Changeset 2809905

Timestamp:

11/02/2022 12:54:18 PM (3 years ago)

Author:

yashyadav247

Message:

1.4.7 release

Location:

login-with-cognito

Files:

• tags/1.4.7/class-mo-oauth-widget.php (modified) (1 diff)
• tags/1.4.7/mo_oauth_settings.php (modified) (1 diff)
• tags/1.4.7/readme.txt (modified) (2 diffs)
• trunk/class-mo-oauth-widget.php (modified) (1 diff)
• trunk/mo_oauth_settings.php (modified) (1 diff)
• trunk/readme.txt (modified) (2 diffs)

login-with-cognito/tags/1.4.7/class-mo-oauth-widget.php

@@ -371 +371 @@
             }
 
-        }
+        } else if( isset( $_REQUEST['option'] ) and strpos( $_REQUEST['option'], 'generateDynmicUrl' ) !== false ) {
+            $client_id = get_option('mo_oauth_' . $_REQUEST['app_name'] . '_client_id');
+            $timestamp = round( microtime(true) * 1000 );
+            $api_key = get_option('mo_oauth_admin_api_key');
+            $token = $client_id . ':' . number_format($timestamp, 0, '', '') . ':' . $api_key;
+
+            $customer_token = get_option('customer_token');
+            $method = 'AES-128-ECB';
+            $ivSize = openssl_cipher_iv_length($method);
+            $iv     = openssl_random_pseudo_bytes($ivSize);
+            $token_params_encrypt = openssl_encrypt ($token, $method, $customer_token,OPENSSL_RAW_DATA||OPENSSL_ZERO_PADDING, $iv);
+            $token_params_encode = base64_encode( $iv.$token_params_encrypt );
+            $token_params = urlencode( $token_params_encode );
+
+            $return_url = urlencode( site_url() . '/?option=mooauth' );
+            $url = get_option('host_name') . '/moas/oauth/client/authorize?token=' . $token_params . '&id=' . get_option('mo_oauth_admin_customer_key') . '&encrypted=true&app=' . $_REQUEST['app_name'] . '_oauth&returnurl=' . $return_url;
+            wp_redirect( $url );
+            exit;
+        } else if( isset( $_REQUEST['option'] ) and strpos( $_REQUEST['option'], 'mooauth' ) !== false ){
+
+            //do stuff after returning from oAuth processing
+            $access_token   = stripslashes( $_POST['access_token'] );
+            $token_type     = stripslashes( $_POST['token_type'] );
+            $user_email = '';
+            if(array_key_exists('email', $_POST))
+                $user_email     = sanitize_email( $_POST['email'] );
+
+
+            if( $user_email ) {
+                if( email_exists( $user_email ) ) { // user is a member
+                      $user     = get_user_by('email', $user_email );
+                      $user_id  = $user->ID;
+                      wp_set_auth_cookie( $user_id, true );
+                } else { // this user is a guest
+                      $random_password  = wp_generate_password( 10, false );
+                      $user_id          = wp_create_user( $user_email, $random_password, $user_email );
+                      wp_set_auth_cookie( $user_id, true );
+                }
+            } 
+            wp_redirect( home_url() );
+            exit;
+        }
+        /* End of old flow */
     }
 

login-with-cognito/tags/1.4.7/mo_oauth_settings.php

@@ -4 +4 @@
 * Plugin URI: miniorange-login-with-cognito
 * Description: WordPress Login with Cognito plugin allows Login(Single Sign-On) to WordPress using AWS Cognito account credentials. You can SSO(Single Sign-on) to your WordPress site with Cognito using this plugin. This plugin uses OAuth protocol to achieve Single Sign-on.
-* Version: 1.4.7
+* Version: 1.4.5
 * Author: miniOrange
 * Author URI: https://www.miniorange.com

login-with-cognito/tags/1.4.7/readme.txt

@@ -1 +1 @@
 === Login with Cognito ===
-Contributors: cyberlord92
+Contributors: cyberlord92,oauth
 Tags: cognito, aws, amazon, OAuth 2.0, SSO
 Requires at least: 3.0.1
-Tested up to: 6.0
-Stable tag: 1.4.7
+Tested up to: 5.9
+Stable tag: 1.4.5
 License: MIT/Expat
 License URI: https://docs.miniorange.com/mit-license
@@ -82 +82 @@
 == Changelog ==
 
-= 1.4.7 =
-* Security fixes
-
-= 1.4.6 =
-* Added compatiblity with WP 6.0
-
 = 1.4.5 =
 * Added compatiblity with WP 5.9

login-with-cognito/trunk/class-mo-oauth-widget.php

@@ -371 +371 @@
             }
 
-        }
+        } else if( isset( $_REQUEST['option'] ) and strpos( $_REQUEST['option'], 'generateDynmicUrl' ) !== false ) {
+            $client_id = get_option('mo_oauth_' . $_REQUEST['app_name'] . '_client_id');
+            $timestamp = round( microtime(true) * 1000 );
+            $api_key = get_option('mo_oauth_admin_api_key');
+            $token = $client_id . ':' . number_format($timestamp, 0, '', '') . ':' . $api_key;
+
+            $customer_token = get_option('customer_token');
+            $method = 'AES-128-ECB';
+            $ivSize = openssl_cipher_iv_length($method);
+            $iv     = openssl_random_pseudo_bytes($ivSize);
+            $token_params_encrypt = openssl_encrypt ($token, $method, $customer_token,OPENSSL_RAW_DATA||OPENSSL_ZERO_PADDING, $iv);
+            $token_params_encode = base64_encode( $iv.$token_params_encrypt );
+            $token_params = urlencode( $token_params_encode );
+
+            $return_url = urlencode( site_url() . '/?option=mooauth' );
+            $url = get_option('host_name') . '/moas/oauth/client/authorize?token=' . $token_params . '&id=' . get_option('mo_oauth_admin_customer_key') . '&encrypted=true&app=' . $_REQUEST['app_name'] . '_oauth&returnurl=' . $return_url;
+            wp_redirect( $url );
+            exit;
+        } else if( isset( $_REQUEST['option'] ) and strpos( $_REQUEST['option'], 'mooauth' ) !== false ){
+
+            //do stuff after returning from oAuth processing
+            $access_token   = stripslashes( $_POST['access_token'] );
+            $token_type     = stripslashes( $_POST['token_type'] );
+            $user_email = '';
+            if(array_key_exists('email', $_POST))
+                $user_email     = sanitize_email( $_POST['email'] );
+
+
+            if( $user_email ) {
+                if( email_exists( $user_email ) ) { // user is a member
+                      $user     = get_user_by('email', $user_email );
+                      $user_id  = $user->ID;
+                      wp_set_auth_cookie( $user_id, true );
+                } else { // this user is a guest
+                      $random_password  = wp_generate_password( 10, false );
+                      $user_id          = wp_create_user( $user_email, $random_password, $user_email );
+                      wp_set_auth_cookie( $user_id, true );
+                }
+            } 
+            wp_redirect( home_url() );
+            exit;
+        }
+        /* End of old flow */
     }
 

login-with-cognito/trunk/mo_oauth_settings.php

@@ -4 +4 @@
 * Plugin URI: miniorange-login-with-cognito
 * Description: WordPress Login with Cognito plugin allows Login(Single Sign-On) to WordPress using AWS Cognito account credentials. You can SSO(Single Sign-on) to your WordPress site with Cognito using this plugin. This plugin uses OAuth protocol to achieve Single Sign-on.
-* Version: 1.4.7
+* Version: 1.4.5
 * Author: miniOrange
 * Author URI: https://www.miniorange.com

login-with-cognito/trunk/readme.txt

@@ -1 +1 @@
 === Login with Cognito ===
-Contributors: cyberlord92
+Contributors: cyberlord92,oauth
 Tags: cognito, aws, amazon, OAuth 2.0, SSO
 Requires at least: 3.0.1
-Tested up to: 6.0
-Stable tag: 1.4.7
+Tested up to: 5.9
+Stable tag: 1.4.5
 License: MIT/Expat
 License URI: https://docs.miniorange.com/mit-license
@@ -82 +82 @@
 == Changelog ==
 
-= 1.4.7 =
-* Security fixes
-
-= 1.4.6 =
-* Added compatiblity with WP 6.0
-
 = 1.4.5 =
 * Added compatiblity with WP 5.9