Single Sign On

KillMeNext

I tried to put this in fileflarum-sso/Forum.php where I saw the response from user, but nothing showed up when I ran through the code. Isn't it supposed to display on screen, or did I do it wrong?

$response = $this->sendPostRequest('/api/users', $data);
var_dump($response);
return isset($response['data']['id']);

KillMeNext

Well, this was sure helpful. Oh well, I guess.

MingZ

Nice extension, good job !

Got couple of questions(Solution found after installing the extension):

Has anyone successfully removed/disabled the default Flarum register/login component ?
-- Found this extension will all user to redirect login, logout and signup to parent domain. ?
Has anyone removed/disabled the login profile setting page ?

-- Found the profile setting will be removed after installing this extension. ?

kmk

This extension can be apply for Invisionpower suite? I have community build with IPS, but I want replace forum of ips with Flarum, so I still use others apps of ips but when user want use forum(flarum) they don't need register again and sign in 2 times(one time for ips and other time for Flarum).

MingZ

UaMV

Hi @UaMV

How did you clear cookies for both sub domain and primary domain ?

I tried to use PHP unset() and setcookie('flarum_remember', '', time() - 10, '/' ).
None of them are working on my server. var_dump($_COOKIE) is always showing an unknown token on "flarum_remember"

Did you use javascript to clean the client's cookies on browser ?

==================== Update
Never mind. It was because of my browser cookie setting. I used the incognito mode on Google Chrome, and it started to work.

oswinondarza

Great Extension ! thanks a lot. The only thing not working for me is the logout. The logout integration following the sample_website example successfully removes the "flarum_remember" which it great, however my user in flarum is still logged in. Everything is working fine cause I can see the "flarum_remember" cookie removed, however I still see a "flarum_session" cookie living in the flarum subdomain. Do I need to also remove this "flarum_session" in order to have the user completely logged out ?

I tried these modifications adding a new variable in the config, but still no luck, user is still logged in in flarum.

public function logout()
{
    $this->removeRememberMeCookie();
    $this->setCookie('flarum_session', '', time() - 10);
}

private function setCookie($key, $token, $time)
{
setcookie($key, $token, $time, '/', $this->config['root_domain']);
setcookie($key, $token, $time, '/', $this->config['forum_subdomain']);
}

Thanks for any help provided !

clarkwinkelmann

oswinondarza there is an issue with logout response cookies having wrong settings and not being deleted correctly in particular circumstances with Flarum logout route in beta7. There is already a fix in beta8.

Here's where I encountered the issue when making an extension https://github.com/flagrow/impersonate/blob/f7332752ee57fcf41eb11f9711d3ccbfcf5219f4/src/Controllers/LoginController.php#L56 .

Not sure if it's related to your case or not at all. Putting this here just in case.

MingZ

Hi @wuethrich

For anyone who has migrated from phpbb to flarum and wants to keep old user's login from main website. Do you think will need a feature like below ? (I went through this change for my employer and work is done. I wonder if others will need this implementation )

I used https://github.com/robrotheram/phpbb_to_flarum for DB migration. You will need some adjustment in forum.php, because migration code doesn't copy over the password d from phpbb DB to Flarum DB. The suggestion will only work when:

Your main website stores your phpbb username and old password
Flarum only got all user names and sha1(md5(time())) encrypted password.
-- It is a bit tricky on the flarum username as well after migration. It will remove all spaces between words. For example, if your phpbb username used to be "alex wood", flarum login will check 'alexwood' for login process.

To be able to allow your user login from main website to flarum seamlessly, you may need to add couple of new steps to the file 'Forum.php'

Create function to fetch user ID from API "GET"->"/api/users/$username"
Then reset Flarum user password from stored phpbb password. This will need to use API "PATCH"->"/api/users/$id" and phpbb password in its body.
functions to send curl GET request and curl PATCH request.

If you need detail of the code, I can try to post it to github later.

wuethrich

MingZ Thanks for sharing this information. I can add a extra chapter to the README if you like. Just create a PR or send me all required information and I can update it.

MingZ

Hi wuethrich

Sorry about delay. Here is the pull request.

https://github.com/fabwu/flarum-ext-sso/pull/8

Please ignore the new lines or white spaces.
I have modified the login function to suit my demand. But if you have any better solution, feel free to edit the pull request. Because my change may break systems that are currently using this extension.

This code seats in login page when login is successful on main website.

$forum = new Forum();
$forum->resetPassword(strtolower(str_replace(' ', '', $member_strforumusername)), $member_strforumhash );
$forum->login( strtolower(str_replace(' ', '', $member_strforumusername)) , $stremail, $member_strforumhash);

TheMohitMadan

@wuethrich Thanks for creating this extension.

Will this work if the main site and sub-domain are on two different servers?
I have tried to implement the above and I can see new user being created but unable to login.

TheMohitMadan @wuethrich I have tried to put it on a sub-domain, but the problem remains the same. When I signup, new user is being created, but it does not automatically login. Same for the login process.

wuethrich

TheMohitMadan It should work if your website is on a different server. Make sure the flarum_remember cookie get created upon a successful login.

Sinamics

@wuethrich I have a flarum site with farily amount of users. I now want to create a wordpress landing site to be the main webpage, and put flarum on a sub domain.

If i understand correct after reading this post, exsisting flarum users wont be able to login on the wordpress site?

Could you just confirm if my perception is correct.
Thx

wuethrich

Sinamics Yes you're right. This plugin only allow logins from WP to Flarum but not in the opposite direction.

FebriTriHarmoko

this tutorial can Intergate Susbcriber account from wordpress with flarum?

clarkwinkelmann

FebriTriHarmoko I believe it's exactly what this extensions says it does ? Could you maybe be more specific about the feature you're asking about ?

laiha

wuethrich Upload the Forum.php class and config.php to your main website and setup the Forum.php class. An example is given in index.php / logout.php.

The Forum.php and config.php put on wordpress site root ??

laiha

Hi ,
My WordPress website is www.example.com and flarum is forum.example.com. I have been setup ,When I link to Forum via the WordPress successfully created a new user in the forum database, but not login to forum. The falrum_remember cookie not present under Forum.
thanks

NathalieTowanga

Hello ! I'm trying to integrate your module to a SocialEngine website...

The forum is on a subdomain
I have a problem with curl_exec function - Error 500
When I look at the log I have this error

[Wed Nov 07 13:54:07 2018] [error] [client 109.133.215.114] FastCGI: comm with server "/var/www/clients/client0/web24/cgi-bin/php5-fcgi--443-mydomain.com" aborted: idle timeout (30 sec)
[Wed Nov 07 13:54:07 2018] [error] [client 109.133.215.114] FastCGI: incomplete headers (0 bytes) received from server "/var/www/clients/client0/web24/cgi-bin/php5-fcgi--443-mydomain.com"

curl is installed and is working for other domains.
Any idea of what's wrong ?

Thank you 🙂

dmh

Does this extension work with Flarum 0.1.0-beta.8.1?

« Previous Page Next Page »