Description
This plugin allow users authenticate with OAuth Providers. If you have Two-Factor verification enabled in account, then it will work or you can use the Google Authenticator App.
Dependencies: curl, bcmath, intl, openssl.
Supported OAuth Providers: Google
Free Features
- Force Login
- Google Authenticator
- Unlimited Users
- Wildcard Domain Support
- Single Domain Restriction
- Hide Login Form
- Hide Navigation Buttons
- Disable XMLRPC
- Disable Rest API
- Login Button Styles
- Save Data on Uninstall
- Persistent sessions
Premium Features
- Multiple Domain Restriction
- Custom Logo
- Auto Register
- Browser Language Detection
- Hide Name Fields
- Hide E-Mail Field
- Hide Password Field
- Auto Fix User Data
Screenshots
General 
Google Authenticator 
Google OAuth 
Login Form
Installation
Unpack “goauth.zip” to the “/wp-content/plugins/” directory.
Activate the plugin through the “Plugins” menu in WordPress.
FAQ-e
If you have some question about setup and options then read “Help” in goauth settings page.
Contributors & Developers
“GOAuth” is open source software. The following people have contributed to this plugin.
Contributors
Translate “GOAuth” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
2.19
- enhancement: SDK update
2.18
- bugfix: Loopback requests problem
- bugfix: Super user session did not destroyed properly after logout
- enhancement: Post authentication redirect update
- enhancement: Improved sessions
2.17
- bugfix: Table bugfix
- enhancement: Tested on PHP 7.4
- enhancement: SDK update
- enhancement: Cookies security update
2.16
- enhancement: Added error messages using wp_die with autoredirect
- enhancement: Improved a redirects
- enhancement: Improved a logout
- enhancement: Improved a authentication
- enhancement: Added option “exclude from autoregister” (useful if you have service accounts in g-suite)
2.15
- bugfix: Admin page destructor bugfix
- bugfix: Downgraded “Monolog” to avoid dependency conflict
- enhancement: Removed “isTokenExpired” because of token refresh limits
2.14
- bugfix: Hode Login Form
- bugfix: Redirect to Requested URI after session refresh
2.13
- enhancement: Google API Client update
- enhancement: UI update
- enhancement: Login button update
- enhancement: Offline MaterializeCSS script and style
- bugfix: option “plugin enable”
2.12
- enhancement: Google API Client update
- bugfix: Template bugfix
- enhancement: Auto Register update
- enhancement: User Default Role option
2.11
- enhancement: Help update
- enhancement: Hide WP Version option
- enhancement: Disable User Enumeration option
- enhancement: Code refactoring
- enhancement: Requirements check
- enhancement: UI update
2.10
- enhancement: Deutsch language
- enhancement: Russian language
- enhancement: English language
- enhancement: domain check update
- enhancement: UI update (interface has become more responsive and now you can change the settings in all tabs and press the save button once)
- enhancement: localization support
2.9
- enhancement: cyrillic detector
- enhancement: cyrillic transliterator
- enhancement: autoregister error handler
2.8
- enhancement: SDK update
- bugfix: asynchronous requests conflict with Gutenberg
2.7
- enhancement: antilockout
- bugfix: generate hash
- enhancement: google api client update
- bugfix: server sessions
2.6
- bugfix: autofix user data
- enhancement: asynchronous requests for cookies
- bugfix: persistent sessions
- enhancement: review notice
2.5
- enhancement: moved garbage collector to wp cron
- bugfix: add suffix if username exist
- bugfix: cookies path
- forward2past: persistent sessions
- bugfix: wordpress authentication session refresh
- forward2past: generate hash
- bugfix: session expiration check
- enhancement: database queries update
- enhancement: replaced some sessions to variables
- bugfix: autofix user data
- enhancement: google api client update
- enhancement: symmetric encryption of tokens
2.4
- bugfix: browser language detection
- enhancement: immediately log out a user on “domain restriction” option change
- enhancement: domain check
- bugfix: database prefix [thanks to Thibaut Colson]
- forward2past: wildcard domain support
- enhancement: code refactoring
- enhancement: new concept
- enhancement: auto fix user data
- enhancement: meterialize design
- bugfix: refresh token update
- bugfix: garbage collector
- bugfix: save data on uninstall
2.3
- License handling updates
- Admin page notices
- 3 button styles (white, black, blue)
- Replaced button on materializecss button
- New asset
2.2
- Replaced long time sessions on authentication cookies refresh
- Sessions confusion bugfix
- Additional checks
- Database queries update
- Google login update
- Authentication mechanism update
- Replaced database clear script on garbage collector method
- Database table update
- Request url bugfix
2.1
- Fixed session hijack
- Logic error exception
- Authentication mechanism update
- Google service error exception
- Requested url
- Improved hash expire check
- Improved server sessions check
- Long time sessions bugfix
- Database queries bugfix
- Cookies bugfix
- Code refactoring
2.0
- Logout bugfix
- Premium multiple domain restriction
- Free single domain restriction
- Removed wildcard domain support
- Some security fix
- Hide password field in profile
- Script for database clearing
- Long time sessions
- Login bugfix
1.6
- Replaced templates with scripts
- Google API Client update
- Session refresh bugfix
1.5
- Some authentication improvements
- Added “Save Data on Uninstall” option
- Added “Disable Rest API” option
- Added “Disable XMLRPC” option
- Added “Google Authenticator” support
- Removed “Bruteforce Security”
1.4
- Premium options
1.3
- Bug fixes
1.2
- Code optimization
1.1
- Force login
- Bruteforce security
1.0
- Google API