Token Acceptance

  • ijwoods

    (@ijwoods)


    12 years, 6 months ago

    My brain is fried and appreciate any help. Can this be done? I have a website (not WordPress) in which I want participants to launch over to another website built in WordPress (also mine). I’d like to issue a authorization token from the non-WordPress website and then receive that at the WordPress website when they arrive. Depending on the information contained in the authorization token they would be admitted and brought to a specific category landing page as per the token information. When they are finished at the WordPress site they can then launch back to the non-Wordpress site being issued a token that would let them back in to their specific page.

    Is this doable? Are tokens the best way? Any ideas as to how I might go about this or some good resources to check out?
    thanks for any help.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator bcworkz

    (@bcworkz)

    12 years, 6 months ago

    It’s possible. How difficult depends on the the required level of security. If no security, you could just craft URLs that contain the needed information. Minimal security could be achieved by URL parameters. This is possibly what you had in mind as “tokens”.

    More security could be achieved by planting 3ed party cookies. I’m unsure of the details of 3ed party cookies, I just know it’s done all the time and you need some tiny element from you WP site on your non-WP site in order to plant a cookie that will show up in $_COOKIE with the WP site request.

    If you need the user to be logged into the WP site, you basically need your non-WP site serve a WP like login form where the ultimate destination URL is contained in a hidden field named ‘redirect_to’.

    There’s probably a number of security schemes, some good, others not. I’m not a security expert, if you really need good security, try to find someone that really knows what they’re talking about.

    Thread Starter ijwoods

    (@ijwoods)

    12 years, 6 months ago

    Thank you for the response. I’m going to need to find out more regarding security, but appreciate these simple options as a beginning.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Token Acceptance’ is closed to new replies.