跳到內容
  • 登入
  • 註冊
WordPress.org

Hong Kong 香港中文

  • 佈景主題
  • 外掛
  • News
  • Support
  • About
  • 重要通知
  • WordPress 常見問題
  • 團隊
  • 取得 WordPress
取得 WordPress

外掛

  • 我的收藏
  • Beta測試
  • 開發者

這個外掛並未在最新的 3 個 WordPress 主要版本上進行測試。開發者可能不再對這個外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。

下載

OpenID Connect Generic Client

由daggerhart
  • 詳情
  • 評價
  • 安裝
  • 開發
支援

描述

This plugin allows to authenticate users against OpenID Connect OAuth2 API with Authorization Code Flow.
Once installed, it can be configured to automatically authenticate users (SSO), or provide a “Login with OpenID Connect”
button on the login form. After consent has been obtained, an existing user is automatically logged into WordPress, while
new users are created in WordPress database.

Much of the documentation can be found on the Settings > OpenID Connect Generic dashboard page.

Please submit issues to the Github repo: https://github.com/daggerhart/openid-connect-generic

安裝

  1. Upload to the /wp-content/plugins/ directory
  2. Activate the plugin
  3. Visit Settings > OpenID Connect and configure to meet your needs

常見問題

What is the client’s Redirect URI?

Most OAuth2 servers will require whitelisting a set of redirect URIs for security purposes. The Redirect URI provided
by this client is like so: https://example.com/wp-admin/admin-ajax.php?action=openid-connect-authorize

Replace example.com with your domain name and path to WordPress.

Can I change the client’s Redirect URI?

Some OAuth2 servers do not allow for a client redirect URI to contain a query string. The default URI provided by
this module leverages WordPress’s admin-ajax.php endpoint as an easy way to provide a route that does not include
HTML, but this will naturally involve a query string. Fortunately, this plugin provides a setting that will make use of
an alternate redirect URI that does not include a query string.

On the settings page for this plugin (Dashboard > Settings > OpenID Connect Generic) there is a checkbox for
Alternate Redirect URI. When checked, the plugin will use the Redirect URI
https://example.com/openid-connect-authorize.

評價

Best Openid client plugin by far.

Xavi Ivars 2023年5月27日
Every other plugin is simply a trap to get you paying a premium version. This one simply works as expected, with no bloatware. 🙂

The best there is, lightweight and easy to use

V.E.L 2023年4月2日
Been trying all other OpenID plugins, ended up uninstalling them, premium issues, bloatware, etc. Tried this once only, now i'm using it on all my Wordpress sites. thanks a lot! I just hope it's maintained.

Works

kumitterer 2023年2月18日
I tried a couple of other OIDC/OAuth2 client plugins and this is the only one that Just Works™ out of the box. Perfect.

This deserves more!

backpackingseries 2022年8月21日
I am not sure why more folks in the community are not opting for OpenID and when they do, this plugin will make it super easy - just got my first site's auth flow hosted on AWS Cognito! OpenID Connect Generic Client is hyper focused on doing one thing and does it really well - enabling WordPress integration with your preferred OpenID provider. While you may need a few days to get familiar with concepts of OpenID, etc (i.e. if you are not already), you would get all the answers via their active support on Github. As others have said, it's a great plugin right here that I hope more people in the WP community find and use.

Easy to expand on and use

mme 2021年10月16日
This plugin has allowed us to have one login for all sites using their work accounts.

Perfect

cyrillbolliger 2021年9月3日
Thanks for this awesome plugin. Thanks to the filter openid-connect-generic-user-creation-test we were even able to automatically merge existing wordpress users with existing users of our SSO system without allowing the other SSO users to be able to create a wordpress account.
閱讀全部16個評價

貢獻者及開發者

“OpenID Connect Generic Client” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

貢獻者
  • Jonathan Daggerhart
  • Tim Nolte

OpenID Connect Generic Client 外掛目前已有 2 個本地化語言版本。 感謝所有譯者為這個外掛做出的貢獻。

將 OpenID Connect Generic Client 外掛本地化為台灣繁體中文版。

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄。

修改日誌

3.9.1

  • Improvement: @timnolte – Refactors Composer setup and GitHub Actions.
  • Improvement: @timnolte – Bumps WordPress tested version compatibility.

3.9.0

  • Feature: @matchaxnb – Added support for additional configuration constants.
  • Feature: @schanzen – Added support for agregated claims.
  • Fix: @rkcreation – Fixed access token not updating user metadata after login.
  • Fix: @danc1248 – Fixed user creation issue on Multisite Networks.
  • Feature: @RobjS – Added plugin singleton to support for more developer customization.
  • Feature: @jkouris – Added action hook to allow custom handling of session expiration.
  • Fix: @tommcc – Fixed admin CSS loading only on the plugin settings screen.
  • Feature: @rkcreation – Added method to refresh the user claim.
  • Feature: @Glowsome – Added acr_values support & verification checks that it when defined in options is honored.
  • Fix: @timnolte – Fixed regression which caused improper fallback on missing claims.
  • Fix: @slykar – Fixed missing query string handling in redirect URL.
  • Fix: @timnolte – Fixed issue with some user linking and user creation handling.
  • Improvement: @timnolte – Fixed plugin settings typos and screen formatting.
  • Security: @timnolte – Updated build tooling security vulnerabilities.
  • Improvement: @timnolte – Changed build tooling scripts.

3.8.5

  • Fix: @timnolte – Fixed missing URL request validation before use & ensure proper current page URL is setup for Redirect Back.
  • Fix: @timnolte – Fixed Redirect URL Logic to Handle Sub-directory Installs.
  • Fix: @timnolte – Fixed issue with redirecting user back when the openid_connect_generic_auth_url shortcode is used.

3.8.4

  • Fix: @timnolte – Fixed invalid State object access for redirection handling.
  • Improvement: @timnolte – Fixed local wp-env Docker development environment.
  • Improvement: @timnolte – Fixed Composer scripts for linting and static analysis.

3.8.3

  • Fix: @timnolte – Fixed problems with proper redirect handling.
  • Improvement: @timnolte – Changes redirect handling to use State instead of cookies.
  • Improvement: @timnolte – Refactored additional code to meet coding standards.

3.8.2

  • Fix: @timnolte – Fixed reported XSS vulnerability on WordPress login screen.

3.8.1

  • Fix: @timnolte – Prevent SSO redirect on password protected posts.
  • Fix: @timnolte – CI/CD build issues.
  • Fix: @timnolte – Invalid redirect handling on logout for Auto Login setting.

3.8.0

  • Feature: @timnolte – Ability to use 6 new constants for setting client configuration instead of storing in the DB.
  • Improvement: @timnolte – Plugin development & contribution updates.
  • Improvement: @timnolte – Refactored to meet WordPress coding standards.
  • Improvement: @timnolte – Refactored to provide localization.

See the previous changelogs here

其它

  • 版本:3.9.1
  • 最後更新:1 年之前
  • 運作中的安裝:4,000+
  • WordPress Version: 4.9 or higher
  • 已測試到版本:6.0.5
  • PHP Version: 7.2 or higher
  • 語言:

    English (US)、French (France)、及 German.

    翻譯成你的語言

  • 標籤:
    appsloginoauth2openidconnectsecurity
  • 進階顯示

評分

顯示全部
  • 5星 16
  • 4星 0
  • 3星 0
  • 2星 0
  • 1星 0
Log in to submit a review.

貢獻者

  • Jonathan Daggerhart
  • Tim Nolte

支援

最近兩個月解決了的問題:

1個中的1個

檢視支援論壇

捐贈

想要支援這個外掛的發展嗎?

贊助這個外掛

  • 關於我們
  • 最新消息
  • 寄存
  • 贊助基金會
  • Swag
  • 技術支援
  • 開發者資源
  • 共同參與
  • Learn
  • 展示網站
  • 外掛
  • 佈景主題
  • 區塊版面配置
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • 隱私權
  • Public Code
WordPress.org
WordPress.org

Hong Kong 香港中文

  • 訪問我們的 Facebook 專頁
  • 訪問我們的 Twitter 帳戶
  • Visit our Instagram account
  • Visit our LinkedIn account
  • Visit our YouTube channel
代碼就是詩歌。