WordPress login (WordPress Single Sign-On) using JWT token obtained from other WordPress sites or applications. Synchronize user sessions between your …
The WordPress Login and Register using JWT plugin allows you to log in (Single Sign-On) into your WordPress application using the JWT token(JSON Web token) obtained from any other WordPress site or other applications/platforms including mobile applications. This helps users perform autologin to WordPress and synchronize user sessions without the need to log in again.
| Features | WordPress JWT Login Setup Guide | Videos |
WORDPRESS SINGLE SIGN-ON / SSO ( LOGIN INTO WORDPRESS )
WordPress Single Sign-On SSO also simply called WordPress SSO allows you to login into WordPress using the credentials of other platforms. So, the user will just use a single set of credentials to log in to multiple applications.
WordPress Single Sign-On / SSO using JWT(JSON Web Token)
WordPress Single Sign-On (SSO) with JWT allows you to log into the WordPress site using the user-based JWT token obtained externally when the user authenticates for the first time in any connected external application.
The JWT token authentication is the most popular way of authentication nowadays as it is a secure and lightweight protocol. The JWT token can be obtained either when a user logs into other platforms via OAuth/OpenID Connect protocol or can be created explicitly using the user information and secure algorithms.
With this plugin, you can easily use the user-based JWT token to log a user in rather than asking them to authenticate again.
Let’s take an example – If you have a WordPress site and mobile app, now if you are logged into the mobile app, now if you try to access the WordPress site, then to access the particular content, the WordPress site will ask for login again and which is not feasible, so with the JWT SSO (JWT Single Sign-On), you can create the JWT token for the user who is already logged into the mobile app and then on accessing the WordPress site, you can pass that JWT token in the request, using which the same user can authenticate and autologin to the WordPress site and hence won’t need to enter the credentials again.
It supports possibly all kinds of JWT tokens (access-token/id-token) obtained from OAuth/OpenID Connect providers like AWS Cognito, Microsoft Azure AD, Azure B2C, Okta, Keycloak, ADFS, Google, Facebook, Apple, Discord and popular applications like Firebase.
WordPress login using the JWT also called JWT SSO (Single Sign-On) can be done from other platforms and applications including mobile apps (android or IOS), an app built with other programming languages like .NET, JAVA, PHP, JS etc.
WordPress Login Endpoint to create user-based JWT token
Plugin provides the following API endpoint, which can be used to authenticate WordPress users and returns a user-based JWT which can be used to create login sessions in WordPress and other external applications.
/wp-json/api/v1/mo-jwt
WordPress Login using JWT
This feature provides a way to auto-login users in WordPress using JWT obtained in a very secure way either via passing JWT token in the URL as a parameter, in the request header or shared via secured cookies.
WordPress user register API endpoint to create users in WordPress using API
This feature provides the following API endpoint to create users in WordPress in an easy way and on successful user registration, you will receive a JWT token in the response which can be used further for user login and WordPress REST API authorization.
wp-json/api/v1/mo-jwt-register
Delete/Remove users from WordPress using the user-based JWT token (JSON Web Token)
This feature provides an API endpoint using which you can pass the JWT token and can easily delete the user and revoke access.
wp-json/api/v1/mo-jwt-delete
More details for the plugin setup can be checked from here.
Login to External applications using WordPress credentials
If you are looking to authenticate your WordPress users to log in to external applications, then our plugin provides a login API endpoint using which you can easily authenticate WordPress users and can log in the users to those applications.
Single Sign-On Users using the JWT token provided by OAuth/OpenID providers
This WordPress login and register using the JWT plugin supports the WordPress Single Sign On (WordPress SSO) or WordPress login using the user-based JWT token (id-token/access-token) provided by the external OAuth/OpenID Connect providers (like Microsoft Azure AD, Azure B2C, AWS Cognito, Keycloak, Okta, ADFS, Google, Facebook, Apple, Discord and many more..) on login in some other sites/applications using their credentials.
So, the user just needs to log in once on any other sites/platforms and a JWT token will be provided by these providers for those users will then be used further with security to autologin in other platforms.
FREE PLAN
Create JWT feature
User Registration feature
User Deletion feature
User login feature
PREMIUM PLAN
Create JWT feature
User Registration feature
User Deletion feature
User login feature
OAuth Single Sign On – SSO (OAuth Client) – This plugin allows Single Sign On – SSO login in your WordPress site using external OAuth 2.0, OpenID Connect Providers
SAML Single Sign On – SSO Login – This plugin allows Single Sign On – SSO login in your WordPress site using external SAML, WS-FED Providers
WordPress REST API Authentication – This plugin protects your WordPress REST API endpoints from unauthorized access using secure OAuth 2.0, JWT authentication, Basic authentication, Bearer API Key token and even more.
This plugin does not store any user data. This plugin uses login.xecurify.com for registration as miniOrange uses login.xecurify.com if the user chooses to register and upgrade to premium. If the user does not want to register then he can continue using the free plugin. (Link to the privacy policy – https://www.miniorange.com/privacy-policy.pdf )
This section describes how to install the WP JWT Login and Register plugin and get it working.
Plugins > Add New
JWT Login
. Find and Install the WP JWT Login and Register
plugin by miniOrangewp-jwt-login
directory to your /wp-content/plugins/
directory.JWT(JSON Web token) login allows you to login into any platform like WordPress using the user-based JWT token rather than passing the actual login credentials. Also, it is a highly secure way to log in as the JWT which consists of user information is signed using highly secure HSA and RSA algorithms.
JWT SSO(Single Sign-On) or SSO using JWT token allows the user to log in to any platform using one set of credentials and then JWT formed from the logged-in user details can be used to login automatically to other platforms and does not require to enter the credentials again.
Yes, this plugin provides the feature to auto-login users in WordPress sites from mobile applications and also other applications built on Java, React, Node JS, Angular, C#, PHP etc frameworks. using the JWT token. Moreover, this plugin provides other features to redirect the user to some other URLs on login as well.
Yes, the plugin provides both the user registration endpoint (wp-json/api/v1/mo-jwt-register) as well as deletion API (wp-json/api/v1/delete).
This plugin provides the feature in which if multiple applications share the same subdomain with WordPress and if you are logged into one platform then accessing any of the other platforms will log in the user automatically without the need to authenticate again.
Yes, that would be possible to achieve with the plugin, so if a user logs into the mobile app and then clicks on the WordPress site URL link, that WordPress page will be opened in the webview and the plugin will help in establishing the session sharing in the webview such that user won’t be required to log in again and can access the WordPress page seamlessly.
Yes, our plugin’s SSO Login using the JWT feature can be used to share the AWS Cognito user session between the WordPress and React apps using JWT.