566E PHP包仓库
首页 包列表 提交包 常见问题 关于

oliverkroener/ok-azure-login 问题修复 & 功能扩展

解决BUG、新增功能、兼容多环境部署,快速响应你的开发需求

邮箱:yvsm@zunyunkeji.com | QQ:316430983 | 微信:yvsm316

oliverkroener/ok-azure-login

最新稳定版本:4.0.2

Composer 安装命令:

composer require oliverkroener/ok-azure-login

包简介

Login and register frontend and backend users using Azure Entra

关键字:

# Authentication # oauth # login # SSO # azure # microsoft # typo3 # Office365 # graph-api # entra # frontend-login # backend-login

README 文档

README

TYPO3 extension for frontend and backend login via Microsoft Entra ID (Azure AD) using the OAuth 2.0 authorization code flow and Microsoft Graph API.
Extension key ok_azure_login
Composer oliverkroener/ok-azure-login
TYPO3 12.4, 13.4, 14.0
PHP ^8.1

Features

  • Frontend login via "Sign in with Microsoft" content element
  • Backend login via login provider on the TYPO3 backend login screen
  • Per-site configuration with encrypted client secret storage
  • Multi-tenant support with multiple backend login buttons
  • OAuth 2.0 authorization code flow with HMAC-signed state parameter
  • User lookup by email in fe_users / be_users
  • Backend redirect URI auto-derived from route configuration
  • Frontend logout with optional Microsoft sign-out redirect
  • Translations: English, German, French

Quick start

  1. Register an app in Microsoft Entra ID (see Azure setup docs)
  2. Install the extension via Composer: 
    composer require oliverkroener/ok-azure-login
  3. Configure credentials in Web > Azure Login backend module
  4. Add the Azure Login content element to a frontend page
  5. Register the redirect URIs from the backend module in your Azure app

Configuration

Credentials are managed per TYPO3 site via the backend module. Each site stores:

  • Tenant ID and Client ID from Azure App Registration
  • Client Secret (encrypted at rest with PHP Sodium)
  • Redirect URI (Frontend) -- manually configured, points to the login page
  • Redirect URI (Backend) -- auto-generated from route config, shown as read-only with copy button

The backend redirect URI (/typo3/azure-login/callback) is derived from Configuration/Backend/Routes.php and cannot be misconfigured.

Global credentials via Extension Configuration serve as a fallback for single-site setups.

Documentation

Full documentation is in the Documentation/ directory:

Security

  • Client secrets encrypted at rest (PHP Sodium sodium_crypto_secretbox)
  • HMAC-signed OAuth state with 10-minute TTL
  • Per-site credential isolation
  • CSRF token handling for TYPO3 v13+

Requirements

  • microsoft/microsoft-graph ^2
  • microsoft/kiota-authentication-phpleague ^1
  • TYPO3 encryption key must be configured

统计信息

  • 总下载量: 473
  • 月度下载量: 0
  • 日度下载量: 0
  • 收藏数: 0
  • 点击次数: 5
  • 依赖项目数: 0
  • 推荐数: 0

GitHub 信息

  • Stars: 0
  • Watchers: 1
  • Forks: 0
  • 开发语言: PHP
访问仓库

其他信息

  • 授权协议: GPL-2.0-or-later
  • 更新时间: 2026-02-13

承接程序开发

PHP开发

VUE

Vue开发

前端开发

小程序开发

公众号开发

系统定制

数据库设计

云部署

网站建设

安全加固