tbenyon
Forum Replies Created
-
Forum: Plugins
In reply to: [External Login] Fork supportI believe this got rolled into regular release. I would advise upgrading the version on a test environment first to ensure everything works as expected.
Thanks,
Tom
Forum: Plugins
In reply to: [External Login] Fork supportHi John,
I hope you’re well!
I no longer maintain this plugin. The current latest version is 1.11.2 and I don’t have plans to update it.
However, the code is Open Source if updates are needed and someone wants to do them.
Warm regards,
Tom Benyon
Forum: Plugins
In reply to: [External Login] Exclude Users functionalityFantastic news. Good luck with your project.
If you get a minute to write a review I’d be very grateful.
Forum: Plugins
In reply to: [External Login] Exclude Users functionality… and I forgot to say – Thank you for the beer π
Forum: Plugins
In reply to: [External Login] Exclude Users functionalityHey there Sascha,
I’ve not worked on this plugin for some time so apologies that my answer may not be perfect.
As that is a beta feature it may not work, however it may not work well with the empty state.
What I would be more confident would work would be the
exlog_hook_filter_custom_should_excludehook. Here’s the notes on it from the documentation:- exlog_hook_filter_custom_should_exclude
This hook allows you to add custom logic to exclude users.
It provides you with all the data for the user that is stored in the external database users table.
If you returntrue(or a string - see below regarding custom error messages) from this function it will prevent the
user logging in, and returningfalsewill bypass this exclusion.
For example, let's say your external users table had a field calledexpirywhich stored a date. In this example we
want to block users if they login after their expiry date.
Adding the following to yourfunctions.phpwould achieve this:<br>function myExlogCustomExcluder($userData) {<br>return strtotime($userData['expiry']) < strtotime('now');<br>}<br>add_filter('exlog_hook_filter_custom_should_exclude', 'myExlogCustomExcluder', 10, 1);<br>
Alternatively if you provide a string the user will be blocked and the string will be used as the error for the user.<br>function myExlogCustomExcluder($userData) {<br>return strtotime($userData['expiry']) < strtotime('now') ? 'Your account has expired' : false;<br>}<br>add_filter('exlog_hook_filter_custom_should_exclude', 'myExlogCustomExcluder', 10, 1);<br>The below code is what I imagine would work for you but I haven’t done any testing.
function myExlogCustomExcluder($userData) {
return empty($userData['email_verified_at') ? 'Your e-mail has not been verified' : false;
}
add_filter('exlog_hook_filter_custom_should_exclude', 'myExlogCustomExcluder', 10, 1);Forum: Plugins
In reply to: [External Login] First login with email addressHey there,
This was a personal project that I haven’t worked on for some years but I’ve had a quick look for you.
Unfortunately it appears you are correct and this is a limitation of the software. Although you could choose which field is used as the “username” on the external database it doesn’t allow for two options (e.g. e-mail OR username).
This project is fully open source so if you are a developer or would like to pay for a developer to add this feature the main logic would need adding here
plugin-files/login/db.phpThe repository can be found here.
If you have any other questions I’ll do my best to answer them.
Warm regards,
Tom π
Forum: Plugins
In reply to: [External Login] Can’t Connect to MSSQL but no problem with MySQLthatβs great news π
Forum: Plugins
In reply to: [External Login] Can’t Connect to MSSQL but no problem with MySQLHi there,
You need to ensure sqlsrv is installed on your server.
Kind regards,
Tom
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesAlso, what happens if you press the test button?
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesAre you getting an error? What settings do you have configured in the first settings block?
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesThis is the default behaviour of the plugin so you simply need to fill in the rest of the settings.
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesHow to do what sorry?
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesI’m assuming “Site A” is a site with existing users and “Site B” is where you will be installing this plugin and expecting users from “Site A” to be able to login to “Site B”.
If this is what you want this is exactly what the plugin does. It does not sync user changes back to site A. When a user logs into Site B, a clone of that user is migrated to Site B.
I think I’ve answered your questions so I’m marking as resolved but if you have any other questions please keep firing questions.
Thanks π
Forum: Plugins
In reply to: [External Login] transferring a username and password between 2 sitesHi there,
If you mean the stored hash in the local database is different to the external database, this is by design.
The external database could be using a different hashing algorithm to that which WordPress uses (bcrypt). Thus we always use WordPresses hashing (bcrypt) when storing the password. This also means that if the security of bcrypt is updated (e.g. more rounds) we still store the password in the most secure way.
Iβm sure youβre aware but even if you use bcrypt twice to store the same password you will get different hashes as a new salt is used every time.
Regarding the second question, you are correct. Please read the βIs this plugin what I need?β section in the documentation. If you are looking for Single Sign On you should be looking at a different solution.
Forum: Reviews
In reply to: [External Login] What a piece of plugin!Hey Dario,
Thanks for the positive feedback.
To answer your question, the answer is no not really. To have a logged in session, WordPress relies on their being a logged in user stored.
You could theoretically use the hook exlog_hook_action_authenticated to annonomise the login details or something? I don’t know your use case for not wanting the users stored there.
Thanks,
Tom
- This reply was modified 2 years, 2 months ago by tbenyon.