Subpages behind SAML

  • tchau1

    (@tchau1)


    5 years, 9 months ago

    Hi,

    I’m setting up our WordPress admin sites with OneLogin. While most of the admin pages require a SAML session token to access, there are a few pages that are still accessible even without a session token and do not require the user to authenticate through OneLogin to access.

    Could anyone guide me in the right direction to on how to resolve this?

    Thanks!

Viewing 1 replies (of 1 total)
  • Moderator bcworkz

    (@bcworkz)

    5 years, 9 months ago

    I recommend asking in the dedicated support channel for OneLogin. The devs and expert users there are in a better place to answer your question.

    I don’t know how OneLogin works, but I can tell you that WP checks if the user is logged in and allowed to access privileged content by calling auth_redirect(), which redirects the user to the login page if they are not logged in. Thus we can require any page to require login by adding this function to the page’s template code. If OneLogin somehow hooks into this process, it may be all that’s required. But I don’t really know.

Viewing 1 replies (of 1 total)

The topic ‘Subpages behind SAML’ is closed to new replies.