Single Sign-On (SSO)
SAML 2.0 and OAuth 2.0 federation with Google, Microsoft, Apple, and custom identity providers
Enterprise SSO module supporting SAML 2.0 and OAuth 2.0/OpenID Connect federation with Google Workspace, Microsoft Entra ID, Apple, and custom identity providers for seamless authentication.
Features
What's Included
SAML 2.0 Integration
Act as Service Provider or Identity Provider with metadata exchange, assertion signing, and attribute mapping.
OAuth 2.0 / OIDC
Authorization code flow with PKCE for web and mobile, supporting standard and custom scopes.
Social Login
One-click login with Google, Microsoft, Apple, Facebook, and GitHub with automatic account linking.
Custom Identity Providers
Connect to corporate LDAP, Active Directory, or any OIDC-compliant identity provider.
Session Federation
Shared session across multiple applications with centralized logout and session timeout policies.
User Provisioning
SCIM 2.0 support for automatic user creation, updates, and deactivation from identity providers.
Plans
Feature Comparison
See what's included at every level — each tier builds on the previous one.
| Feature | Basic | Advanced | Expert | Enterprise |
|---|---|---|---|---|
| Google & Facebook login | ||||
| OAuth 2.0 authorization flow | ||||
| Access token management | ||||
| User profile mapping | ||||
| Apple / Microsoft / GitHub login | — | |||
| Refresh token rotation | — | |||
| Scope-based permissions | — | |||
| Linked account management | — | |||
| SAML 2.0 identity provider | — | — | ||
| JWT custom claims | — | — | ||
| Session federation | — | — | ||
| SSO analytics & login reports | — | — | ||
| Custom OIDC provider integration | — | — | — | |
| Enterprise IdP (Okta/Azure AD) | — | — | — | |
| Multi-tenant SSO policies | — | — | — | |
| Compliance audit logging | — | — | — |
Basic
4 features- Google & Facebook login
- OAuth 2.0 authorization flow
- Access token management
- User profile mapping
- — Apple / Microsoft / GitHub login
- — Refresh token rotation
- — Scope-based permissions
- — Linked account management
- — SAML 2.0 identity provider
- — JWT custom claims
- — Session federation
- — SSO analytics & login reports
- — Custom OIDC provider integration
- — Enterprise IdP (Okta/Azure AD)
- — Multi-tenant SSO policies
- — Compliance audit logging
Advanced
8 features- Google & Facebook login
- OAuth 2.0 authorization flow
- Access token management
- User profile mapping
- Apple / Microsoft / GitHub login
- Refresh token rotation
- Scope-based permissions
- Linked account management
- — SAML 2.0 identity provider
- — JWT custom claims
- — Session federation
- — SSO analytics & login reports
- — Custom OIDC provider integration
- — Enterprise IdP (Okta/Azure AD)
- — Multi-tenant SSO policies
- — Compliance audit logging
Expert
12 features- Google & Facebook login
- OAuth 2.0 authorization flow
- Access token management
- User profile mapping
- Apple / Microsoft / GitHub login
- Refresh token rotation
- Scope-based permissions
- Linked account management
- SAML 2.0 identity provider
- JWT custom claims
- Session federation
- SSO analytics & login reports
- — Custom OIDC provider integration
- — Enterprise IdP (Okta/Azure AD)
- — Multi-tenant SSO policies
- — Compliance audit logging
Enterprise
16 features- Google & Facebook login
- OAuth 2.0 authorization flow
- Access token management
- User profile mapping
- Apple / Microsoft / GitHub login
- Refresh token rotation
- Scope-based permissions
- Linked account management
- SAML 2.0 identity provider
- JWT custom claims
- Session federation
- SSO analytics & login reports
- Custom OIDC provider integration
- Enterprise IdP (Okta/Azure AD)
- Multi-tenant SSO policies
- Compliance audit logging
Use Cases
Where This Module Fits
Enterprise application suites
Corporate intranet portals
Multi-product SaaS platforms
Educational institution systems
Partner portal access
Technology
Built With
Production-grade technologies trusted by enterprises worldwide.
Related Modules
Works Well With
User Management
Unified user profiles, role-based access, and secure authentication
Advanced Password Security
Enterprise-grade password policies with aging, complexity rules, and session controls
Multi-Tenant Architecture
Isolated tenant environments with per-tenant branding, config, data, and billing
Have a project in mind?
Let's discuss how we can build a custom solution tailored to your needs.
Get a Free Consultation