Deskripsyon

This plugin allows to authenticate users against OpenID Connect OAuth2 API with Authorization Code Flow.
Once installed, it can be configured to automatically authenticate users (SSO), or provide a “Login with OpenID Connect”
button on the login form. After consent has been obtained, an existing user is automatically logged into WordPress, while
new users are created in WordPress database.

Much of the documentation can be found on the Settings > OpenID Connect Generic dashboard page.

Please submit issues to the Github repo: https://github.com/daggerhart/openid-connect-generic

Pag-install

Upload to the /wp-content/plugins/ directory
Activate the plugin
Visit Settings > OpenID Connect and configure to meet your needs

FAQ

What is the client’s Redirect URI?

Most OAuth2 servers will require whitelisting a set of redirect URIs for security purposes. The Redirect URI provided
by this client is like so: https://example.com/wp-admin/admin-ajax.php?action=openid-connect-authorize

Replace example.com with your domain name and path to WordPress.

Can I change the client’s Redirect URI?

Some OAuth2 servers do not allow for a client redirect URI to contain a query string. The default URI provided by
this module leverages WordPress’s admin-ajax.php endpoint as an easy way to provide a route that does not include
HTML, but this will naturally involve a query string. Fortunately, this plugin provides a setting that will make use of
an alternate redirect URI that does not include a query string.

On the settings page for this plugin (Dashboard > Settings > OpenID Connect Generic) there is a checkbox for
Alternate Redirect URI. When checked, the plugin will use the Redirect URI
https://example.com/openid-connect-authorize.

Mga Review

Robert Pebrero 24, 2025

We have been using the plugin for several years. It’s without frills and works absolutely reliably. Many thanks!

imoorena Agosto 28, 2024

As simple as it needs to be with no added cruft. Easy to configure and use.

Matthias Kittsteiner Oktubre 17, 2023

After testing multiple OpenID plugins – even paid one – this is by far the best. Thank you! Some suggestions for improvements: more flexible filtering, better documentation and enhanced multisite support.

Xavi Ivars Mayo 27, 2023

Every other plugin is simply a trap to get you paying a premium version. This one simply works as expected, with no bloatware. 🙂

V.E.L Abril 2, 2023

Been trying all other OpenID plugins, ended up uninstalling them, premium issues, bloatware, etc. Tried this once only, now i’m using it on all my Wordpress sites. thanks a lot! I just hope it’s maintained.

kumitterer Pebrero 18, 2023

I tried a couple of other OIDC/OAuth2 client plugins and this is the only one that Just Works™ out of the box. Perfect.

Basahin lahat ng 19 na review

Mga Contributor at Developer

Ang “OpenID Connect Generic Client” ay open source software. Ang mga sumusunod na tao ay nag-ambag sa plugin na ito.

Ang “OpenID Connect Generic Client” ay naisalin na sa 2 (na) mga locale. Salamat sa mga tagasalin para sa kanilang mga kontribusyon.

Isalin ang “OpenID Connect Generic Client” sa iyong wika.

Interesado sa development?

Tingnan ang code, i-check ang SVN repository, o mag-subscribe sa development log sa pamamagitan ng RSS.

Changelog

3.10.2

Fix: @socialmedialabs – Regression affecting SSO Auto Login with url handling improvement changes.

3.10.1

Chore: @daggerhart – Readme updates and clarifications.
Chore: @daggerhart – Release workflow updates.
Improved error handling for malformed urls.
Fix: @JUVOJustin – Change request for userinfo to GET.
Feature: @JUVOJustin – New filter for settings values openid-connect-generic-settings.
Feature: @JUVOJustin – New filter for state values openid-connect-generic-new-state-value.

3.10.0

Chore: @timnolte – Dependency updates.
Fix: @drzraf – Prevents running the auth url filter twice.
Fix: @timnolte – Updates the log cleanup handling to properly retain the configured number of log entries.
Fix: @timnolte – Updates the log display output to reflect the log retention policy.
Chore: @timnolte – Adds Unit Testing & New Local Development Environment.
Feature: @timnolte – Updates logging to allow for tracking processing time.
Feature: @menno-ll – Adds a remember me feature via a new filter.
Improvement: @menno-ll – Updates WP Cookie Expiration to Same as Session Length.

3.9.1

Improvement: @timnolte – Refactors Composer setup and GitHub Actions.
Improvement: @timnolte – Bumps WordPress tested version compatibility.

3.9.0

Feature: @matchaxnb – Added support for additional configuration constants.
Feature: @schanzen – Added support for agregated claims.
Fix: @rkcreation – Fixed access token not updating user metadata after login.
Fix: @danc1248 – Fixed user creation issue on Multisite Networks.
Feature: @RobjS – Added plugin singleton to support for more developer customization.
Feature: @jkouris – Added action hook to allow custom handling of session expiration.
Fix: @tommcc – Fixed admin CSS loading only on the plugin settings screen.
Feature: @rkcreation – Added method to refresh the user claim.
Feature: @Glowsome – Added acr_values support & verification checks that it when defined in options is honored.
Fix: @timnolte – Fixed regression which caused improper fallback on missing claims.
Fix: @slykar – Fixed missing query string handling in redirect URL.
Fix: @timnolte – Fixed issue with some user linking and user creation handling.
Improvement: @timnolte – Fixed plugin settings typos and screen formatting.
Security: @timnolte – Updated build tooling security vulnerabilities.
Improvement: @timnolte – Changed build tooling scripts.

3.8.5

Fix: @timnolte – Fixed missing URL request validation before use & ensure proper current page URL is setup for Redirect Back.
Fix: @timnolte – Fixed Redirect URL Logic to Handle Sub-directory Installs.
Fix: @timnolte – Fixed issue with redirecting user back when the openid_connect_generic_auth_url shortcode is used.

3.8.4

Fix: @timnolte – Fixed invalid State object access for redirection handling.
Improvement: @timnolte – Fixed local wp-env Docker development environment.
Improvement: @timnolte – Fixed Composer scripts for linting and static analysis.

3.8.3

Fix: @timnolte – Fixed problems with proper redirect handling.
Improvement: @timnolte – Changes redirect handling to use State instead of cookies.
Improvement: @timnolte – Refactored additional code to meet coding standards.

3.8.2

Fix: @timnolte – Fixed reported XSS vulnerability on WordPress login screen.

3.8.1

Fix: @timnolte – Prevent SSO redirect on password protected posts.
Fix: @timnolte – CI/CD build issues.
Fix: @timnolte – Invalid redirect handling on logout for Auto Login setting.

3.8.0

Feature: @timnolte – Ability to use 6 new constants for setting client configuration instead of storing in the DB.
Improvement: @timnolte – Plugin development & contribution updates.
Improvement: @timnolte – Refactored to meet WordPress coding standards.
Improvement: @timnolte – Refactored to provide localization.

See the previous changelogs here

Great Plugin!

It just works!

Best OpenID plugin and free!

Best Openid client plugin by far.

The best there is, lightweight and easy to use

Works