A simple client that provides SSO or opt-in authentication against a generic OAuth2 Server implementation.
|Author:||daggerhart (profile at wordpress.org)|
|WordPress version required:||4|
|WordPress version tested:||4.9.8|
|Added to WordPress repository:||25-02-2018|
|Total downloads:||2 479|
Click to start download
What is the client’s Redirect URI?
Most OAuth2 servers will require whitelisting a set of redirect URIs for security purposes. The Redirect URI provided
by this client is like so: https://example.com/wp-admin/admin-ajax.php?action=openid-connect-authorize
example.com with your domain name and path to WordPress.
- Minor documentation update and additional error checking.
- Feature: @drzraf – New filter hook: ability to filter claim and derived user data before user creation.
- Feature: @anttileppa – State time limit can now be changed on the settings page.
- Fix: @drzraf – Fix PHP notice when using traditional login, $token_response may be empty.
- Fix: @drzraf – Fixed a notice when cookie does not contain expected redirect_url
- Prefixing classes for more efficient autoloading.
- Avoid altering global wp_remote_post() parameters.
- Minor metadata updates for wp.org
- Fix: @pjeby – Handle multiple user sessions better by using the
WP_Session_Tokensobject. Predecessor to fixes for multiple other issues: #49, #50, #51
- Bug fix: @svenvanhal – Exit after issuing redirect. Fixes #46
- Feature: @robbiepaul – trigger core action
wp_loginwhen user is logged in through this plugin
- Feature: @moriyoshi – Determine the WP_User display name with replacement tokens on the settings page. Tokens can be any property of the user_claim.
- Feature: New setting to set redirect URL when session expires.
- Feature: @robbiepaul – New filter for modifying authentication URL
- Fix: @cedrox – Adding id_token_hint to logout URL according to spec
- Bug fix: Provide port to the request header when requesting the user_claim
- Feature: @rwasef1830 – Refresh tokens
- Feature: @rwasef1830 – Integrated logout support with end_session endpoint
- Feature: May use an alternate redirect_uri that doesn’t rely on admin-ajax
- Feature: @ahatherly – Support for IDP behind reverse proxy
- Bug fix: @robertstaddon – case insensitive check for Bearer token
- Bug fix: @rwasef1830 – “redirect to origin when auto-sso” cookie issue
- Bug fix: @rwasef1830 – PHP Warnings headers already sent due to attempts to redirect and set cookies during login form message
- Bug fix: @rwasef1830 – expire session when access_token expires if no refresh token found
- UX fix: @rwasef1830 – Show login button on error redirect when using auto-sso
- Feature: @wgengarelly – Added
openid-connect-generic-update-user-using-current-claimaction hook allowing other plugins/themes
to take action using the fresh claims received when an existing user logs in.
- Bug fix: @wgengarelly – When requesting userinfo, send the access token using the Authorization header field as recommended in
section 5.3.1 of the specs.
- Bug fix: @robertstaddon – If “Link Existing Users” is enabled, allow users who login with OpenID Connect to also log in with WordPress credentials
- Feature: @robertstaddon – Added
[openid_connect_generic_login_button]shortcode to allow the login button to be placed anywhere
- Feature: @robertstaddon – Added setting to “Redirect Back to Origin Page” after a successful login instead of redirecting to the home page.
- Feature: @robertstaddon – Added setting to allow linking existing WordPress user accounts with newly-authenticated OpenID Connect login
- Using WordPresss’s is_ssl() for setcookie()’s “secure” parameter
- Bug fix: Incrementing username in case of collision.
- Bug fix: Wrong error sent when missing token body
- Added http_request_timeout setting
- Finalizing 3.0.x api
- Complete rewrite to separate concerns
- Changed settings keys for clarity (requires updating settings if upgrading from another version)
- Error logging
- Working my way closer to spec. Possible breaking change. Now checking for preferred_username as priority.
- New username determination to avoid collisions