Isekai-Project
/
isekai-openid-connect-generic
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
61 Commits
1 Branch
0 Tags
1.4 MiB
isekai
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c377e50cfa'
${ noResults }
Commit Graph

61 Commits (c377e50cfa1f9f9511afed2fad310a64cea6bb2d)
 

Author SHA1 Message Date
Raif Atef c377e50cfa In case of an error redirect and auto sso, keep the openid connect button and hide the login form. 8 years ago
Jonathan Daggerhart fede005f1f fix autoloader for diff environments, use wp_remote_post instead of ‘get’, and move cookie setting to hook init 8 years ago
Jonathan Daggerhart bf60b37f7e Merge pull request #22 from rwasef1830/handle_optional_refresh_token 
If IdP doesn't issue a refresh token, expire the session when the access token expires
 8 years ago
Raif Atef 38f78cc274 If IdP doesn't issue a refresh token, expire the session when the access token expires. 8 years ago
Jonathan Daggerhart 2655668089 Merge pull request #20 from rwasef1830/fix_redirect_to_origin_for_error_redirect 
Working to fix "redirect to origin" for error redirect
 8 years ago
Raif Atef 2ff33dba41 Move redirect cookie set earlier to save origin on error redirect and clear it during the redirect. 8 years ago
Robert Staddon 954b72848f Merge pull request #18 from rwasef1830/refresh_token_support 
Refresh tokens when needed instead of logging out when access_token expires
 8 years ago
Raif Atef a47f6d2bfc Refresh tokens when needed instead of logging out when access_token expires. 
- refresh_token + access_token expiry is sent via encrypted cookie to the browser.
- If cookie is missing or invalid, user is logged out.
- If last access token expired, use refresh token to fetch a new one and send a new cookie.
- If token refresh fails, user is logged out.
- Cookie encryption is with per-user random key stored in user meta.
- Encryption and key generation done using https://github.com/defuse/php-encryption
- Updated autoloader function to support loading namespaced classes.
 8 years ago
Robert Staddon 29c223c606 Merge pull request #17 from daggerhart/master 
Make token_type check in validate_token_response case-insensitive (Fixes issue #15).
 8 years ago
Robert Staddon 5d0ad04123 Merge pull request #16 from rwasef1830/token_type_case_insensitive 
Fix issue #15
 8 years ago
Raif Atef d8a043a6c7 Make token_type check in validate_token_response case-insensitive (Fixes issue #15). 8 years ago
Robert Staddon f2d2a8083b Merge pull request #10 from wgengarelly/master 
Added hook for existing user login allowing others to take action using updated claims
 9 years ago
wgengarelly 257216e148 Added [openid-connect-generic-update-user-using-current-claim] action hook allowing other plugins/themes 
to take action using the fresh claims received when an existing user logs in.
 9 years ago
Robert Staddon 1c471f84ed Merge pull request #9 from wgengarelly/master 
Send access token in the Authorization header when requesting user info
 9 years ago
wgengarelly 08d9f58d0d When requesting userinfo, send the access token using the Authorization header field as recommended in section 5.3.1 of the specs. 9 years ago
Robert Staddon 1002943a22 Merge pull request #8 from robertstaddon/master 
Allow users to login with WP account after using OpenID Connect
 9 years ago
Robert Staddon 960f475aad Update readme and version numbers for 3.0.6 9 years ago
Robert Staddon db32baa60e Allow users to login with WP account after using OpenID Connect 
Resolve a bug that prevented users from logging in with their WordPress
credentials after having logged in via OpenID Connect.
 9 years ago
Robert Staddon 326a2cd213 Merge remote-tracking branch 'refs/remotes/daggerhart/master' 9 years ago
Robert Staddon e2ab1b18d8 Merge pull request #6 from robertstaddon/master 
Add OpenID Connect button shortcode for insertion on any login form
 9 years ago
Robert Staddon f5c5ff8908 Add an action hook before the redirect 9 years ago
Robert Staddon 74153ec363 Support "redirect_to" parameter on login page 9 years ago
Robert Staddon 6cd6cc126a Record the URL of the current page when creating a login button 9 years ago
Robert Staddon 398612eaf1 Redirect to origin page instead of home page if setting enabled 
To know the origin page URL, read the value of a cookie that was set
when the button was created.
 9 years ago
Robert Staddon 6b5d6a9782 Add "Redirect Back to Origin Page" setting 
This setting would override the default action of redirecting the user
to the home page after a successful login and instead redirect the user
back to the page on which they clicked the OpenID Connect login button.
This would cause the login process to proceed in a traditional WordPress
fashion.
 9 years ago
Robert Staddon 669e3b8030 Add shortcode for login button 
[openid_connect_generic_login_button]
 9 years ago
Robert Staddon 8852c9d52e Increment version and update readme 9 years ago
Robert Staddon 65d4115145 Merge remote-tracking branch 'refs/remotes/origin/master' into daggerhart/master 9 years ago
Robert Staddon 66ee62b399 Merge remote-tracking branch 'refs/remotes/daggerhart/master' 9 years ago
Jonathan Daggerhart b737eac518 Merge pull request #5 from robertstaddon/master 
Allow users with existing WordPress accounts to log in
 9 years ago
Robert Staddon 9371b8132f Only link existing users if the setting is enabled 9 years ago
Robert Staddon 494cb43c49 Only link existing user if the setting is enabled 9 years ago
Robert Staddon 3777f930ec Add setting to Link Existing Users 
Add a setting to allow the site admin to decide how to handle the OpenID
Connect interaction with existing WordPress users.
 9 years ago
Robert Staddon 1de016485b Allow users with existing WordPress accounts to sign in 
An error occurs if a user with an existing WordPress account tries to
sign in using OpenID Connect. This patch fixes this problem by adding
the OpenID Connect meta data to the existing user's account after
successful authorization.
 9 years ago
daggerhart 7905bfdd12 incrementing version, updating readmes 9 years ago
daggerhart 94dd945843 fixing desired_username variable typo 9 years ago
daggerhart 6715eb2baf using wp's is_ssl() function for setcookie()'s secure parameter 9 years ago
daggerhart 4db956c119 bug: wrong variable as error data 9 years ago
Jonathan Daggerhart e6da3154a4 incrementing version 3.0.2 9 years ago
Jonathan Daggerhart 43a5d7110e allow for very-granular default settings so that updates can make use of default values 9 years ago
Jonathan Daggerhart ada93ba4f3 Added setting for http_response_timeout 9 years ago
Jonathan Daggerhart d0ceb60a37 settings upgrade to follow refactoring 9 years ago
Jonathan Daggerhart 822c2befd3 typo in hook name 9 years ago
Jonathan Daggerhart a0b882743b better user check in logs table 9 years ago
Jonathan Daggerhart af0bbe6bbe updating version number and readme. prepared upgrade flow 9 years ago
Jonathan Daggerhart 9b2dd29659 Method comments, and unique errors 9 years ago
Jonathan Daggerhart c646078421 refactoring some internal settings for clarity 9 years ago
Jonathan Daggerhart 2e3167fa20 major refactor to separate responsibility 9 years ago
Jonathan Daggerhart 0ddb501a55 whitespace- switching to sweet-sweet tabs 9 years ago
Jonathan Daggerhart 782e674def first attempt at logging. needs a big refactor some day 9 years ago