[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fTqdFyh8ZePESC8j2oh8CreqewCr4IAZqQIEDJUMFnis":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":53,"analysis":154,"fingerprints":314},"ider-login","IDer Login for WordPress","2.1","ider","https:\u002F\u002Fprofiles.wordpress.org\u002Fider\u002F","\u003Cp>With this plugin you can provide login and registration process using the IDer Service.\u003Cbr \u002F>\nAn additional “Login with IDer” button will appears along the regular one.\u003C\u002Fp>\n\u003Cp>How it works?\u003Cbr \u002F>\n1. First of all you need to create a profile in the \u003Ca href=\"http:\u002F\u002Fider.com\u002F\" title=\"IDer website\" rel=\"nofollow ugc\">IDer\u003C\u002Fa> website\u003Cbr \u002F>\n2. Clicking the button a redirect to the IDer server will display a QR Code\u003Cbr \u002F>\n3. To scan it you need to download the free IDer App from the App Store or Google Play depending which cell phone you own.\u003Cbr \u002F>\n   Or just scan the QR code with any QR Code reader and you will be redirect to the download page.\u003Cbr \u002F>\n   Provide few infos and you are ready to scan the QR code\u003Cbr \u002F>\n4. After that the IDer App will prompt you for the missing data required to complete the login\u002Fregistration process.\u003Cbr \u002F>\n   Confirming the data your browser will automatically log you in and show you which info the website saved.\u003C\u002Fp>\n","This plugin provides functionality to register and connect to your WordPress via IDer Service.",90,1929,100,3,"2024-06-03T02:43:00.000Z","6.5.8","4.6","",[7,20,21,22,23],"login","openid","qrcode","sso","https:\u002F\u002Fwww.ider.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fider-login.2.1.zip",71,1,"2024-12-13 16:01:56","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2024-11888","ider-login-for-wordpress-authenticated-contributor-stored-cross-site-scripting","IDer Login for WordPress \u003C= 2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting","The IDer Login for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ider_login_button' shortcode in all versions up to, and including, 2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This affects version 2.1, but was also patched in version 2.1 - a new version was not released with the patch.",null,"\u003C=2.1","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-05-07 13:58:07",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fde602cf8-cc02-4459-aa23-5d8236048bca?source=api-prod",{"slug":7,"display_name":46,"profile_url":8,"plugin_count":47,"total_installs":48,"avg_security_score":49,"avg_patch_time_days":50,"trust_score":51,"computed_at":52},"MetaSlider",60,714200,92,522,73,"2026-04-04T14:40:28.754Z",[54,79,98,116,133],{"slug":55,"name":56,"version":57,"author":58,"author_profile":59,"description":60,"short_description":61,"active_installs":62,"downloaded":63,"rating":64,"num_ratings":65,"last_updated":66,"tested_up_to":67,"requires_at_least":68,"requires_php":69,"tags":70,"homepage":73,"download_link":74,"security_score":75,"vuln_count":76,"unpatched_count":77,"last_vuln_date":78,"fetched_at":29},"miniorange-login-with-eve-online-google-facebook","OAuth Single Sign On – SSO (OAuth Client)","6.26.17","miniOrange","https:\u002F\u002Fprofiles.wordpress.org\u002Fcyberlord92\u002F","\u003Cp>\u003Cstrong>WordPress Single Sign-On\u003C\u002Fstrong> (WordPress SSO) with our \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-sso?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_1\" rel=\"nofollow ugc\">OAuth & OpenID Connect plugin\u003C\u002Fa>\u003C\u002Fstrong> allows unlimited login\u002FSSO (Single Sign On) with your \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fazure-ad-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_2\" rel=\"nofollow ugc\">Azure AD\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fazure-b2c-ad-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_3\" rel=\"nofollow ugc\">Azure B2C\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fgoogle-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_4\" rel=\"nofollow ugc\">G Suite \u002F Google Apps \u002F Google Workspace\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fclasslink-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_12\" rel=\"nofollow ugc\">ClassLink\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fclever-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_11\" rel=\"nofollow ugc\">Clever\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foffice-365-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_5\" rel=\"nofollow ugc\">Office 365\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Faws-cognito-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_6\" rel=\"nofollow ugc\">AWS Cognito\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fdiscord-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_7\" rel=\"nofollow ugc\">Discord\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fping-federate-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">PingFederate\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsalesforce-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_10\" rel=\"nofollow ugc\">Salesforce\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fkeycloak-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_9\" rel=\"nofollow ugc\">Keycloak\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fokta-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_8\" rel=\"nofollow ugc\">Okta\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fidentityserver4-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Identity Server\u003C\u002Fa>\u003C\u002Fstrong>, \u003Cstrong>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Finvision-community-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Invision Community\u003C\u002Fa>\u003C\u002Fstrong> or other custom OAuth 2.0 and OpenID Connect providers. WordPress SSO plugin supports Single Sign On (SSO) with many OAuth 2.0, OAuth 2.1, OAuth 1.0 & OpenID Connect (OIDC) 1.0 providers.\u003C\u002Fp>\n\u003Cp>An unlimited number of users can perform Single Sign-On with OAuth\u002FOIDC supported Identity Providers on WordPress using SSO capabilities.\u003C\u002Fp>\n\u003Cp>|\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-sso#key-features\" rel=\"nofollow ugc\"> Features \u003C\u002Fa>| \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-single-sign-on-sso-with-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_13\" rel=\"nofollow ugc\"> OAuth \u002F OpenID Providers Setup guides \u003C\u002Fa>|\u003Ca href=\"https:\u002F\u002Fyoutu.be\u002FVff0E0KxM3k\" rel=\"nofollow ugc\"> Videos \u003C\u002Fa>|\u003C\u002Fp>\n\u003Ch4>POPULAR OAUTH AND OPENID CONNECT (OIDC) PROVIDERS SINGLE SIGN-ON\u003C\u002Fh4>\n\u003Cp>The following providers support OAuth 2.0\u002FOpenID Connect SSO for WordPress login.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Faws-cognito-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_6\" rel=\"nofollow ugc\">AWS Cognito SSO | Login with AWS Cognito\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foffice-365-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_5\" rel=\"nofollow ugc\">Office 365 SSO | Login with Office 365\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fazure-b2c-ad-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_3\" rel=\"nofollow ugc\">Azure B2C SSO | Login with Azure B2C\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fazure-ad-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Azure AD SSO | Login with Azure AD\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fadfs-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">ADFS SSO | Login with ADFS\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fauth0-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Auth0 SSO | Login with Auth0\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fokta-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_8\" rel=\"nofollow ugc\">OKTA SSO | Login with OKTA\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fclasslink-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_12\" rel=\"nofollow ugc\">ClassLink SSO | Login with ClassLink\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fkeycloak-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_9\" rel=\"nofollow ugc\">Keycloak SSO | Login with Keycloak\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fclever-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_11\" rel=\"nofollow ugc\">Clever SSO | Login with Clever\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fgoogle-classroom-single-sign-on-sso\" rel=\"nofollow ugc\">Google Classroom SSO | Login with Google Classroom\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsalesforce-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_10\" rel=\"nofollow ugc\">Salesforce SSO | Login with Salesforce\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-oauth-openid-connect-single-sign-on-sso-using-criipto?utm_source=Readme&utm_medium=Readme&utm_campaign=Readme&utm_id=wpor_15\" rel=\"nofollow ugc\">Criipto SSO | Login with Criipto\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fgoogle-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_4\" rel=\"nofollow ugc\">G Suite \u002F Google Apps SSO | Login with Google\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fping-federate-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Ping Federate SSO ( Ping \u002F Ping Identity ) | Login with Ping Federate\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fidentityserver4-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">IdentityServer4 SSO | Login with IdentityServer4\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fidentityserver3-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">WordPress IdentityServer3 SSO | Login with IdentityServer3\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fdiscord-single-sign-on-wordpress-sso-oauth-openid-connect?utm_source=wordpress_readme&utm_medium=marketplace&utm_campaign=readme_traffic&utm_id=wpor_7\" rel=\"nofollow ugc\">Discord SSO | Login with Discord\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fonelogin-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">OneLogin SSO | Login with OneLogin\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fswiss-rx-login-single-sign-on-for-wordpress-using-oauth\" rel=\"nofollow ugc\">Swiss-RX-Login SSO ( Swiss RX Login ) | Login with Swiss-RX-Login\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fneon-crm-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Neon CRM SSO | Login with Neon CRM\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fimis-oauth-and-openid-connect-single-sign-on-sso\" rel=\"nofollow ugc\">iMIS SSO | Login with iMIS\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsignicat-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Signicat SSO | User Verification with Signicat\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fid-me-oauth-and-openid-connect-single-sign-on-sso-login\" rel=\"nofollow ugc\">ID.me SSO | Login with ID.me\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fcanvas-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Canvas SSO | Login with Canvas\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-setup-single-sign-on-between-two-wordpress-sites\" rel=\"nofollow ugc\">WordPress SSO | Login with WordPress\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwso2-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">WSO2 SSO | Login with WSO2\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fopenathens-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">OpenAthens SSO | Login with OpenAthens\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fhp-single-sign-on-sso-oauth-and-openid-connect\" rel=\"nofollow ugc\">HP SSO | Login with HP\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fservicenow-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Servicenow SSO | Login with Servicenow\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Finvision-community-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Invision Community SSO | Login with Invision Community\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fforgerock-open-am-single-sign-on-for-wordpress-using-oauth\" rel=\"nofollow ugc\">OpenAM \u002F Forgerock SSO | Login with Forgerock\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fnextcloud-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">NextCloud SSO | Login with NextCloud\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Forcid-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Orcid SSO | Login with Orcid\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fmemberclicks-oauth-and-openid-connect-single-sign-on-sso-login\" rel=\"nofollow ugc\">Memberclicks SSO | Login with MemberClicks\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsheepcrm-oauth-and-openid-connect-single-sign-on-sso-login\" rel=\"nofollow ugc\">SheepCRM SSO | Login with SheepCRM\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Famazon-oauth-and-openid-connect-single-sign-on-sso-login\" rel=\"nofollow ugc\">Amazon SSO | Login with Amazon\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fslack-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Slack SSO | Login with Slack\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fyahoo-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Yahoo SSO | Login with Yahoo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Flinkedin-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">LinkedIn SSO | Login with LinkedIn\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fgitlab-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Gitlab SSO | Login with Gitlab\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fgithub-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">GitHub SSO | Login with GitHub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Flogin-with-apple-app-using-wordpress-oauth-client\" rel=\"nofollow ugc\">Apple SSO | Login with Apple\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstrava-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Strava SSO | Login with Strava\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fblizzard-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Blizzard \u002F Battle.net SSO | Login with Battle.net\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Feve-online-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Eve Online SSO | Login with Eve Online\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fhubspot-single-sign-on-for-wordpress-using-oauth\" rel=\"nofollow ugc\">Hubspot SSO | Login with Hubspot\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Ftwitter-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">X(Twitter) SSO | Login with Twitter\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fzoho-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">Zoho SSO | Login with Zoho\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fidaptive-single-sign-on-for-wordpress-using-oauth\" rel=\"nofollow ugc\">Idaptive SSO | CyberArk SSO | Login with CyberArk\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwhmcs-single-sign-on-wordpress-sso-oauth-openid-connect\" rel=\"nofollow ugc\">WHMCS SSO | Login with WHMCS\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Ffranceconnect-single-sign-on-sso-wordpress-oauth\" rel=\"nofollow ugc\">France Connect SSO | Login with France Connect\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>OTHER OAUTH AND OPENID CONNECT (OIDC) PROVIDERS WE SUPPORT FOR WORDPRESS SINGLE SIGN-ON (SSO)\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Other OAuth 2.0 and OpenId Connect ( OIDC ) 1.0 servers WordPress Single Sign-On ( SSO ) plugin support includes Office 365, AWS Cognito, Microsoft Dynamic CRM 365, Auth0, Google Workspace, Egnyte, Autodesk, Zendesk, Foursquare, Harvest, Mailchimp, Bitrix24, Spotify, Vkontakte, Huddle, Reddit, Strava, Ustream, Yammer, RunKeeper, Instagram, SoundCloud, Pocket, PayPal, Pinterest, Vimeo, Nest, Heroku, DropBox, Buffer, Box, Hubic, Deezer, DeviantArt, Delicious, Dailymotion, Bitly, Mondo, Netatmo, Amazon, FitBit, Clever, Sqaure Connect, Windows, Microsoft Live, Dash 10, Github, Invision Community, Blizzard, authlete, Keycloak, Procore, Eve Online, Laravel Passport, Nextcloud, Renren, Soundcloud, OpenAM \u002F Forgerock, IdentityServer, ORCID, Diaspora, Timezynk, Idaptive CyberArk, Duo Security, Rippling, Crowd, Janrain, Numina Solutions, Ubuntu Single Sign-On, Apple, Ipsilon, Zoho, Stripe, Itthinx, Fellowshipone, Miro, Naver, Clever, Coil, Parallel Markets, VATSIM, Liferay, Fatsecret, Intuit, iMIS, ORY Hydra, FusionAuth, Kakao, ID.me, MoxiWorks, HR Answerlink \u002F Support center, ClassLink, Google Classroom, MemberClicks, BankID, CSI, Splitwise, Infusionsoft, Hubspot, Join It, MyAcademicID, MemberConnex, Novi, Coassemble, Servicenow, IBM APP ID, Nimble AMS, iSpring LMS, Neon CRM, EPIC, IPB forum, Wiziq, Sprinklr, Elvanto, ABSORB LMS, Wechat, Weibo, Shibboleth, Centrify, FranceConnect, Church Online, Bigcommerce, Sewobe, PracticePanther, SubscribeStar, Eventbrite, Medi-Access, Lichess, CILogon, Servicem8, Gigya, PhantAuth, XING, Simplecast, SURF, MediaWiki, UNA, NetSuite, Oracle IDCS, Globus, Square, SimpleSAMLphp, Basecamp, HP, SHELL, Otoy, Steam, Webflow, Simplepass, Feide, SingPass, Asmodee, SwissID, Miro, Alkami, Switch, Citrix, Schoology, iGov, LearnWorlds, France Connect, DID, Blackboard, UAEPass, Polar, CodeB, Vincere CRM, F5, TicketMaster, BizLibrary, Skolon, Rapattoni, PowerSchool, Minecraft, NETS, Joomla, Drupal, ASP.NET, CA Siteminder, Outseta, XUMM, ID Austria, Ubisecure, Gravitee.io, SheepCRM, Wahoo, WeatherFlow Tempest, OneWelcome \u002F iWelcome, Xbox, Trovo, Cornerstone, Criipto, bare.id, Discourse, Authentik, Sailpoint, Coil, Asset Bank, GrowthZone, Vipps, Authorizer, Deviant Art, Miracl, Teamsnap, Authelia, Django, IDsampa, Cvent, SERMO, Pixelfed, Finys, Login.gov, Fastcase, Acuity, ARPA, Zitadel, Yeti, myID.be, memberful,Open edX \u002F eduNEXT, Teachable, Mindbody etc. This comprehensive SSO support facilitates seamless integration and secure authentication across a wide range of platforms.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress Single Sign-On ( Login to WordPress )\u003C\u002Fh4>\n\u003Cp>WordPress Single Sign-On allows users to log into any website\u002Fapplication using the single set of credentials of another app\u002Fsite through the SSO feature.\u003Cbr \u002F>\n\u003Cstrong>Example:\u003C\u002Fstrong>Let’s say you have all your users\u002Fcustomers\u002Fmembers\u002Femployees stored on a site, called ‘site A’ and you want all of them to register\u002Flogin using SSO to your WordPress site called ‘site B’. In this scenario, you can register\u002Flogin all your users of site A into site B using the login credentials\u002Faccount of site A. This is called Single Sign-On, and it simplifies user management.\u003C\u002Fp>\n\u003Ch4>WordPress Single Sign-On supported Third-Party Application \u002F OAuth OpenID Provider\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>The Third-Party Application can be anything where user accounts are stored or a site\u002Fapplication where you want to store\u002Fmigrate all the users. It can be your social login app, WordPress site, OAuth provider, OpenID provider, custom provider or any database.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Identity providers such as OAuth Identity Provider, OAuth Server, OpenID Connect Server, OpenID Connect Provider, and OIDC Application support Single Sign-On. SSO integration ensures secure user authentication and management across these platforms.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>OAuth and OpenID Connect are token-based Single Sign-On protocols that allow an end user’s account information to be used by third-party services without exposing the user’s password.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WordPress Single Sign-On USE CASES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress to WordPress SSO\u003C\u002Fstrong>: Single Sign On to one\u002Fmultiple WordPress site (single\u002Fmultisite) using User Credentials stored on another WordPress site with WordPress SSO plugin.\u003C\u002Fli>\n\u003Cli>Single Sign On to one\u002Fmultiple WordPress site (single \u002F multisite) using User Credentials stored on your OAuth \u002F OpenID Connect (OIDC) application.\u003C\u002Fli>\n\u003Cli>Single Sign On into WordPress using existing User stores (Active Directory\u002FDatabase)\u003C\u002Fli>\n\u003Cli>SSO and extended plugin functionality using tokens (access_token \u002F JWT token \u002F id_token) such as secure API calls using third-party token\u003C\u002Fli>\n\u003Cli>Others: eCommerce Single Sign On\u002FLogin, Single sign on for Educational and Healthcare paltforms\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Microsoft SSO\u002FAzure SSO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>This WordPress Single Sign-On (OAuth \u002F OpenID Connect SSO) plugin supports SSO with Microsoft apps like Azure AD, Azure B2C, Office 365, Microsoft Dynamics CRM, Microsoft Teams, and Windows Live. It also supports policy-based login redirections, including sign-up, sign-in, forgot password, and custom policies, enhancing the login experience across Microsoft services.\u003C\u002Fp>\n\u003Cp>WordPress integrates with Microsoft services like Azure AD, Azure B2C, and Office 365 for secure Single Sign-On across single-site and multisite networks (including subdomains). Users can perform single sign-on, map profile attributes, and manage role-based access across applications and tenants using SSO\u003C\u002Fp>\n\u003Cp>Apart from SSO, it also supports WordPress-Azure integrations and customizations, such as token-based calls to specific APIs and the Microsoft Graph API, enhancing the login experience\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cognito SSO\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The WordPress Single Sign-On plugin supports WordPress Login with AWS Cognito, Amazon, and WordPress using Cognito. It provides user profile syncing, role mapping, and token fetching from AWS Cognito for API calls. Customizations include integrating Cognito SDKs, syncing new registrations, logging in via the default WordPress form instead of Cognito’s SSO page, connecting to the Cognito User Pool, and configuring login redirections.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Discord SSO\u003C\u002Fstrong>\u003Cbr \u002F>\nThis WordPress Single Sign-On plugin enables Discord login into WordPress. It supports syncing user profiles from Discord to WordPress, mapping Discord roles to WordPress roles, mapping WordPress roles to Discord roles, and managing Discord role memberships based on WordPress purchases.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Keycloak SSO\u003C\u002Fstrong>\u003Cbr \u002F>\nThe WordPress Single Sign-On (OAuth \u002F OpenID Connect SSO) plugin works with Keycloak to enable SSO on your WordPress site. It also lets WordPress use Keycloak access tokens to call external services. In addition, the plugin supports role-based access control (RBAC), so you can map Keycloak roles to WordPress roles and capabilities.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Ping Federate SSO\u003C\u002Fstrong>\u003Cbr \u002F>\nOauth Single sign-on plugin enables Login to WordPress using PingFederate. It supports Single Sign-On  with authorized access to Ping REST APIs via access tokens or bearer tokens, ensuring seamless SSO integration and secure interactions with PingFederate.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Clever SSO\u003C\u002Fstrong>\u003Cbr \u002F>\nOauth Single sign-on plugin supports WordPress Login with Clever for users (teachers, students, admins) and integrates with LearnDash to sync lessons and assignments. It also provides SSO with other IDPs like ClassLink, Google Classroom, and Canvas, as well as any Identity Provider (SAML, OAuth, OpenID Connect, Active Directory, databases) via miniOrange IDP.\u003C\u002Fp>\n\u003Ch4>FREE VERSION FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress Single Sign-On OAuth & OpenID Connect Login supports unlimited SSO with any 3rd party OAuth & OpenID Connect server or custom OAuth & OpenID Connect server like AWS Cognito, Azure AD, Azure AD B2C, Office 365, Google Apps, etc.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Single Sign-On  Grant Support\u003C\u002Fstrong> – Standard OAuth2 Grant: Authorization Code\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto Create Users ( User Provisioning )\u003C\u002Fstrong> : After Single Sign On, a new user automatically gets created in WordPress\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Account Linking\u003C\u002Fstrong> : After SSO, if the user already exists in WordPress, then their profile gets updated. Else, a new WordPress User is created.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Attribute Mapping\u003C\u002Fstrong> : OAuth Login allows you to map your Identity Provider’s unique attribute with WordPress Username Attribute.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login Widget\u003C\u002Fstrong> : Use Widgets to integrate the Single Sign-On login on your WordPress site easily.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>OpenID Connect & OAuth Provider Support\u003C\u002Fstrong> : WordPress Single Sign On (OAuth Login) supports any OpenID Connect & OAuth Provider seamless Single Sign-On.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirect URL after Login\u003C\u002Fstrong> : WordPress Single Sign On (OAuth Login) automatically redirects the user after successful Single Sign-On login.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Logging\u003C\u002Fstrong> : If you run into issues, WordPress Single Sign On (OAuth Login) can be helpful to enable debug logging.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>PAID FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress Single Sign-On Grant Support\u003C\u002Fstrong>: Standard OAuth2 Grants including \u003Cstrong>Authorization Code\u003C\u002Fstrong>, \u003Cstrong>Implicit Grant\u003C\u002Fstrong>, \u003Cstrong>Password Grant\u003C\u002Fstrong>, \u003Cstrong>Refresh Token Grant\u003C\u002Fstrong>, \u003Cstrong>Client Credential Grant\u003C\u002Fstrong>, \u003Cstrong>authorization code grant with PKCE flow\u003C\u002Fstrong>, and \u003Cstrong>Hybrid Grant\u003C\u002Fstrong> (Customization Available)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto Register Users\u003C\u002Fstrong>: Automatic user registration after SSO if the user is not already registered with your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Attribute Mapping\u003C\u002Fstrong>: Ability to map WordPress user profile attributes, such as username, first name, last name, and email.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Advanced Role Mapping\u003C\u002Fstrong>: Assign roles to users based on defined rules through Single Sign-On.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Force Authentication \u002F Protect Complete Site\u003C\u002Fstrong>: Protect the entire website for public users and grant access only to authenticated users through Single Sign-on.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Attribute Mapping\u003C\u002Fstrong>: Map custom user attributes received from OAuth \u002F OpenID Connect providers to any WordPress user attribute for Single Sign-On.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multiple OAuth & OpenID Connect Provider Support\u003C\u002Fstrong>: Support for multiple SSO providers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Single Login button for Multiple Apps\u003C\u002Fstrong>: Provides a single login button for multiple providers.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extended OAuth API Support\u003C\u002Fstrong>: Extend OAuth \u002F OpenID Connect API support for enhanced Single Sign-On functionality.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Single Sign-On Login Reports\u003C\u002Fstrong>: Generate user login and registration reports based on the application used for SSO.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enable \u002F Disable WordPress Default Login\u003C\u002Fstrong>: Option to disable the default WordPress login form and use SSO instead.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>FrontChannel & BackChannel Single Logout Support\u003C\u002Fstrong>: Allows users to be logged out from WordPress as well as the IDP through Single Sign-On.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Third-Party Plugin Compatibility for Single Sign-On\u003C\u002Fstrong>: Compatible with WooCommerce and other third-party plugins for seamless Single Sign-On integration.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Add-on Support with Plugin\u003C\u002Fstrong>: Support for various add-ons including SCIM User Provisioning, Page & Post Restriction, BuddyPress Integration, Login Form Add-on, LearnDash Integration, Media Restriction, Attribute\u002FMembership-Based Redirection, SSO Session Management, Paid Membership Pro Integrator, WooCommerce Integrator, SSO Login Audit, Memberpress Integration, and Guest User Login.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>No SSL Restriction\u003C\u002Fstrong>: Allows SSO login without SSL or HTTPS-enabled site using Google credentials or any other app.\u003C\u002Fli>\n\u003C\u002Ful>\n","WordPress SSO (Single Sign On) with Azure, Azure B2C, Cognito, Okta, Classlink, Discord, Clever, Keycloak, OAuth & OpenID Providers [24\u002F7 SUPPORT].",7000,266899,98,315,"2025-12-15T05:56:00.000Z","6.9.4","3.0.1","7.0",[20,71,21,72,23],"oauth-2-0","single-sign-on","https:\u002F\u002Fwww.miniorange.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminiorange-login-with-eve-online-google-facebook.6.26.17.zip",82,10,0,"2026-02-05 18:30:28",{"slug":80,"name":81,"version":82,"author":58,"author_profile":59,"description":83,"short_description":84,"active_installs":85,"downloaded":86,"rating":64,"num_ratings":87,"last_updated":88,"tested_up_to":67,"requires_at_least":89,"requires_php":90,"tags":91,"homepage":73,"download_link":96,"security_score":64,"vuln_count":27,"unpatched_count":77,"last_vuln_date":97,"fetched_at":29},"miniorange-oauth-20-server","WP OAuth Server ( Login with WordPress )","6.1.3","\u003Cp>WP OAuth Server plugin turns your WordPress site into an OAuth Server, enabling Login with WordPress. It allows you to login into \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-configure-rocket-chat-oauth-client\" rel=\"nofollow ugc\">Rocket Chat\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-configure-invision-community-oauth-client\" rel=\"nofollow ugc\">Invision Community\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-setup-single-sign-on-between-two-wordpress-sites\" rel=\"nofollow ugc\">WordPress\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwww.miniorange.com\u002Fsingle-sign-on-(sso)-for-odoo\" rel=\"nofollow ugc\">Odoo\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-circle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">EasyGenerator\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-salesforce-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Salesforce\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fzapier-integration-with-wordpress-oauth-server\" rel=\"nofollow ugc\">Zapier\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-moodle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Moodle WordPress SSO\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-servicenow-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">ServiceNow\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-open-edx-edunext-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Edunext\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-wickr-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Wickr\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-freshworks-freshdesk-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Freshdesk\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-freshworks-freshdesk-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">FreshWorks\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-servicenow-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">ServiceNow\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fshinyproxy-single-sign-on-sso-with-wordpress-as-oauth-server\" rel=\"nofollow ugc\">ShinyProxy\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-knack-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Knack database\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-circle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Circle.so\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-tribe-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Tribe.so\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-tribe-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Tribe\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-mobilize-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Mobilize\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-nextcloud-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Nextcloud SSO\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-church-online-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Church Online\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\">iSpring LMS\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-academy-of-mine-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Academy of Mine\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\">BoardEffect\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Ftalentlms-sso-using-wordpress-as-openid-connect-server\" rel=\"nofollow ugc\">TalentLMS\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-single-sign-on-sso-for-laravel-using-wordpress-as-oauth-provider\" rel=\"nofollow ugc\">Laravel\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fpowerschool-sis-sso-using-wordpress-as-openid-connect-server\" rel=\"nofollow ugc\">PowerSchool\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fpowerschool-sis-sso-using-wordpress-as-openid-connect-server\" rel=\"nofollow ugc\">PowerSchool\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-openid-connect-single-sign-on-sso-into-joomla-using-wordpress\" rel=\"nofollow ugc\">Joomla\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-into-hubspot-using-wordpress\" rel=\"nofollow ugc\">HubSpot SSO\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-single-sign-on-sso-for-shopify-using-wordpress-as-identity-provider\" rel=\"nofollow ugc\">shopify sso integration\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fmerithub-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">MeritHub\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fbookstack-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Bookstack\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fpimcore-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Pimcore\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002F360learning-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">360 Learning\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Feventmobi-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">EventMobi\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsynology-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Synology\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fdrupal-wordpress-sso-integration-with-oauth-client-drupal-wordpress-login\" rel=\"nofollow ugc\">Drupal\u003C\u002Fa>, Piano Analytics, Zerotier, and any other OAuth 2.0 compliant applications using WordPress SSO credentials.\u003C\u002Fp>\n\u003Cp>| \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\">WordPress OAuth Server Setup Guides\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-api-documentation\" rel=\"nofollow ugc\">API Documentation\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-oauth-server#free-trial-oauth\" rel=\"nofollow ugc\">Demo \u002F Trial\u003C\u002Fa> |\u003C\u002Fp>\n\u003Cp>You can checkout the below video tutorial to know how to setup SSO with your OAuth\u002FOpenID Compliant Applications.\u003C\u002Fp>\n\u003Cp>\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002Fc6v-SqRhg8o?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\u003C\u002Fp>\n\u003Cp>Basically, the OAuth Server plugin allows users to login into applications that are OAuth 2.0 compliant, facilitating oauth server SSO using their WordPress login credentials. As it’s name suggests, it follows the OAuth 2.0 protocol. Along with that, it also supports OpenID Connect (OIDC), and JWT protocols.\u003C\u002Fp>\n\u003Cp>The primary goal of the OAuth Server plugin is to provide Single Sign-On Login with WordPress, so users do not need to remember a username and password for each application.\u003Cbr \u002F>\nUsing WordPress as OAuth Server, once Single Sign On is enabled, users do not need to store sensitive information to login into different applications.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Discovery URL\u003C\u002Fstrong>\u003Cbr \u002F>\nThe discovery url \u002F well-known endpoint can be used to get metadata about your Identity Server, essential for setting up oauth server SSO. It will return information about the OAuth\u002FOpenID endpoints, issuer URL, supported grant types, supported scopes, key material along with claims in the JSON format. These details can be used by the clients to create an OpenID server request, enhancing the WordPress SSO experience. The well known configuration URL is accessible via \u002F.well-known\u002Fopenid-configuration, in relation to the issuer URL.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>JWT Token Verification\u003C\u002Fstrong>\u003Cbr \u002F>\nJWT signing, which ensures the integrity of the tokens used during the WordPress SSO process, supports both symmetric and asymmetric algorithms provided by the OAuth Server. The plugin’s free version supports HS256, while the premium version supports RS256, enhancing security especially in scenarios involving HubSpot SSO and Nextcloud SSO.\u003C\u002Fp>\n\u003Cp>HS256, a symmetric signature algorithm, indicates that the signature is generated and verified using the same secret key. It is supported in the free version of the OAuth Server plugin, which is useful for basic OAuth Server SSO configurations.\u003C\u002Fp>\n\u003Cp>RS256, an asymmetric signature algorithm is different from a symmetric algorithm in that a pair of private and public keys is used to sign and validate the data respectively instead of a single secret key in an oauth server SSO setup.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Why RSA algorithm should be used?\u003C\u002Fstrong>\u003Cbr \u002F>\nThe use of a public and private key pair makes RS256 more secure in comparison to HS256 where the public key is shared and might be compromised whereas in RS256, even if you do not have the control over your client, your data remains secure as it is signed using a private key. The premium version of the OAuth Server plugin supports the RS256 algorithm.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Postman collection\u003C\u002Fstrong>\u003Cbr \u002F>\nPostman collection JSON is a file that can be used for testing the configuration of OAuth 2.0 flow in the WP OAuth Server plugin without configuring an external OAuth Client by generating the access token and the API call to the resource endpoint subsequently.\u003C\u002Fp>\n\u003Ch4>LIST OF POPULAR OAUTH CLIENTS SUPPORTED\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-configure-rocket-chat-oauth-client\" rel=\"nofollow ugc\"> Rocket.Chat \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-configure-invision-community-oauth-client\" rel=\"nofollow ugc\"> Invision Community (IPB Forum) \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.miniorange.com\u002Fsingle-sign-on-(sso)-for-odoo\" rel=\"nofollow ugc\"> Odoo \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fguide-to-setup-single-sign-on-between-two-wordpress-sites\" rel=\"nofollow ugc\"> WordPress SSO into other WordPress Sites \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-circle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> EasyGenerator \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-salesforce-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Salesforce \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fzapier-integration-with-wordpress-oauth-server\" rel=\"nofollow ugc\"> Zapier  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-moodle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Moodle  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-open-edx-edunext-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Edunext  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-wickr-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Wickr  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-freshworks-freshdesk-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Freshdesk  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-freshworks-freshdesk-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> FreshWorks  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-servicenow-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> ServiceNow  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-knack-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Knack database  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-circle-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Circle.so  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-tribe-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Tribe.so  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-mobilize-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Mobilize  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-nextcloud-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Nextcloud  \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\"> iSpring LMS \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-church-online-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Church Online \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-for-academy-of-mine-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\"> Academy of Mine \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\"> BoardEffect \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-single-sign-on-sso-for-laravel-using-wordpress-as-oauth-provider\" rel=\"nofollow ugc\">Laravel\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fpowerschool-sis-sso-using-wordpress-as-openid-connect-server\" rel=\"nofollow ugc\">PowerSchool\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-openid-connect-single-sign-on-sso-into-joomla-using-wordpress\" rel=\"nofollow ugc\">Joomla\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-into-hubspot-using-wordpress\" rel=\"nofollow ugc\">HubSpot\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-single-sign-on-sso-for-shopify-using-wordpress-as-identity-provider\" rel=\"nofollow ugc\">Shopify\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fmerithub-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">MeritHub\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fbookstack-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Bookstack\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fpimcore-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Pimcore\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002F360learning-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">360 Learning\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Feventmobi-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">EventMobi\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsynology-sso-using-wordpress-as-oauth-server\" rel=\"nofollow ugc\">Synology\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fdrupal-wordpress-sso-integration-with-oauth-client-drupal-wordpress-login\" rel=\"nofollow ugc\">Drupal\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Piano Analytics\u003C\u002Fli>\n\u003Cli>Zerotier\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WORDPRESS OAUTH \u002F OPENID CONNECT SERVER USE CASES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>If you want to use your WordPress site as an Identity Server \u002F OAuth Server \u002F OAuth Provider and utilize Login with WordPress to access your client site\u002Fapplication with WordPress user’s login credentials, then you can use this plugin. You can also decide what kind of user data\u002Fattributes you want to send while Single Sign-On into your client site\u002Fapplication, including Moodle WordPress SSO and Nextcloud SSO functionalities.\u003C\u002Fli>\n\u003Cli>If you want to login to your Mobile app \u002F Single Page web app (SPA) using your WordPress credentials, then you can use the Authorization code with PKCE flow grant type to achieve your use case.\u003C\u002Fli>\n\u003Cli>Single set of credentials will be used to login to multiple WordPress websites.\u003C\u002Fli>\n\u003Cli>You can access the NGINX resources using NGINX Authentication. Once you login into your client application using WP OAuth Server credentials, you will get JWT. Your client application can further use it for NGINX Authentication. \u003C\u002Fli>\n\u003Cli>Membership sync or role mapping is used to sync the memberships or roles assigned to your users from OAuth Server to OAuth\u002FOpenID Client.\u003C\u002Fli>\n\u003Cli>Custom Attribute Mapping is helpful if you want to send additional attributes (beyond the default ones) from your WordPress \u003Cem>usermeta\u003C\u002Fem> table to your OAuth\u002FOpenID client using Login with WordPress.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WORDPRESS OAUTH \u002F OPENID CONNECT SERVER FREE VERSION FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Supports Login with WordPress for \u003Cstrong>Single Client\u003C\u002Fstrong> application\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Protocol Support:\u003C\u002Fstrong> OAuth 2.0, OpenID Connect (OIDC)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Discovery document\u003C\u002Fstrong> \u002F well-known endpoint for automatic configuration\u003C\u002Fli>\n\u003Cli>JWT signing using \u003Cstrong>HS256\u003C\u002Fstrong> or \u003Cstrong>RS256\u003C\u002Fstrong> algorithm (\u003Cstrong>Note\u003C\u002Fstrong>: In RS256 algorithm, the keys will be common for all the free version installations)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Postman collection\u003C\u002Fstrong> for testing OAuth 2.0 flow without actually configuring the client application\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Server Response:\u003C\u002Fstrong> Sends User ID, username, email, first name, last name, display name in the response\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Grant types Supported:\u003C\u002Fstrong> Authorization Code grant\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Site Support:\u003C\u002Fstrong> Implement the WordPress as OAuth Server within a WordPress Multisite network environment to Login with WordPress users into configured applications.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Master Switch:\u003C\u002Fstrong> Block \u002F unblock OAuth API calls between OAuth Clients and OAuth Server\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Token Length:\u003C\u002Fstrong> Change the access token length\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Foauth-api-documentation\" rel=\"nofollow ugc\"> OAuth API Documentation \u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fstep-by-step-guide-for-wordpress-oauth-server\" rel=\"nofollow ugc\"> Setup guides \u003C\u002Fa> to configure the plugin with various OAuth Clients (more coming soon)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>WORDPRESS OAUTH \u002F OPENID CONNECT SERVER PREMIUM VERSION FEATURES\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>All FREE version features\u003C\u002Fli>\n\u003Cli>Supports Login with WordPress for \u003Cstrong>Multiple Client\u003C\u002Fstrong> applications\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Server Response:\u003C\u002Fstrong> Sends all the profile attributes along with roles, allows to send custom attributes from usermeta table and also customize the attribute names that need to be sent in server response\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Grant Types Supported:\u003C\u002Fstrong> Authorization Code Grant, Implicit Grant, Password Grant, Client Credentials Grant, Refresh Token Grant, Authorization Code grant with PKCE flow\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Token Lifetime:\u003C\u002Fstrong> Configure the access token and refresh token expiry time\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enforce State Parameter:\u003C\u002Fstrong> Based on client configuration, you can enable or disable state parameter\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Authorize \u002F Consent prompt:\u003C\u002Fstrong> Enable \u002F disable the consent screen\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Redirect \u002F Callback URI Validation:\u003C\u002Fstrong> Enable \u002F disable this feature, based on dynamic redirect to a different pages for certain conditions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>JWT Signing Algorithm:\u003C\u002Fstrong> Supports signing algorithms HSA and RSA (with dynamic keys for each client setup)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Additional endpoints:\u003C\u002Fstrong> Provides Introspection endpoint, OpenID Connect Single logout endpoint, Revoke endpoint\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>A grant is a method of acquiring an access token. Deciding which grants to implement depends on the type of client the end user will be using, and the experience you want for your users.\u003C\u002Fp>\n\u003Ch4>WE SUPPORT FOLLOWING GRANTS:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Authorization code grant\u003C\u002Fstrong> : This code grant is used when there is a need to access the protected resources on behalf of the user on another third party application.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Implicit grant\u003C\u002Fstrong> : This grant relies on resource owner and registration of redirect uri. In authorization code grant users need to ask for authorization and access token each time, but here access token is granted for a particular redirect uri provided by a client using a particular browser.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Client credential grant\u003C\u002Fstrong> : This grant type heads towards specific clients, where access token is obtained by client by only providing client credentials. This grant type is quite confidential.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Resource owner password credentials grant\u003C\u002Fstrong> : This type of grant is used where the resource owner has a trust relationship with the client. Just by using username and password, provided by resource owner authorization and authentication can be achieved.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Refresh token grant\u003C\u002Fstrong> : Access tokens obtained in OAuth flow eventually expire. In this grant type client can refresh his or her access token.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Authorization code grant with PKCE flow\u003C\u002Fstrong> : This grant type is used for public clients like mobile and native apps, Single Page web apps, where there is a risk of client secret being compromised.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>REST API AUTHENTICATION\u003C\u002Fh4>\n\u003Cp>Rest API is very much open to interact. Creating posts, getting information of users and much more is readily available.\u003Cbr \u002F>\nIt secures unauthorized access to your WordPress sites\u002Fpages using our \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwp-rest-api-authentication\u002F\" rel=\"ugc\"> WordPress REST API Authentication plugin \u003C\u002Fa>.\u003C\u002Fp>\n","Single Sign-On using WordPress - Login with WordPress to your application\u002Fsites using your WordPress account. [24\u002F7 Support]",900,50872,40,"2026-01-30T04:47:00.000Z","4.8","5.6",[92,93,94,21,95],"oauth-provider","oauth-server","oauth2","wordpress-login","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminiorange-oauth-20-server.6.1.3.zip","2022-08-02 00:00:00",{"slug":99,"name":100,"version":101,"author":58,"author_profile":59,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":106,"num_ratings":107,"last_updated":108,"tested_up_to":67,"requires_at_least":89,"requires_php":90,"tags":109,"homepage":112,"download_link":113,"security_score":64,"vuln_count":114,"unpatched_count":77,"last_vuln_date":115,"fetched_at":29},"miniorange-wp-as-saml-idp","SAML IDP (Identity Provider) – Login with Website Users","1.16.5","\u003Cp>Login using WordPress Users ( WP as SAML IDP ) provides SAML functionality for WordPress SSO Login with WP Users into a SAML \u002F WS-FED \u002F JWT compliant Service Provider.\u003C\u002Fp>\n\u003Cp>WordPress SAML Single Sign-On (SSO) IDP Plugin allows your WordPress users to log into other SAML, WS-Fed, or JWT applications using their WordPress credentials. The plugin makes your WordPress site act as the Identity Provider and allows your user to Log in with WordPress credentials, making it more secure by establishing a trust with other Service Provider (SP). applications.\u003C\u002Fp>\n\u003Cp>This WordPress SAML IDP SSO solution provides SAML SSO capability to your WordPress site, converting it to a SAML compliant Identity Provider which can be configured with any SAML compliant Service Provider.\u003C\u002Fp>\n\u003Cp>Login With WordPress allows users residing in your WordPress site to login to your SAML 2.0 or WS-FED compliant Service Provider. We support Login with WordPress Users into all known Service Providers that support SAML Authentication, WSFED authentication and JWT authentication (Premium feature). Login with WordPress provides compatibility with various Service Providers.\u003C\u002Fp>\n\u003Cp>Login using WordPress Users ( WP as SAML IDP ) allows SSO login into Tableau, Zoho CRM, Panopto, Salesforce, Rocketchat, Freshdesk, Moodle LMS integrations, miniOrange, Thinkific, Canvas LMS, Absorb LMS, TalentLMS, iPipeline, Mendix, NextCloud, Zendesk, LinkedIn Learning, Tiled, Higher Logic, BlueJeans, Hubspot, SAP Litmos, LifeRay, MindGarden,Tableau Cloud, Panopto, Zoom, AWS Cognito, WordPress, Documoto and all SAML 2.0 capable Service Providers.\u003C\u002Fp>\n\u003Cp>WordPress as IdP SAML \u002F WS-FED \u002F JWT SSO Plugin acts as a SAML 2.0 or WS-FED or JWT Identity Provider which can be configured to establish the trust between the plugin and various SAML 2.0 or WS-FED or JWT supported Service Providers to securely authenticate the user using the WordPress site credentials.\u003C\u002Fp>\n\u003Ch4>List of Supported Service Providers\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Tableau\u003C\u002Fstrong> (Login to Tableau) – Supports \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Ftableau-wordpress-single-sign-on-sso-login\" rel=\"nofollow ugc\">Tableau Online\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Ftableau-saml-single-sign-on-with-wordpress-as-idp\" rel=\"nofollow ugc\">Tableau Server\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tableau Embed\u003C\u002Fstrong> (Embed Tableau Visualizations into WordPress Site)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tableau Cloud\u003C\u002Fstrong> (Login to Tableau Cloud)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-zoho-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Zoho CRM\u003C\u002Fstrong>\u003C\u002Fa> (Login to Zoho)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-freshdesk-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Freshdesk Agents SSO\u003C\u002Fstrong>\u003C\u002Fa> (Login to Freshdesk as Agents)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-freshdesk-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Freshdesk Contacts SSO\u003C\u002Fstrong>\u003C\u002Fa> (Login to Freshdesk as Contacts) \u003C\u002Fli>\n\u003Cli>\u003Cstrong>Freshdesk Login\u003C\u002Fstrong> ( Login to Freshdesk)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Freshworks\u003C\u002Fstrong> (Login to Freshworks)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fmoodle-single-sign-on-sso\" rel=\"nofollow ugc\">\u003Cstrong>Moodle LMS Login\u003C\u002Fstrong>\u003C\u002Fa> (Login to Moodle)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-nextcloud-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>NextCloud\u003C\u002Fstrong>\u003C\u002Fa> (Login to NextCloud) – \u003Cem>Requires \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">Premium version\u003C\u002Fa>\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-zoom-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Zoom\u003C\u002Fstrong>\u003C\u002Fa> (Login to Zoom)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-hubspot-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Hubspot\u003C\u002Fstrong>\u003C\u002Fa> (Login to Hubspot)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>ServiceNow\u003C\u002Fstrong> (Login to ServiceNow)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>BoardEffect\u003C\u002Fstrong> (Login to BoardEffect)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-aws-cognito-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>AWS Cognito\u003C\u002Fstrong>\u003C\u002Fa> (Login to AWS Cognito) – \u003Cem>Requires \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">Premium version\u003C\u002Fa>\u003C\u002Fem> \u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsingle-sign-on-sso-between-two-wordpress-sites\" rel=\"nofollow ugc\">\u003Cstrong>WordPress\u003C\u002Fstrong>\u003C\u002Fa> (Login to WordPress)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-salesforce-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Salesforce\u003C\u002Fstrong>\u003C\u002Fa> (Login to Salesforce)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>miniOrange\u003C\u002Fstrong> (Login to miniOrange)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Moodle LMS integration\u003C\u002Fstrong> ( Moodle LMS Login)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-panopto-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Panopto\u003C\u002Fstrong>\u003C\u002Fa> (Login to Panopto)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-canvas-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Canvas LMS\u003C\u002Fstrong>\u003C\u002Fa> (Login to Canvas)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-absorb-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Absorb LMS\u003C\u002Fstrong>\u003C\u002Fa> (Login to Absorb) – \u003Cem>Requires \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">Premium version\u003C\u002Fa>\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-talentlms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>TalentLMS\u003C\u002Fstrong>\u003C\u002Fa> (Login to TalentLMS) – \u003Cem>Requires \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">Premium version\u003C\u002Fa>\u003C\u002Fem>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-rocketchat-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>RocketChat\u003C\u002Fstrong>\u003C\u002Fa> (Login to RocketChat)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-learnupon-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>LearnUpon\u003C\u002Fstrong>\u003C\u002Fa> (Login to LearnUpon)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-ispring-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>iSpring LMS\u003C\u002Fstrong>\u003C\u002Fa> (Login to iSpring LMS)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-frontline-education-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Frontline Education\u003C\u002Fstrong>\u003C\u002Fa> (Login to Frontline Education)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-360learning-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>360Learning\u003C\u002Fstrong>\u003C\u002Fa> (Login to 360Learning)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-lessonly-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Lessonly\u003C\u002Fstrong>\u003C\u002Fa> (Login to Lessonly)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-tovuti-lms-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Tovuti LMS\u003C\u002Fstrong>\u003C\u002Fa> (Login to Tovuti LMS)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-klipfolio-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Klipfolio\u003C\u002Fstrong>\u003C\u002Fa> (Login to Klipfolio)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Thinkific\u003C\u002Fstrong> (Login to Thinkific)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>iPipeline\u003C\u002Fstrong> (Login to iPipeline)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Higher Logic\u003C\u002Fstrong> (Login to HigherLogic)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mendix\u003C\u002Fstrong> (Login to Mendix)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-zendesk-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>Zendesk\u003C\u002Fstrong>\u003C\u002Fa> (Login to Zendesk)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-linkedin-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>LinkedIn Learning\u003C\u002Fstrong>\u003C\u002Fa> (Login to LinkedIn Learning)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tiled\u003C\u002Fstrong> (Login to Tiled)\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-bluejeans-single-sign-on-sso-login\" rel=\"nofollow ugc\">\u003Cstrong>BlueJeans\u003C\u002Fstrong>\u003C\u002Fa> (Login to BlueJeans)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>LifeRay\u003C\u002Fstrong> (Login to LifeRay)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>SAP Litmos\u003C\u002Fstrong> (Login to SAP Litmos)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>MindGarden\u003C\u002Fstrong> (Login to MindGarden)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Documoto\u003C\u002Fstrong> (Login to Documoto) – \u003Cem>Requires \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">Premium version\u003C\u002Fa>\u003C\u002Fem>\u003Cbr \u002F>\nand practically any SAML compliant Service Provider.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Note\u003C\u002Fstrong> : \u003Cem>Some Service Providers require additional attributes to configure SSO. This is a Premium feature. Feel free to ask us for a trial version of the Premium plugin to test the SSO. Reach out to us using the Support form in the plugin or simply send us a mail at \u003Ca href=\"mailto:wpidpsupport@xecurify.com\" rel=\"nofollow ugc\">wpidpsupport@xecurify.com\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>To know more about the plugin and how to Login with WordPress, please visit \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp\" rel=\"nofollow ugc\">this\u003C\u002Fa> page.\u003C\u002Fp>\n\u003Cp>If you are looking to SSO into your WordPress site with any SAML compliant Identity Provider then we have a separate plugin for that. \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fminiorange-saml-20-single-sign-on\u002F\" rel=\"ugc\"> Click Here \u003C\u002Fa> to learn more.\u003C\u002Fp>\n\u003Cp>If you require any Single Sign On application or need any help with installing this plugin, please feel free to email us at \u003Ca href=\"mailto:wpidpsupport@xecurify.com\" rel=\"nofollow ugc\">wpidpsupport@xecurify.com\u003C\u002Fa>. You can also submit your query from plugin’s configuration page.\u003C\u002Fp>\n\u003Ch4>Special Use-Cases :\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Tableau views inside your WordPress site\u003C\u002Fstrong> – Now your users can see Tableau views inside your WordPress site without the user ever leaving your site! miniOrange WordPress SAML IDP plugin can make that happen and make it look seamless! Login with WordPress User into Tableau.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Zoom SSO\u003C\u002Fstrong> – Allow \u002F Restrict access to your Zoom meetings and webinars. Only allow your WordPress users to join Zoom meetings and webinars.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Freshdesk SSO for Agents and Contacts\u003C\u002Fstrong> – Your customers can now SSO from your WordPress site into Freshdesk without entering the credentials again! Login with WordPress User into Freshdesk.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Login with WordPress users into Cognito\u003C\u002Fstrong> – You can add WordPress as an external SAML Identity Provider in AWS Cognito. This will allow your WordPress users to login to Cognito using their WordPress credentials! Login with WordPress User into AWS Cognito.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress & LMS SSO\u003C\u002Fstrong> – Most of the LMS out there (Moodle LMS integration, Absorb LMS, Canvas LMS, TalentLMS, Flagship LMS, etc) support SAML Single Sign-On. Now, you can advertise your courses on your WordPress site, and log the user in into your LMS automatically without having to enter the credentials again. Login with WordPress User into Moodle LMS integration \u002F Absorb LMS \u002F Canvas LMS \u002F TalentLMS \u002F Flagship LMS.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>WordPress Salesforce Object Sync\u003C\u002Fstrong> – Sync WordPress data with Salesforce data using \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fobject-data-sync-for-salesforce\u002F\" rel=\"ugc\">Object Data Sync for Salesforce\u003C\u002Fa> plugin. Our \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-object-sync-for-salesforce\" rel=\"nofollow ugc\">WordPress Salesforce data sync\u003C\u002Fa> plugin works in tandem with the WordPress SAML IDP plugin to facilitate seamless WP Salesforce login, and also \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\u002Fsync-salesforce-objects-to-wordpress\" rel=\"nofollow ugc\">syncs all WordPress object data with Salesforce object data\u003C\u002Fa> in Salesforce using Apex triggers on the Salesforce side. Know more about our WordPress Salesforce Object Sync plugin by reaching out to us at \u003Ca href=\"mailto:wpidpsupport@xecurify.com\" rel=\"nofollow ugc\">wpidpsupport@xecurify.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>These are some of the most requested use-cases out of hundreds of use-cases that are supported by our plugin!\u003C\u002Fp>\n\u003Ch4>Key Features :-\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Login with WordPress to any SAML 2.0 or WS-FED or JWT compliant Service Provider like Tableau Online, Tableau Server, Tableau Cloud, Panopto, Zoho\u002FZoho CRM\u002FZoho One, Freshdesk, Moodle LMS integration, miniOrange, Thinkific, Canvas LMS, Absorb LMS, TalentLMS, iPipeline, Mendix, NextCloud, Hubspot, HigherLogic, Zendesk, LinkedIn Learning, Tiled, BlueJeans, SAP Litmos, LifeRay, MindGarden, Zoom, AWS Cognito, WordPress, Documoto, etc. using your WordPress site credentials.\u003C\u002Fli>\n\u003Cli>Single Sign-On (SSO)\u003Cbr \u002F>\nEasy, secure, and seamless access to any SAML 2.0, WS-FED, or JWT applications with a single login i.e. Login with wordpress users \u002F authenticate users into applications using WordPress credentials.\u003C\u002Fli>\n\u003Cli>Single Logout\u003Cbr \u002F>\nTerminate user’s Single Sign-On session on WordPress as well as on Service Provider applications, when the user logs out of your WP site or any configured Service Provider application. (Premium Feature)\u003C\u002Fli>\n\u003Cli>Widget\u002FShortcode to add SP Login\u003Cbr \u002F>\nAdd a link or button anywhere on your WordPress site, acting as an Identity Provider, to allow IDP initiated SSO into your single or multiple applications.\u003C\u002Fli>\n\u003Cli>Easily configure the Identity Provider by providing just the Issuer, ACS URL and NameID format.\u003C\u002Fli>\n\u003Cli>Multisite Support\u003Cbr \u002F>\nSupports configuring WordPress Multisite Network installation as an Identity Provider, allowing users to SSO login into Service Provider applications using WordPress Multisite credentials. (Premium Feature)\u003C\u002Fli>\n\u003Cli>Use the IDP Metadata XML file \u002F URL to instantly configure your Service Provider.\u003C\u002Fli>\n\u003Cli>We regularly update the X.509 certificate so that you have the most secure WordPress SSO login experience.\u003C\u002Fli>\n\u003Cli>Multiple SPs Supported\u003Cbr \u002F>\nAllow users to Single Sign-On into multiple applications at once by configuring multiple Service Providers (SP) with WordPress as the Identity Provider (IDP). (Premium Feature)\u003C\u002Fli>\n\u003Cli>Make user login more secure by signing and encrypting responses to Service Provider (Premium feature).\u003C\u002Fli>\n\u003Cli>Use the Attribute & Role Mapping feature to map WordPress user profile attributes to your SP attributes, and send roles assigned to users from your WordPress site to your Service Provider (Premium feature).\u003C\u002Fli>\n\u003Cli>Custom Login Page\u003Cbr \u002F>\nSupports custom login page and custom registration page along with the default WordPress login page to allow users to sign up themselves in WordPress (Premium feature).\u003C\u002Fli>\n\u003Cli>SAML Request Verification & Response Encryption\u003Cbr \u002F>\nSecures transactions of user profile information from WordPress to Service Providers using signature verification and assertion encryption in SAML Response.\u003C\u002Fli>\n\u003Cli>Embed Panopto\u003Cbr \u002F>\nEmbedding Panopto video content into your WordPress Site.\u003C\u002Fli>\n\u003Cli>Tableau Embed\u003Cbr \u002F>\nTableua Embed effortlessly embeds interactive Tableau visualizations and graphs directly into your WordPress pages and posts.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Website –\u003C\u002Fh4>\n\u003Cp>Check out our website for other plugins \u003Ca href=\"https:\u002F\u002Fplugins.miniorange.com\" rel=\"nofollow ugc\">https:\u002F\u002Fplugins.miniorange.com\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fsearch.php?q=miniorange\" rel=\"ugc\">click here\u003C\u002Fa> to see all our listed WordPress plugins.\u003Cbr \u002F>\nFor more support or info email us at \u003Ca href=\"mailto:wpidpsupport@xecurify.com\" rel=\"nofollow ugc\">wpidpsupport@xecurify.com\u003C\u002Fa>. You can also submit your query from the plugin’s configuration page.\u003C\u002Fp>\n","Single sign on (SSO) login with WordPress Users into any Service Provider like Tableau, Thinkific, Zoom, Moodle LMS, Canvas LMS, Absorb LMS, TalentLMS",600,34579,96,59,"2025-12-24T11:19:00.000Z",[110,111,72,23,95],"identity-provider","login-with-wordpress","https:\u002F\u002Fplugins.miniorange.com\u002Fwordpress-saml-idp","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fminiorange-wp-as-saml-idp.1.16.5.zip",2,"2024-11-15 20:41:13",{"slug":117,"name":118,"version":119,"author":120,"author_profile":121,"description":122,"short_description":123,"active_installs":77,"downloaded":124,"rating":77,"num_ratings":77,"last_updated":125,"tested_up_to":126,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":131,"download_link":132,"security_score":13,"vuln_count":77,"unpatched_count":77,"last_vuln_date":36,"fetched_at":29},"snapplify-single-sign-on","Snapplify Single Sign On","1.5.2","Snapplify","https:\u002F\u002Fprofiles.wordpress.org\u002Fsnapplify\u002F","\u003Cp>Snapplify Single Sign On allows for OAuth authentication by WordPress Admin Users as well as OAuth authentication and registration by WordPress Subscriber Users and WooCommerce Customer Users.\u003C\u002Fp>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin relies on the Snapplify Auth API to authenticate and manage user sessions.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Service: Snapplify Access OAuth 2.0 API (https:\u002F\u002Fauth.snapplify.com)\u003C\u002Fli>\n\u003Cli>Purpose: To authenticate WordPress users against Snapplify user accounts via OAuth 2.0.\u003C\u002Fli>\n\u003Cli>Data Sent: The user’s browser is redirected to Snapplify’s login server. During login, authentication codes are exchanged securely with Snapplify. No passwords or sensitive credentials are stored or shared by the plugin.\u003C\u002Fli>\n\u003Cli>Data Received: The plugin receives an access token and basic user profile data (e.g. full name, email address, username, account ID, profile picture, authorities), which is stored in the WordPress user profile for account linkage.\u003C\u002Fli>\n\u003Cli>Terms of Service: https:\u002F\u002Fwww.snapplify.com\u002Flegal\u002Fterms\u003C\u002Fli>\n\u003Cli>Privacy Policy: https:\u002F\u002Fwww.snapplify.com\u002Flegal\u002Fprivacy\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>This communication is secured over HTTPS and is required for the plugin to function.\u003C\u002Fp>\n","WordPress User Single Sign On authentication with a Snapplify User Account.",181,"2025-08-18T08:55:00.000Z","6.8.5","6.1","7.4",[20,71,21,72,130],"wordpress-sso","https:\u002F\u002Fwww.snapplify.com\u002Fwp-plugin-single-sign-on","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsnapplify-single-sign-on.1.5.2.zip",{"slug":134,"name":135,"version":136,"author":137,"author_profile":138,"description":139,"short_description":140,"active_installs":141,"downloaded":142,"rating":13,"num_ratings":143,"last_updated":144,"tested_up_to":145,"requires_at_least":146,"requires_php":128,"tags":147,"homepage":151,"download_link":152,"security_score":64,"vuln_count":114,"unpatched_count":77,"last_vuln_date":153,"fetched_at":29},"daggerhart-openid-connect-generic","OpenID Connect Generic Client","3.11.3","Jonathan Daggerhart","https:\u002F\u002Fprofiles.wordpress.org\u002Fdaggerhart\u002F","\u003Cp>This plugin allows to authenticate users against OpenID Connect OAuth2 API with Authorization Code Flow.\u003Cbr \u002F>\nOnce installed, it can be configured to automatically authenticate users (SSO), or provide a “Login with OpenID Connect”\u003Cbr \u002F>\nbutton on the login form. After consent has been obtained, an existing user is automatically logged into WordPress, while\u003Cbr \u002F>\nnew users are created in WordPress database.\u003C\u002Fp>\n\u003Cp>Much of the documentation can be found on the Settings > OpenID Connect Generic dashboard page.\u003C\u002Fp>\n\u003Cp>Please submit issues to the Github repo: https:\u002F\u002Fgithub.com\u002Foidc-wp\u002Fopenid-connect-generic\u003C\u002Fp>\n","A simple client that provides SSO or opt-in authentication against a generic OAuth2 Server implementation.",10000,177319,20,"2026-02-13T04:36:00.000Z","6.9.0","5.0",[148,20,94,149,150],"apps","openidconnect","security","https:\u002F\u002Fgithub.com\u002Foidc-wp\u002Fopenid-connect-generic","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdaggerhart-openid-connect-generic.3.11.3.zip","2025-12-17 00:00:00",{"attackSurface":155,"codeSignals":236,"taintFlows":300,"riskAssessment":301,"analyzedAt":313},{"hooks":156,"ajaxHandlers":226,"restRoutes":227,"shortcodes":228,"cronEvents":235,"entryPointCount":114,"unprotectedCount":77},[157,163,166,170,176,180,183,187,192,195,200,205,207,211,215,220,222,224],{"type":158,"name":159,"callback":160,"file":161,"line":162},"action","wp_loaded","register_admin_assets","includes\\IDER_Admin.php",21,{"type":158,"name":164,"callback":164,"file":161,"line":165},"admin_init",22,{"type":158,"name":167,"callback":168,"file":161,"line":169},"admin_menu","add_page",23,{"type":171,"name":172,"callback":173,"file":174,"line":175},"filter","rewrite_rules_array","create_rewrite_rules","includes\\IDER_Rewrites.php",24,{"type":171,"name":177,"callback":178,"file":174,"line":179},"query_vars","add_query_vars",25,{"type":171,"name":159,"callback":181,"file":174,"line":182},"flush_rewrite_rules",26,{"type":158,"name":184,"callback":185,"file":174,"line":186},"template_redirect","template_redirect_intercept",27,{"type":158,"name":188,"callback":189,"file":190,"line":191},"login_form","ider_login_button_render","includes\\IDER_Server.php",84,{"type":158,"name":193,"callback":189,"file":190,"line":194},"woocommerce_login_form_end",85,{"type":158,"name":196,"callback":197,"file":198,"line":199},"widgets_init","closure","includes\\IDER_Widget.php",18,{"type":158,"name":201,"callback":202,"file":203,"line":204},"init","add_endpoints","includes\\IDER_WooPage.php",30,{"type":171,"name":177,"callback":178,"priority":77,"file":203,"line":206},31,{"type":171,"name":208,"callback":209,"file":203,"line":210},"the_title","endpoint_title",33,{"type":171,"name":212,"callback":213,"file":203,"line":214},"woocommerce_account_menu_items","new_menu_items",35,{"type":171,"name":216,"callback":217,"file":218,"line":219},"widget_text","do_shortcode","wp-ider-login-client.php",44,{"type":171,"name":221,"callback":197,"file":218,"line":107},"ider_fields_map",{"type":171,"name":223,"callback":197,"priority":76,"file":218,"line":26},"before_callback_handler",{"type":171,"name":225,"callback":197,"priority":76,"file":218,"line":191},"after_callback_handler",[],[],[229,232],{"tag":230,"callback":230,"file":231,"line":199},"ider_login_button","includes\\IDER_Shortcodes.php",{"tag":233,"callback":233,"file":231,"line":234},"ider_profile_summary",19,[],{"dangerousFunctions":237,"sqlUsage":238,"outputEscaping":240,"fileOperations":298,"externalRequests":77,"nonceChecks":77,"capabilityChecks":77,"bundledLibraries":299},[],{"prepared":77,"raw":77,"locations":239},[],{"escaped":241,"rawEcho":242,"locations":243},7,29,[244,246,248,250,252,254,256,258,260,262,264,266,268,270,271,273,274,276,277,279,281,284,286,287,289,291,293,295,296],{"file":161,"line":64,"context":245},"raw output",{"file":161,"line":247,"context":245},114,{"file":161,"line":249,"context":245},115,{"file":161,"line":251,"context":245},122,{"file":161,"line":253,"context":245},123,{"file":161,"line":255,"context":245},130,{"file":161,"line":257,"context":245},131,{"file":161,"line":259,"context":245},139,{"file":161,"line":261,"context":245},147,{"file":161,"line":263,"context":245},148,{"file":161,"line":265,"context":245},150,{"file":161,"line":267,"context":245},158,{"file":161,"line":269,"context":245},173,{"file":161,"line":269,"context":245},{"file":161,"line":272,"context":245},180,{"file":161,"line":272,"context":245},{"file":161,"line":275,"context":245},188,{"file":161,"line":275,"context":245},{"file":278,"line":64,"context":245},"includes\\IDER_Callback.php",{"file":278,"line":280,"context":245},102,{"file":282,"line":283,"context":245},"includes\\IDER_Helpers.php",50,{"file":282,"line":285,"context":245},54,{"file":231,"line":169,"context":245},{"file":198,"line":288,"context":245},45,{"file":198,"line":290,"context":245},47,{"file":198,"line":292,"context":245},52,{"file":198,"line":294,"context":245},53,{"file":198,"line":26,"context":245},{"file":203,"line":297,"context":245},105,5,[],[],{"summary":302,"deductions":303},"The 'ider-login' plugin v2.1 exhibits a mixed security posture. On one hand, it demonstrates good practices by not making external HTTP requests, using prepared statements for all SQL queries, and having no critical or high severity taint flows. The attack surface also appears minimal with no unprotected entry points. However, significant concerns arise from the code analysis. A very low percentage of output is properly escaped (19%), indicating a high risk of Cross-Site Scripting (XSS) vulnerabilities. Furthermore, the complete absence of nonce checks and capability checks for its entry points is a major security oversight, leaving it vulnerable to various forms of exploitation, especially if any user input is processed. The vulnerability history further compounds these concerns, with one known medium severity CVE related to XSS that is currently unpatched. This suggests a pattern of input sanitization issues that have not been fully addressed. While the plugin's core database interactions are secure, the handling of output and lack of authorization checks on its entry points present substantial risks that need immediate attention.",[304,307,309,311],{"reason":305,"points":306},"Unpatched medium CVE",15,{"reason":308,"points":241},"Low output escaping percentage",{"reason":310,"points":298},"Missing nonce checks",{"reason":312,"points":298},"Missing capability checks","2026-03-16T21:19:26.597Z",{"wat":315,"direct":325},{"assetPaths":316,"generatorPatterns":319,"scriptPaths":320,"versionParams":321},[317,318],"\u002Fwp-content\u002Fplugins\u002Fider-login\u002Fassets\u002Fcss\u002Fadmin.css","\u002Fwp-content\u002Fplugins\u002Fider-login\u002Fassets\u002Fjs\u002Fadmin.js",[],[318],[322,323,324],"ider-login\u002Fstyle.css?ver=","ider-login\u002Fscript.js?ver=","wposso_admin?ver=",{"cssClasses":326,"htmlComments":328,"htmlAttributes":329,"restEndpoints":334,"jsGlobals":335,"shortcodeOutput":338},[327],"toplevel_page_wposso_settings",[],[330,331,332,333],"name=\"wposso_options[client_id]\"","name=\"wposso_options[client_secret]\"","name=\"wposso_options[extra_scopes]\"","name=\"wposso_options[login_form_button]\"",[],[336,337],"IDERConnect\\IDEROpenIDClient::$IDERRedirectURL","IDER_PLUGIN_URL",[339],"[ider_login_button]"]