wordpress-indieauth
wordpress-indieauth copied to clipboard
indieweb
IndieAuth for WordPress
If user's password or email changes, consider invalidating their tokens.
This is, to some degree, by design...but should administrators be able to see/revoke tokens of other users?
It appears that there's a conflict with this plugin and the popular [Jetpack](https://github.com/automattic/jetpack) plugin. When this plugin is activated, attempting to access the Jetpack dashboard results in a "You are...
the sub claim is required to be compatible with [mod_oauth2](https://github.com/OpenIDC/mod_oauth2) (a pure OAuth client for Apache). This is the minimal implementation of https://github.com/indieweb/wordpress-indieauth/issues/286.
For the [introspection endpoint](https://github.com/indieweb/wordpress-indieauth/blob/4a4aaf62221978c101bdd6900e9f1779ea97ea48/includes/class-indieauth-introspection-endpoint.php#L69), it only returns the `active` claim in the identity token but [the spec requires more](https://indieauth.spec.indieweb.org/#access-token-verification-response) (and so does the underlying OAuth spec). More specifically, [mod_oauth2](https://github.com/OpenIDC/mod_oauth2) requires...
Updates the requirements on [yoast/phpunit-polyfills](https://github.com/Yoast/PHPUnit-Polyfills) to permit the latest version. Release notes Sourced from yoast/phpunit-polyfills's releases. 4.0.0 - 2025-02-09 PHPUnit 12 support This release updates the PHPUnit Polyfills to allow...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
hi! I'm on WordPress 6.7.1 with WPEngine as my host. They don't allow use .htaccess anymore and I haven't been able to resolve the "Authorization Test Failed" error. The WPEngine...
