Key Features:
-
Effortless Single Sign-On (SSO): Users can effortlessly navigate between different WordPress instances without repeated logins.
-
User Role Validation: Administrators can control content access based on assigned user roles.
-
Granular Content Restriction: Fine-tune access to WP Posts, Pages, Custom Posts, and Elementor Widgets, providing precise control over content elements.
-
Country-based Validation: Verify users based on their country of origin, enhancing security and content control.
-
Time-Based Content Restriction: Admins can set time-based restrictions on content elements for precise control over visibility.
Usage:
- Activate the plugin.
- Configure settings by entering the Broker ID and selecting Staging or Production APIs.
Important Note:
- External Server Operations: The plugin delegates login, registration, and logout processes to an external server Identity Provider: https://identity.infectopharm.com/.
Release Notes:
- Privacy Consent Requirement: Introduced a new feature requiring users to accept updated privacy consents whenever a new version is released. This ensures compliance with privacy regulations and keeps users informed about what data is collected and how it is used.
- No Breaking Changes:
Release Notes:
- Composer Integration: Added a composer.json file to the plugin to facilitate integration with our new Composer-based workflow. This allows for easier management, version control, and deployment of the plugin within development environments.
- No Breaking Changes:
Release Notes:
- Elementor Container Restriction Added restrictions to Elementor containers based on user roles.
- Custom Role "Abgemeldet" A custom role has been added for logged out users.
- No Breaking Changes
Release Notes:
- Integration with slenyto.de The plugin has been updated to support slenyto.de.
- No Breaking Changes
Release Notes:
- Dynamic API Endpoint Configuration: Enhanced the
createUrlfunction to dynamically append the appropriate API endpoint ('/login' or '/logout') based on the action parameter. - Introduction of cleanupUrl Function: Added a new private function
cleanupUrlto thecreateUrlmethod. This function sanitizes the URL by removing specific query parameters such as 'loggedOut', 'accountId', and 'refreshToken'. This enhancement ensures cleaner URLs that facilitate more reliable re-login or logout operations. - Adjusted Domain Cookie Switch Logic: The order of cases in the
getDomainswitch statement has been optimized to ensure cookies are set correctly for each associated domain. This precise ordering enhances session management and maintains consistent user states across our various platforms. - Version Update: Updated the versioning scheme from a numerical format to Semantic Versioning (MAJOR.MINOR.PATCH), indicating major, minor, and patch levels for clearer version management.
- Mandatory '/login' Suffix: The addition of the '/login' suffix is now mandatory for the login API endpoint. This change requires the identity system to be configured accordingly to recognize and process this new URL structure. Failure to update the identity system to accommodate this change will result in login failures.
Release Notes:
-
JWT Implementation: The plugin has undergone significant changes, moving away from the previous
tkSSTokencookie for authentication. Instead, it now employs JSON Web Tokens (JWT) for improved security and streamlined token management. -
Transition from Cross-Site Cookie Sharing: The plugin no longer relies on cross-site cookie sharing. Instead, a more secure and efficient redirect principle has been implemented to facilitate communication between different components.
-
Code Refactoring: In this release, extensive code refactoring has taken place. This refactoring aims to enhance readability, maintainability, and overall code clarity. Developers and contributors will find the updated codebase more understandable and easier to navigate.
-
Token Mechanism Update: Due to the adoption of JWT, there are breaking changes in the token mechanism. Ensure your system is compatible with this updated approach.
-
Codebase Adjustments: Developers and contributors should be aware of the extensive code changes. Adjust customizations and enhancements accordingly, considering the refactored codebase.