설명

This plugin is used to setup any WordPress site as Identity Server to allow Users to Single Sign-On / Login into their client site / application with WordPress Login using OAuth / OpenID Connect protocol flows. WordPress OAuth Server plugin allows you to use WordPress as your OAuth Server (Identity Server) and access OAuth API’s.

The primary goal of this OAuth server/Oauth Provider plugin is to allow users to interact with WordPress and Jetpack sites without requiring them to store sensitive credentials.

The OAuth Server plugin is created in WordPress by virtue of which, user can work with OAuth2 compliant client. These client applications can be Salesforce, Slack or any other third party applications which support OAuth Server allows Single Sign On to client applications with wordpress credentials. It allows you to use WordPress as your OAuth Server and access OAuth APIs.

You can easily configure an OAuth server to protect your API with access tokens, or allow clients to request new access tokens and refresh them.

This plugin provide support to Rocket.chat, Invision Community and other custom OAuth and OpenID Connect (OIDC) client applications. OAuth Server plugin works with any OAuth client that conforms to the OAuth 2.0 and OpenID Connect 1.0 standard.

Application

• If you want to use your WordPress site as a Identity Server and use WordPress User’s login credentials to login into your client site / application then you can use this plugin. You can also decide what kind of User data /attribute you want to send while Single Sign On into your Client application / site.

Features

• Supports WordPress Login / Login with WordPress for Multiple OAuth Clients
• Master Switch – It allows you to block or unblock API calls between OAuth Clients and Server
• Block Unauthenticated Request To The REST API
• Token Length – Allows you to change the token length
• Redirect/Callback URI Validation – You can Enable/disable this feature, based on dynamic redirect to a different pages for certain conditions.
• OIDC Support – Supports OpenID Connect protocol
• Token Lifetime – Allow you to decide the token expiry time
• JWT Support
• Error Logging
• Enforce State Parameter – Based on client configuration, you can enable or disable state parameter
• Supports All Grant Types : Authorization Code Grant, Implicit Grant, Password Grant, Client Credentials Grant, Refresh Token Grant
• Server Response – Allows you to customize the attributes need to be sent in server response
• Extended OAuth API Support
• Multi-Site Support
• JWT Signing Algorithm – Supports
• Support for Introspection Endpoint

A grant is a method of acquiring an access token. Deciding which grants to implement depends on the type of client the end user will be using, and the experience you want for your users.

We support following grants:

• Authorization code grant: This code grant is used when there is a need to access the protected resources on behalf of another third party application.

• Implicit grant: This grant relies on resource owner and registration of redirect uri. In authorization code grant user needs to ask for authorization and access token each time, but here access token is granted for a particular redirect uri provided by client using a particular browser.

• Client credential grant: This grant type heads towards specific clients, where access token is obtained by client by only providing client credentials. This grant type is quiet confidential.

• Resource owner password credentials grant: This type of grant is used where resource owner has trust relationship with the client. Just by using username and password, provided by resource owner authorization and authentication can be achieve

• Refresh token grant: Access tokens obtained in OAuth flow eventually expire. In this grant type client can refresh his or her access token.

REST API Authentication

Rest API are very much open to interact. Creating posts, getting information of users and much more is readily available.
It secures the unauthorized access to your WordPress sites/pages using our WordPress REST API Authentication plugin.