Invision Community 4: SEO, prepare for v5 and dormant account notifications Matt November 11, 2024Nov 11
Posted February 25, 20196 yr Hi, My community is part of a bigger site and is the referentials for users management. I would like to host a login page outside of IPS but allowing users to login with their IPS credentials. Community is under mydomain/forums and the rest of the site is at the root. Ideally once logged in either on the ips side or on the website side he should stay connected on both sides. Now what i wouldn't want is a user having to "allow" my site to access IPS information, simply because it is indeed the same site and people just wouldn't understand why the question would be asked. I know the answer to that is Oauth but what option should we use ? and is there a PHP Oauth client that would be working nicely with IPS. Basically all i need is to validate the users credentials, the site already has an API access to everything it needs otherwise.
February 26, 20196 yr Hi @jesuralem welcome to IPS. What other platform do you use? If it's WordPress, you can follow this guide for oAuth 2 login:
February 26, 20196 yr Author It is custom dev :). I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/ and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/ I sent it to my developper, it seems it might help. The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same.
February 26, 20196 yr 6 hours ago, jesuralem said: It is custom dev :). I found this : https://invisioncommunity.com/forums/topic/445586-external-login-issue-with-43/ and this : https://invisioncommunity.com/developers/docs/members-authentication/developing-single-sign-on-sso-integration-r65/ I sent it to my developper, it seems it might help. The problem i ave with Oauth is that from what i understand my users will have a pop-up asking them to authorize my site to access their profile on the forum, it just doesn't make any sense when the domain is the same. You can 1) Use the password credentials grant so that users submit their username and password directly to the forums (while still using OAuth behind the scenes to authenticate through your front end). And... 2) Use an SSO plugin which you would need to custom develop in order to automatically log users in to the forums if they are logged in to the front end.
February 26, 20196 yr Author Thanks for the answer. Do i have a chance to achieve anything with the links i posted ? it seems wey simpler :). We will use OAuth if necessary but it this simple case it is a pain. Or maybe we will just redirect the usr to the login page, but not being able to send him back the the original page is a problem...
February 26, 20196 yr Author Or would there be a solution to make it so the /login page redirects to its referer (even if it is outside IPS) ?
Archived
This topic is now archived and is closed to further replies.