Users getting logged out after redirecting back from payment gateway
By
Vineet Sawant, in Getting Started
-
Recently Browsing 0 members
No registered users viewing this page.
-
Similar Content
-
By modifiedcontent
I have 100+ spam/Russian user accounts on a semi-test site. Is deleting them one by one the only option? Is there no way to select a whole page of spam user accounts and batch delete them?
-
By Sergio
Did someone try to use Auth0 for social and/or passwordless login in PW?
And is there somebody interested in porting their Wordpress plugin (that looks awesome) to ProcessWire?
https://wordpress.org/plugins/auth0/
I have not the resources right now but I can help testing it.
This is how their plugin works:
Regular flow
There are three different scenarios that could take place.
First, a user that not exists in WordPress and it does in your Auth0 account try to log in.
A user access your site's login page. (s)he completes his credentials (it could be an existing user in your Auth0 account or a new signup). Auth0 will authenticate the user The plugin gets the user profile. The plugin check if there is a user in the WordPress database with his/her Auth0 user_id. It can't find any, so it will check if there is a user with the same email. It can't find ant, so it will create a new user and log him/her in. Second, a user that exists in WordPress (this user was created before you installed the plugin) and in your Auth0 account try to log in.
A user access your site's login page. (s)he completes his credentials (it could be an existing user in your Auth0 account or a new signup). Auth0 will authenticate the user The plugin gets the user profile. The plugin check if there is a user in the WordPress database with his/her Auth0 user_id. It can't find any, so it will check if there is a user with the same email. There is a user with the same email. It checks if the Auth0 user has verified the email. If the user has not verified the email, the process end here with an error message If the email was verified, it will update the user with the Auth0 user_id and log the user in. Third, a user that exists in WordPress (this user was created in the scenario one, or updated in the scenario two) and in your Auth0 account try to log in.
A user access your site's login page. (s)he completes his credentials (it could be an existing user in your Auth0 account or a new signup). Auth0 will authenticate the user The plugin gets the user profile. The plugin check if there is a user in the WordPress database with his/her Auth0 user_id. It finds the user, and logs him in. Data migration
When data migration is enabled, the plugin will expose two secure endpoint to let Auth0 authenticate the users.
This endpoints are secured with a secret token and only available to the Auth0 IPs. You can change this in the plugin advanced settings.
The login flow is the following:
A user access your site's login page. He has an account in your wordpress site so (s)he proceds to login using this credentials. Auth0 can't find a user with this credentials in your account, so proceds to call your migration endpoint. The plugin find a user with the same username/email and verifies the password. Auth0 creates the user in your account and authenticate the user successfully. -
By dowmedia
Hello,
In my web app I am needed an event calender separate for each registered user of the site. I used Luxicul calender.
Every thing is working fine except the auto sign in into calendar when user sign in into site.
I have installed the calender in site folder. and then as per there documentation.
<?php $session->lcUser = $caluser; ?> //$caluser is the email of user <iframe id="lcmini" src="<?php echo $config->urls->site ;?>/luxcal/lcmini.php"></iframe> I have write this code users.php template(Into template folder ).In above code I have put user->email in to session variable. thats all I got in there documentation.After debugging I found that my session variable is not passing into the page of Iframe. so it is not sign in automatically .
Any help is much appreciated.
Thanks In advance
Syed Furquan
-
By laufi
Hello!
I'm quite new to Processwire. Currently I'm selling my first Processwire based site to a customer. She is thrown out of the admin interface often. The session logs,which are attached, are showing that her IP changes to 0.0.0.0 periodically. She is using Mac OS X Lion with the bundled Safari. How can I work out the issue?
Thanks for your help
laufi
-
By Vineet Sawant
Hi,
I'm working on a simple Ionic app which is going to use ProcessWire as the backend.
This app allows people to upload images and then like/comment on them. It's a lot like a stripped down imgur app.
I've set up some basic services such as register, login & reset password.
There are a couple of things I am doubtful about.
1. How do I get user's unique session Id once he's successfully authenticated through AngularJS's http post request?
I'm currently using following code:
$sessions = $session->getAll(); $session_id = $session->_user["fingerprint"]; But I'm not sure if that's the right way to do it. I'm not even sure if that's the session id. I know there's something called SessionCSRF["name"], I tried that.
I'm sending session_id as response to http post request. Then I'm using that session id to check if user is authenticated for his/her further actions such as commenting/liking/posting etc.
2. Now that I've got the session id, how do I identify the user based on the given session id? or should I send user ID back to PW everytime user is performing any action?
Is it possible to identify user just based on the session fingerprint that I'm giving back to the app?
Among other things I'm considering are keeping a device id on the server for each user, so as to gain better control over user's sessions.
I can log out all the devices linked at once etc.
I'd really love to hear from you guys how you'd plan to do this app. I'm experienced with PW but not very much with AngularJS.
Thank you.
-