The EmpowerID SSO framework allows you to configure Twitter as an identity provider (IdP) for EmpowerID. EmpowerID integrates with Twitter using OAuth 2.0.
| Note |
|---|
Prerequisites: Before configuring Twitter as an OAuth Identity Provider in EmpowerID, you need to meet the following conditions:
|
| Info |
|---|
Once the IDP Connection has been set up for Twitter, you can create a link similar to the one below to allow users to login to EmpowerID using Twitter.
Be sure to replace |
Steps
To configure Twitter as an Identity Provider for EmpowerID, you need to do the following:
Create an application for EmpowerID in Twitter
Configure the default Twitter OAuth Provider app
Add a Login button to the Login page for Twitter
Test the OAuth provider app
Create an application for EmpowerID in Twitter
To allow users to authenticate to EmpowerID using their Twitter credentials, you must register EmpowerID as an OAuth application in Twitter. See Twitter’s article at https://developer.twitter.com/en/docs/authentication/guides/log-in-with-twitter for directions on how to do this. During the app registration process, Twitter will generate an Client ID and Secret for the application. You will use these when you create an OAuth Provider App for PayPal in EmpowerID.
When creating an application for EmpowerID in PayPalTwitter, set the following:
Setting | Value |
|---|---|
App Name | Name of the application you are creating. This can be any value. |
Return URL | Your application’s redirect URL
|
App Settings | Log in with Twitter |
Configure the default Twitter OAuth Provider app
On the navbar, expand Single Sign-On > SSO Connections and click OAuth / OpenID Connect.
Select the External OAuth Services tab and then search for Twitter.
Click the Provider link for Twitter.
This opens the View page for the Twitter provider.
In the below image, the General panel has been collapsed.
Click the Edit button for the default Twitter OAuth provider app.
Under General Settings, fill in the following information and then click Save.
Field | Description |
|---|---|
Consumer Key | Client ID generated by Twitter |
Consumer Secret | App Secret generated by Twitter |
Is Identity Provider | Select this option to flag the OAuth provider as an Identity Provider app. |
Select existing Account Directory | Select Twitter to place authenticated users in the selected account store. |
Callback Url | This is the URI that Twitter redirects users after they have authenticated with Twitter. The URL should look like the following: |
Add a Login Button for Twitter
On the navbar, expand Single Sign-On > SSO Connections and click SSO Components.
Select the IdP Domains tab and then click the IdP Domains link for the IdP Domain where you want the Login tile to appear.
Select the External OAuth Providers tab and then select the Twitter provider.
Click Save.
| Note |
|---|
To give users the ability to log in using their EmpowerID credentials, be sure to select EmpowerID from the SAML Identity Providers tab of the IdP Domain Details page. |
Test the OAuth Provider App
Log out of the EmpowerID Web interface and navigate your browser to the domain name you configured for the Twitter IdP connection.
Click the Login Using Twitter button.
Click Okay to allow EmpowerID to retrieve the information it needs to link your Twitter account to your EmpowerID identity (Person object).
You should be authenticated to EmpowerID.Insert excerpt IL:LoginWF IL:LoginWF nopanel true
| Insert excerpt | ||||||
|---|---|---|---|---|---|---|
|
| Div | ||||||||
|---|---|---|---|---|---|---|---|---|
| ||||||||
IN THIS ARTICLE
|