jesuralem Posted February 25, 2019 Posted February 25, 2019 Hi, My community is part of a bigger site and is the referentials for users management. I would like to host a login page outside of IPS but allowing users to login with their IPS credentials. Community is under mydomain/forums and the rest of the site is at the root. Ideally once logged in either on the ips side or on the website side he should stay connected on both sides. Now what i wouldn't want is a user having to "allow" my site to access IPS information, simply because it is indeed the same site and people just wouldn't understand why the question would be asked. I know the answer to that is Oauth but what option should we use ? and is there a PHP Oauth client that would be working nicely with IPS. Basically all i need is to validate the users credentials, the site already has an API access to everything it needs otherwise.
Joel R Posted February 26, 2019 Posted February 26, 2019 Hi @jesuralem welcome to IPS. What other platform do you use? If it's WordPress, you can follow this guide for oAuth 2 login:
jesuralem Posted February 26, 2019 Author Posted February 26, 2019 It is custom dev :). I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/ and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/ I sent it to my developper, it seems it might help. The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same.
bfarber Posted February 26, 2019 Posted February 26, 2019 6 hours ago, jesuralem said: It is custom dev :). I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/ and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/ I sent it to my developper, it seems it might help. The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same. You can 1) Use the password credentials grant so that users submit their username and password directly to the forums (while still using OAuth behind the scenes to authenticate through your front end). And... 2) Use an SSO plugin which you would need to custom develop in order to automatically log users in to the forums if they are logged in to the front end.
jesuralem Posted February 26, 2019 Author Posted February 26, 2019 Thanks for the answer. Do i have a chance to achieve anything with the links i posted ? it seems wey simpler :). We will use OAuth if necessary but it this simple case it is a pain. Or maybe we will just redirect the usr to the login page, but not being able to send him back the the original page is a problem...
jesuralem Posted February 26, 2019 Author Posted February 26, 2019 Or would there be a solution to make it so the /login page redirects to its referer (even if it is outside IPS) ?
jesuralem Posted February 27, 2019 Author Posted February 27, 2019 i found this : but it does not seem to work, so disapointed...
bfarber Posted February 27, 2019 Posted February 27, 2019 Yes, you can take an alternative approach based on the links you supplied.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.