Enable WordPress Single Sign on using Auth0 as your identity provider using WP Cloud SSO plugin.
Configure an application within Auth0 and download the SAML configuration and integrate into your WordPress website, which will allow you to map Auth0 users to WordPress roles and enable SSO for WordPress using WP Cloud SSO with Auth0 as your IDP and securing login access..
By following these steps below you can configure Auth0 as your WordPress Identity Provider (IDP).
{
"audience": "https://yourEntityID",
"recipient": "http://foo",
"mappings": {
"user_id": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier",
"email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
"name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",
"given_name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
"family_name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname",
"upn": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn",
"groups": "http://schemas.xmlsoap.org/claims/Group"
},
"createUpnClaim": true,
"passthroughClaimsWithNoMapping": true,
"mapUnknownClaimsAsIs": false,
"mapIdentities": true,
"signatureAlgorithm": "rsa-sha1",
"digestAlgorithm": "sha1",
"destination": "http://foo",
"lifetimeInSeconds": 3600,
"signResponse": false,
"typedAttributes": true,
"includeAttributeNameFormat": true,
"nameIdentifierFormat": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailaddress",
"nameIdentifierProbes": [
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
],
"authnContextClassRef": "urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified",
"logout": {
"callback": "https://SingleLogoutURL",
"slo_enabled": false
},
"binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
}
Note: This upload feature is only available to paid plans. Refer to configure provider manually step or upgrade your Free version.
This feature allows you to map the user attributes sent by the IDP during SSO to the user attributes at WordPress.
This feature lets you assign and manage WordPress roles of the users when they log in using Salesforce. When signed in with Salesforce, users will have the specified role.
Salesforce doesn’t support Group role mapping.
WordPress has 7 pre-defined roles :
Next is to enable your Auth0 SSO login buttons, which can be found on the SSO Links tab. Follow the SSO Login Widget page for instructions on setting up.
For more information about Multiple Environments Feature follow the Multiple Environments SSO page.