PHP and WordPress Single Sign On (SSO) with optional JWT Addon

korkut

when this plugin active and trying to reset password I see " There has been a critical error on this website. Please check your site admin email inbox for instructions. " error in wordpress page ,,,, PLS HELP

maicol07

Sorry for the late responses, I've missed the email notifications about Flarum discuss.

privacytoolsIO no, you can use it with any PHP website as well! Just use the PHP plugin instead of the WordPress one: https://docs.maicol07.it/en/flarum-sso/plugins/php

korkut can you check the php error logs or enable debug in wordpress? Without the error and/or the stacktrace it's difficult for me to help you

kuaza

maicol07 Please tell me this plugin works with the flarum main site.

In other words, the main site will be flarum and sub-domains will be flarum and the same memberships will be used.

maicol07

kuaza hi, this currently isn't implemented. There is a feature request for this but it's not on the roadmap: https://tracker.maicol07.it/issue/FSSOE-3

kuaza

maicol07 It would be great if this were done. By using the "Flarum" system as a network, we can increase its popularity. What can we do for this? There is already an exemplary system. We need to replace wordpress with "flarum".

My requirement is actually main domain "flarum" and multiple subdomain "flarum". The membership sections of all these sites will be the same or will be connected to the main domain. Is there any way to achieve this? Or how much do we have to pay if we want to print a plugin for it?

maicol07

kuaza sorry for the late reply, I've missed it.

kuaza Is there any way to achieve this?

Currently, there is no extension on Flarum (as far as I know) that allows you to link Flarum instances or setup an authentication/user provider (i.e. an OIDC provider that would pair well with my premium OIDC client extension)

kuaza Or how much do we have to pay if we want to print a plugin for it?

If someone wants to sponsor this feature you can write me via Telegram or live chat on my website to agree on the price and the availability date. Currently, I'm very busy with a lot of things and other projects, so I'm not sure this will be available very soon (even with a sponsor)

kuaza

maicol07 Well, can we use the membership in the main site flarum to register or log in to the flarum in the subdomain? just like facebook login or google login. The only difference is that our main site will be able to log in or open a membership with the flarum and subdomains or memberships in the main site subdomains.

maicol07

kuaza yes, that's how it would work. However, I have to figure out a way to identify users across sessions (i.e. access tokens); it isn't a simple copy-paste from WordPress

onemco

I am having issues with WP SSO plugin, Plugin is configured as per installation guide both Flarum extentions and wordpress Plugin, but when user logs in I am getting following error...

Fatal error: Uncaught GuzzleHttp\Exception\ClientException: Client error: POST https://example.com/forum/api/users resulted in a 400 Bad Request response: {"errors":[{"status":"400","code":"csrf_token_mismatch"}]} in /home/customer/www/cuehacks.com/public_html/wp-content/plugins/sso-flarum/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php:113 Stack trace: #0 /home/customer/www/cuehacks.com/public_html/wp-content/plugins/sso-flarum/vendor/guzzlehttp/guzzle/src/Middleware.php(69): GuzzleHttp\Exception\RequestException::create(Object(GuzzleHttp\Psr7\Request), Object(GuzzleHttp\Psr7\Response), NULL, Array, NULL) #1 /home/customer/www/cuehacks.com/public_html/wp-content/plugins/sso-flarum/vendor/guzzlehttp/promises/src/Promise.php(204): GuzzleHttp\Middleware::GuzzleHttp{closure}(Object(GuzzleHttp\Psr7\Response)) #2 /home/customer/www/cuehacks.com/public_html/wp-content/plugins/sso-flarum/vendor/guzzlehttp/promises/src/Promise.php(153): GuzzleHttp\Promise\Promise::callHandler(1, Object(GuzzleHttp\Psr7\Response) in /home/customer/www/cuehacks.com/public_html/wp-content/plugins/sso-flarum/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php on line 113

maicol07

onemco have you created a master token as the guide says (manually adding it to the database, ...)?

sptcguy

I'm having some weird issues with the PHP plugin. When my application authenticates a user not yet created in Flarum the plugin creates them in the DB. But the process ultametely fails with:

PHP Fatal error: Uncaught GuzzleHttp\Exception\ServerException: Server error: POST https://forum.myapp.com/api/users resulted in a 500 Internal Server Error response:
{"errors":[{"status":"500","code":"unknown"}]}

If I disable the Flarum plugin I can then log directly into Flarum with that new users credentials no problem. If I re-enable the plugin and and attempt to login with the credentials through my auth system, it fails silently. login() returns 1 but the user is not logged in on Flarum.

Thanks for you help!

maicol07

sptcguy that's strange... Can you check the Flarum logs to see if there is some error related to this request?

sptcguy

The only thing in the logs that I can see that might be related are errors connecting to my mail server (which is currently not running). Would that throw an error when a new user is provisioned?

This is the full trace of when a new user is provisioned:
PHP Fatal error: Uncaught GuzzleHttp\Exception\ServerException: Server error: POST https://forum.myapp.com/api/users resulted in a 500 Internal Server Error response:
{"errors":[{"status":"500","code":"unknown"}]}
in /flarum_sso/vendor/guzzlehttp/guzzle/src/Exception/RequestException.php:113
Stack trace:
#0 /flarum_sso/vendor/guzzlehttp/guzzle/src/Middleware.php(69): GuzzleHttp\Exception\RequestException::create()
#1 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(204): GuzzleHttp\Middleware::GuzzleHttp{closure}()
#2 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(153): GuzzleHttp\Promise\Promise::callHandler()
#3 /flarum_sso/vendor/guzzlehttp/promises/src/TaskQueue.php(48): GuzzleHttp\Promise\Promise::GuzzleHttp\Promise{closure}()
#4 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(248): GuzzleHttp\Promise\TaskQueue->run()
#5 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(224): GuzzleHttp\Promise\Promise->invokeWaitFn()
#6 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(269): GuzzleHttp\Promise\Promise->waitIfPending()
#7 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(226): GuzzleHttp\Promise\Promise->invokeWaitList()
#8 /flarum_sso/vendor/guzzlehttp/promises/src/Promise.php(62): GuzzleHttp\Promise\Promise->waitIfPending()
#9 /flarum_sso/vendor/guzzlehttp/guzzle/src/Client.php(187): GuzzleHttp\Promise\Promise->wait()
#10 /flarum_sso/vendor/guzzlehttp/guzzle/src/ClientTrait.php(95): GuzzleHttp\Client->request()
#11 /flarum_sso/vendor/maicol07/flarum-api-client/src/Client.php(68): GuzzleHttp\Client->post()
#12 [internal function]: Maicol07\Flarum\Api\Client->request()
#13 /flarum_sso/vendor/maicol07/flarum-api-client/src/Fluent.php(353): call_user_func_array()
#14 /flarum_sso/vendor/maicol07/flarum-sso-plugin/src/User/Traits/Auth.php(93): Maicol07\Flarum\Api\Fluent->__call()
#15 /flarum_sso/vendor/maicol07/flarum-sso-plugin/src/User/Traits/Auth.php(52): Maicol07\SSO\User->signup()
#16 /flarum_sso/flarum_auth.php(64): Maicol07\SSO\User->login()
#17 /app/user/login/login.php(70): flarumAuth->auth()

maicol07

sptcguy it could be a possibility. Can you try to disable emails in Flarum and try again to login?

sptcguy

Wait, I just re-read your troubleshooting docs. My development application is under a different root domain than my Flarum instance. I'll try moving Flarum under the development domain and seeing if that fixes it.

sptcguy

Ok still running into same error. My app is now under app.domain.com and flarum is under forum.domain.com

Email confirmations are disabled.

I still get the same 500 "unknown" error and when if I re-authenticate with the same user I get a silent fail and login() returns 1

sptcguy

I managed to get the "SSO" component working for existing users but still have the 500 error issue.

maicol07

sptcguy so do you have this issue with new users?

Blatherbox

Thanks for making this extension. I am starting a new project so I am just testing things out at the moment. I have everything installed including the extension and the plugin. I have put the admin user id and 40 character api key in the database. I am trying to use the example to test things out but it seems to fail on this conditional statement. Anybody that has done this can you help out with the login?

// Dummy users
$users = [
    'user' => [
        'password' => 'password',
        'email' => 'user@example.com',
    ],
    'admin' => [
        'password' => 'password',
        'email' => 'user1@example.com',
    ],
];

// Get username and password
$username = $_POST['username'] ?? '';
$password = $_POST['password'] ?? '';

if (!empty(Arr::get($users, $username)) && Arr::get($users, "$username.password") === $password) {
    require_once __DIR__ . '/flarum.php';

Blatherbox

I added a var_dump on these variables I made to see and they are returning NULL. Maybe I am missing something simple lol. Also no errors in the error_log

$test123 = Arr::get($users, $username);
$test1234 = Arr::get($users, "$username.password");
var_dump($test123);
var_dump($test1234);

maicol07

Hi Blatherbox ,
do you have installed the illuminate/support package via composer? Arr is an helper class from that package; depending on your server/php configuration the error might not be printed in the error log.
You can also use the standard PHP array access with isset:

$test123 = isset($users[$username]) ? $users[$username] : null;
$test1234 = isset($users[$username]) ? $users[$username]['password'] : null;
var_dump($test123);
var_dump($test1234);

« Previous Page Next Page »