Isekai-Project
/
isekai-openid-connect-generic
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
170 Commits
1 Branch
0 Tags
1.4 MiB
isekai
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '43badcc569'
${ noResults }
Commit Graph

90 Commits (43badcc5692eecb80f8693fcab203bcb856cfa6c)

Author SHA1 Message Date
James Collier 8237aa5b84 RFC 3986 encode parameters in authentication URL 5 years ago
Simon Costea 0940c8c863 Delete expired transients 5 years ago
GeorgB 0c83125c7a
Add note on authentication url shortcode 5 years ago
Jonathan Daggerhart f401b3f53b moving openid-connect-generic-alter-user-claim to top of method 5 years ago
Jonathan Daggerhart f01a8bf608
Merge pull request #156 from ksimunovic/dev 
Add two filters to modify received data before validation
 5 years ago
SYLVAIN PAILLASSE 11695f56ab Add logger to OpenID_Connect_Generic 
(also remove code parameter value in the query stirng url for better reading of the logs)
 5 years ago
Jonathan Daggerhart 96bb449f39 Fix race condition by replacing states option array with individual transients 5 years ago
Karlo Šimunović 47ea6d6ec3 Add two filters to modify received $token_response and $id_token_claim before validation 
This is related to daggerhart/openid-connect-generic#155
 5 years ago
Jonathan Daggerhart f42a587bf0
Merge pull request #145 from TeDo-Verlag/notice-response-sent 
avoid headers already sent error notice
 5 years ago
Stephanie 54d6784d44 Allow multiple query params when redirecting back to origin 5 years ago
Jonathan Daggerhart 4955be3b71
Merge pull request #137 from dfredell/patch-1 
More logging on incomplete-user-claim
 5 years ago
gguseynov a70fc8fe04 avoid headers already sent error notice 5 years ago
Dan Fredell 8c5b265ca7
More logging on incomplete-user-claim 
Add logging so the user can more quickly discover which filed is unavailable during formatting. 
Helps in debugging #91
 5 years ago
gguseynov caf3ea7267 1. run 'openid-connect-generic-update-user-using-current-claim' action 
if existing user was updated
2. add_user_meta with single=true does not overwrite old value
 6 years ago
Jonathan Daggerhart f3829b48e2 documenting new action on user login 6 years ago
Gassan Gousseinov 96b25f6c90 added force_redirect parameter and login action 6 years ago
Gassan Gousseinov 11e89fd9b2 fix stripos call 6 years ago
Sarah Lewis 39ae1f8a8f Filter redirect URL before stashing it to a cookie 6 years ago
Jonathan Daggerhart f33225fc2c
Issue #108: Attempt to fix regression for cookie during auto flow (#119) 6 years ago
Jonathan Daggerhart 6dfb0fafa5
Issue #76: Avoid double question marks in auth url query string (#120) 6 years ago
Shane Mulligan 0b51e9c1e5 Change PHP keywords to comply with PSR2 (#116) 
Signed-off-by: CodeLingoBot <bot@codelingo.io>
 6 years ago
Slavic Dragovtev 6ecb69f1cb Allow override of the plugin by posting credentials to wp-login.php (#118) 
* allow overriding the plugin if credentials are POSTed to wp-login.php

* fix indentation to be consistent
 6 years ago
Jonathan Daggerhart 4d7939e9e5
Bug with some special char in the firstname or lastname 
Add str_replace because token is encoded in base64 URL (and not just base64).
Solves the problem with some special char
Re: #101
 6 years ago
Jonathan Daggerhart 0d4e4bd006 additional error detection on user_claim 6 years ago
Matt Varblow 6917df262f Allow identity providers which do not support the userinfo endpoint. (#100) 
* Allow identity providers which do not support the userinfo endpoint.

* Fixed empty check for userinfo endpoint
 6 years ago
cswebservice 54f3ff4193 allow developers to use the plain auth url by shortcode (#98) 
* allow developers to use the plain auth url by shortcode

* prevent to set the redirect cookie on every page request by moving the function call to the formular rendering.
 6 years ago
Raphaël Droz f3096b6f14 fix a notice: If using traditional login, $token_response may be empty (#86) 
fix a 404: In Bedrock-like layout configuration, $redirect_url === 'wp-login.php?loggedout=true'
 (which work for local redirection). But canonicalization should take into account the additional /wp/
 prefix. site_url() does meanwhile home_url() does not.
 7 years ago
Raphaël Droz f9c076a5c0 hook: ability to filter claim and derived user data (#84) 7 years ago
Raphaël Droz 6263bee23b google provider: do not attempt to use their not-compliant /revoke endpoint (#83) 7 years ago
Raphaël Droz 58c8b7ac9a disconnect hook: get user meta from information provided by filter parameters (#82) 7 years ago
Raphaël Droz d0b79313c2 fixed a notice when cookie does not contain expected redirect_url (#80) 7 years ago
Raphaël Droz 756c3c05a1 Translit names' special characters (#73) 
When nickname is generated from a full name, intent to translit them to ascii instead of stripping special characters.
 7 years ago
Antti Leppä 56bd5718e6 Feature #68 state time limit option (#69) 
* Added an option for state time limit on the settings page
 7 years ago
Jonathan Daggerhart a99280600a removed generic wp filter used for request timeout 7 years ago
Jonathan Daggerhart 326efbb416 prefixing generic classes with oidcg comment class names. adjusting autoloading to look for the standardized prefix. 7 years ago
PJ Eby b14554e8fe WP still supports PHP 5.2.4 :( 7 years ago
PJ Eby 662e9fb25b Track refresh token expiration (fixes #51) 7 years ago
PJ Eby caf1324499 Defer logouts to after all WP plugins initialize 7 years ago
PJ Eby 134d0116b8 Drop unnecessary user_meta keys 7 years ago
PJ Eby 7879835b49 Store refresh token in sessions, instead of a cookie 7 years ago
Sven van Hal 3869aa0fde
Terminate authentication_request_callback() after execution 7 years ago
Jonathan Daggerhart 08af84a851 readme and changelog updates. minor whitespace update. 7 years ago
Jonathan Daggerhart 3683cd3286 Merge pull request #42 from daggerhart/redirect-on-logout-as-setting 
New setting to determine if users should be redirected when session expires.
 7 years ago
Jonathan Daggerhart c73d9f6956 new setting allows administrator to determine if users should be redirected when their acces token expires. 7 years ago
skidos 059d672de2 Update openid-connect-generic-client-wrapper.php 
Add id_token_hint to end session logout redirect url 
http://openid.net/specs/openid-connect-session-1_0.html#RPLogout
 7 years ago
Robbie Paul 69a431793f Authentication URL can be modified 
Some OpenID Connect providers offer additional functionality by adding
query params to the authentication URL

For example with Azure Active Directory if you pass in
`&domain_hint=REALM` you can customise the way the login screen looks
with your corporate logo etc
 8 years ago
Robbie Paul 82162ec753 Escape the error message 
* This commit prevents a possible reflected XSS
 8 years ago
Robbie Paul 672d7292e2 Include wp_login action after auth cookie is set 
* Many plugins will hook in to this action, it should be at the end of any
  WordPress login flow
* See: https://core.trac.wordpress.org/browser/tags/4.7.3/src/wp-includes/user.php#L104
 8 years ago
Jonathan Daggerhart 61c549189c adding port to the request headers per issue #30 8 years ago
Jonathan Daggerhart 14133138a7 some method annotation corrections, and minor settings page typoes 8 years ago