPress site
  • Single Sign-On between WordPress and Any OAuth / OpenID Connect (OIDC) application(Login with Social Login Apps / Custom Providers) :
    1. Single Sign-On to 1 WordPress site using User Credentials stored on your third party application
    2. Single Sign-On to 1 / multiple WordPress sites (or subsites) using User Credentials stored on Another WordPress site
  • Single Sign-On into WordPress Using existing User stores(Active Directory/Database)


  • WordPress OAuth Login supports single sign-on / SSO with any 3rd party OAuth / OpenIDConnect server or custom OAuth / OpenIDConnect server.
  • Auto Create Users : After SSO, new user automatically gets created in WordPress
  • Account Linking : After user SSO to WordPress, if user already exists in WordPress, then his profile gets updated or it will create a new WordPress User
  • Attribute Mapping : OAuth Login supports username Attribute Mapping feature to map WordPress user profile username attribute.
  • Login Widget : Use Widgets to easily integrate the login link with your WordPress site
  • OpenID Connect / OAuth Provider Support : OAuth Login supports only one OpenID Connect / OAuth Provider.
  • Redirect URL after Login : OAuth Login Automatically Redirects user after successful login.
  • Logging : If you run into issues OAuth Login can be helpful to enable debug logging


  • All the FREE Version Features included.
  • Optionally Auto Register Users : OAuth Login does automatic user registration after login if the user is not already registered with your site
  • Basic Role Mapping : OAuth Login provides basic Attribute Mapping feature to map WordPress user profile attributes like username, firstname, lastname, email and profile picture. Manage username & email with data provided.
    Also, Assign default role to user registering through OAuth Login based on rules you define.
  • Support for Shortcode : Use shortcode to place OAuth login button anywhere in your Theme or Plugin
  • Customize Login Buttons / Icons / Text : Wide range of OAuth Login Buttons/Icons and it allows you to customize Text shadow
  • Custom Redirect URL after Login : WordPress OAuth SSO provides auto redirection and this is useful if you wanted to globally protect your whole site
  • Custom Redirect URL after logout : WordPress OAuth SSO allows you to auto redirect Users to custom URL after he logs out from your WordPress site


  • All the STANDARD Version Features
  • Advanced Role Mapping : Assign roles to users registering through OAuth Login based on rules you define.
  • Force Authentication / Protect Complete Site : Allows user to restrict login / authorization for particular site
  • Multiple Userinfo Endpoints Support : OAuth Login supports multiple Userinfo Endpoints.
  • App domain specific Registration Restrictions : OAuth Login restricts registration on your site based on the person’s email address domain
  • Multi-site Support : OAuth Login have unique ability to support multiple sites under one account


  • All the PREMIUM Version Features
  • Multiple OAuth / OpenID Connect Provider Support
  • Single Login button for Multiple Apps : It provides single login button for multiple providers
  • Extended OAuth API support : Extend OAuth API support to extend functionality to the existing OAuth client.
  • BuddyPress Attribute Mapping : OAuth Login allows BuddyPress Attribute Mapping.
  • Page Restriction according to roles : Limit Access to pages based on user status or roles. This WordPress OAuth Login plugin allows you to restrict access to the content of a page or post to which only certain group of users can access.
  • WP Hooks for Different Events : Provides support for different hooks for user defined functions
  • Login Reports : OAuth Login creates user login and registration reports based on application used.

No SSL restriction

  • Login to WordPress (WordPress SSO) using Google credentials (Google Apps Login) or any other app without having an SSL or HTTPS enabled site.

List of popular OAuth Providers we support

  • Azure AD
  • AWS Cognito
  • Ping Federate
  • Slack
  • Discord
  • HR Answerlink / Support center
  • WSO2
  • Wechat
  • Weibo
  • LinkedIn
  • Gitlab
  • Shibboleth
  • Blizzard (Formerly Battle.net)
  • servicem8
  • Meetup
  • Eve Online
  • Gluu Server
  • WSO2
  • NetIQ
  • Centrify
  • Azure AD
  • Azure B2C

List of popular OpenID Connect (OIDC) Providers we support

  • Amazon
  • Salesforce
  • PayPal
  • Google
  • AWS Cognito
  • Okta
  • OneLogin
  • Yahoo
  • ADFS
  • Gigya
  • Swiss-RX-Login (Swiss RX Login)
  • Azure AD
  • Azure B2C

List of grant types we support

  • Authorization code grant
  • Implicit grant
  • Resource owner credentials grant (Password Grant)
  • Client credentials grant
  • Refresh token grant

Other OAuth / OpenID Connect Providers we support

  • Other oauth 2.0 servers oauth single sign-on plugin support includes Office 365, Autodesk, Zendesk, Foursquare, Harvest, Mailchimp, Bitrix24, Spotify, Vkontakte, Huddle, Reddit, Strava, Ustream, Yammer, RunKeeper, Instagram, SoundCloud, Pocket, PayPal, Pinterest, Vimeo, Nest, Heroku, DropBox, Buffer, Box, Hubic, Deezer, DeviantArt, Delicious, Dailymotion, Bitly, Mondo, Netatmo, Amazon, FitBit, Clever, Sqaure Connect, Windows, Dash 10, Github, Invision Community, Blizzar, authlete, Keycloak, Procore, Eve Online, Laravel Passport, Nextcloud, Renren, Soundcloud, OpenAM, IdentityServer, ORCID, Diaspora, Timezynk etc.

Supported Add-ons

  1. Page Restriction
  2. BuddyPress integrator
  3. Login Form Add-on
  4. Membership Level based Login Redirection

REST API Authentication

Secures the unauthorized access to your WordPress sites/pages using our WordPress REST API Authentication plugin.

Tangkapan Layar

  • List of Apps
  • Login button customization
  • Advanced Feature
  • Troubleshooting
  • Attribute & Role Mapping
  • Login Button / Widget
  • WordPress Dashboard Login


Dari dasbor WordPress

  1. Visit Plugins > Add New
  2. Search for oauth. Find and Install oauth plugin by miniOrange
  3. Activate the plugin

Dari WordPress.org

  1. Download WordPress OAuth Single Sign On (OAuth Client).
  2. Unzip and upload the miniorange-oauth-login directory to your /wp-content/plugins/ directory.
  3. Activate miniOrange OAuth from your Plugins page.

Setelah diaktifkan

  1. Go to Settings-> miniOrange OAuth -> Configure OAuth, and follow the instructions
  2. Go to Appearance->Widgets ,in available widgets you will find miniOrange OAuth widget, drag it to chosen widget area where you want it to appear.
  3. Now visit your site and y-ou will see login with widget.

For Viewing Corporation, Alliance, Character Name in user profile

To view Corporation, Alliance and Character Name in edit user profile, copy the following code in the end of your theme’s Theme Functions(functions.php). You can find Theme Functions(functions.php) in Appearance->Editor.

add_action( 'show_user_profile', 'mo_oauth_my_show_extra_profile_fields' );
add_action( 'edit_user_profile', 'mo_oauth_my_show_extra_profile_fields' );


I need to customize the plugin or I need support and help?

Please email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.

How to configure the applications?

On configure OAuth page, check if your app is already there in default app list, if not then select the custom OAuth 2.0 app or Custom OpenID Connect Provider app based on the protocol supported by your OAuth Server. Then click on How to Configure link to see configuration instructions.

add_action( 'show_user_profile', 'mo_oauth_my_show_extra_profile_fields' );
add_action( 'edit_user_profile', 'mo_oauth_my_show_extra_profile_fields' );
I need integration of this plugin with my other installed plugins like BuddyPress, etc.?

We will help you in integrating this plugin with your other installed plugins. Please email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.

I verified the OTP received over my email and entering the same password that I registered with, but I am still getting the error message – “Invalid password.”

Please write to us at info@xecurify.com and we will get back to you very soon.

I would like to change our license to support the Diffrent Domain. How do we do this?

Yes, You can now activate the license on your new domain. Write us at info@xecurify.com we will help you set up.

Is it possible to set a different redirect URL after login & logout

Yes, With standard license you can set different redirect URL to redirect to after login as well as after logout.

For any other query/problem/request

Please email us at info@xecurify.com or Contact us. You can also submit your query from plugin’s configuration page.


20 Februari 2020
Many thanks to the tech support for helping to implement and configure the work on my site. Thanks to Kalpesh Hiran and Dhruv Bhavsar for their help and patience.
23 Januari 2020
the staff at miniOrange were very responsive and key to getting the OAuth plugin working on our site. They worked with our IT staff to ensure everything functioned correctly.
3 Januari 2020
The team is really great. We have been able to test the Premium version before purchasing it. And the team was quickly available to help us to configure the plugin.
Baca semua 43 tinjauan

Kontributor & Pengembang

“OAuth Single Sign On – SSO (OAuth Client)” adalah perangkat lunak sumber terbuka. Berikut ini mereka yang sudah berkontribusi pada plugin ini.

Para Kontributor

Log Perubahan


  • Added nonces and sanitized required parameters
  • Updated all the 3rd party libraries
  • Added constants
  • Added fixes for account setup and attribute Mapping
  • Added New Providers (ORCID, Diaspora, Timezynk)


  • Updated widget logos
  • Automated Attribute Mapping
  • Updated Visual Tour
  • Added New Providers (miniOrange, Identity Server, Nextcloud, Twitch, Wild Apricot, Connect2id )
  • Updated Support Query / Contact Us form


  • Fixed the SSO for Default Azure app
  • Advertised SSO Setup Video
  • Updated plugin licensing
  • Added support for new providers (Centrify, NetIQ, OpenAM, IdentityServer )
  • Minor compatibility fixes


  • Added fixes for Widget / Login Button Logo
  • Added fixes for common CSS conflicts
  • Updated UI
  • Added WordPress Theme Compatibility


  • Removed unused libraries


  • Added Login Button on WordPress Dashboard
  • Updated Login Button UI
  • Added checkboxes to send Client Credentials in Header/Body
  • Fixed Attribute Mapping, backslash issue
  • Fixed CSS conflicts
  • Automated Request for Demo


  • Added support for WSO2 & Swiss-Rx-Login (Swiss RX Login)
  • UI updates


  • Added Add-on tab
  • Added UI Changes
  • Added compability for WordPress version 5.2.2


  • Attribute Mapping fixes
  • minor UI Changes


  • Minor bugfixes


  • Bug fixes and Minor UI changes


  • Added Compatibility for WordPress version 5.2.1
  • Updated API of support query
  • Updated Regisatrtion form
  • Added Request for Demo form
  • Added Forum link
  • Advertised New Features –
  • Updated Licensing Plan


  • Added compatibility for WordPress version 5.2


  • Added Authorization Headers


  • Added support for Meetup, Autodesk and Zendesk
  • Updated Feedback form


  • Added email validation on login
  • Tested WP 5.1 compatibility


  • Added WHMCS in default applist


  • Upadted Google APIs
  • Fixed cURL issues


  • Updated Licesning Plan


  • Added Uninstall fixes


  • Updated Licesning plan


  • Added CSS fixes


  • UI changes


  • Delayed Registration
  • Updated Password Validation


  • Added Bug Fixes


  • Added Visual Tour
  • Updated UI
  • Added Setup Guides Links


  • Compatibility with WordPress 5.1


  • Added FAQ Tab


  • Added Bug Fixes


  • Added Bug Fixes


  • Updated UI
  • Added Auto Create User feature


  • Added support for OpenID Connect (OIDC) Provider
  • Added option to disable Authorization Header for Get User Info Endpoint


  • Updated Licensing Plan


  • Bug fixes for ‘Vulnerable Link’ issue


  • Bug fix for Invalid OTP error


  • CSS customizations


  • Added premium features page.


  • Updated list of OAuth Providers.


  • Handled self signed SSL sites and slashes.


  • Bug fixes fetching user resource


  • Added shortcode option


  • Added Windows Live app and bug fixes


  • Changed callback url


  • Added UI customizations.


  • Bug fix for warnings showing up.


  • Compatibility with WordPress 4.7.3


  • Registration Fixes


  • Eve Online Changes
  • Compatibility with WordPress 4.5.1


  • Bug fixes
  • Compatibility with WordPress 4.5


  • Bug fixes


  • Email after first login.
  • Redirection after login – same page or custom.
  • Shortcode
  • Added option for alllowed faction.
  • Denied access for character, alliance, corp, faction.


  • Sets last_name as EVE Online Character Name when user logs in for the first time


  • Bug fixes for some users facing problem after sign in


  • Bug fixes.


  • Fixed bug where user was not redirecting to EVE Online in some php versions.


  • Bug fixes


  • Bug fixes


  • Bug fixes


  • Added email ID verification during registration.


  • Added Login with Facebook


  • Updates user’s profile picture with his EVE Online charcater image.
  • Submit your query (Contact Us) from within the plugin.


  • Bug fix


  • Resolved EVE Online login flow bug in some cases


  • Resolved some bug fixes.


  • First version with supported applications as EVE Online and Google.