jetpack icon indicating copy to clipboard operation
jetpack copied to clipboard

Published 20 hours ago verified publisher icon Automattic

SSO on dotcom: Allow Local Users to Access AT Sites Without Being Logged into wp.com

Open mrfoxtalbot opened this issue 6 months ago • 8 comments

Impacted plugin

Jetpack

Quick summary

When a local user tries to log into a WordPress.com, they are required to sign up for WordPress.com and log in first.

The only exception is Classic Interface sites, where users can visit /wp-admin and log in without logging into WordPress.com

This is a significant departure from the dotorg experience and can be extremely confusing. I would argue that Local users should be able to access any AT sites (Classic or Default) without the need to log into WordPress.com first.

More context in p1724253856166289-slack-C048CUFRGFQ and pc4f5j-4IL-p2where

Steps to reproduce

  1. Create a Local Users on a Default Interface Site (example.com)
  2. Open an incognito window, visit example.com/wp-admin
  3. Notice how you are redirected to https://wordpress.com/log-in and asked to login there first.

A clear and concise description of what you expected to happen.

Visiting example.com/wp-admin should work out of the box on ALL Atomic sites.

What actually happened

I got redirected to dotcom and the credentials I had been given did not work Screenshot 2024-08-22 at 20 14 03

Impact

All

Available workarounds?

Yes, difficult to implement

If the above answer is "Yes...", outline the workaround.

No response

Platform (Simple and/or Atomic)

Atomic

Logs or notes

No response

mrfoxtalbot avatar Aug 22 '24 18:08 mrfoxtalbot