Plugin Directory

Test out the new Plugin Directory and let us know what you think.

XMPP Authentication

Allows users to authenticate without password via XMPP and for visitors to be filtered by XMPP verification.


Publishing Account

This section contains the connection parameters of the account which will be used as a wordpress bot. I would personnaly advice to create a dedicated account just for it (you may also use your personal account of course, as the plugin's bot will create a resource identifier unique for every connection) and to configure it to refuse any contact and communication (as noone will have to add it to one's roster, except you maybe for test or debugging purpose?). The fields are:

  • The bot address (bare jid form: mybotname@myserveraddress);
  • the password.

Advanced Connection Parameters

By default xmpp-auth can use SRV records which is a recommended way to advertize server and port from a domain name (see for instance http://dns.vanrein.org/srv/ for details).

This is an advanced section in case your server does not use SRV AND uses a server which is not the same as the domain from the jid or a port different from the default one (5222).

Hence there will be very very few cases where you will have to fill this section and if you don't understand all what I say here, just don't fill anything there (if you fill even only one field, then it will be used instead of SRV and default values).

The default values will be used if the fields are empty and no SRV is configured on the Jabber server:

  • the XMPP server (often the same as 'myseveraddress' of the jid);
  • the XMPP port (usually 5222).


Features I am considering:

  • check quickstart (http://xmpp.org/extensions/inbox/quickstart.html). In particular, I should at least cache DNS lookups now.
  • deactivate IM features when plugin not configured.
  • For comments, use the IM avatar of the commenter instead of gravatar;
  • Make various notifications usually done by email be done by IM instead (if adequate);
  • Display the comment's JID on the admin page (as we display the email address, obviously only for administrators);
  • Add Scram-* to SASL package;
  • Make the generic XMPP part a PEAR package.
  • Subscribe with XMPP JID.
  • Login with JID or username (both possible).
  • If password is disabled, it also cannot be resetted.
  • Make user choose to receive password reset or other notification through IM instead of email.

XMPP Features

Full Secure XML Stream with:

  • TLS (with real certificate verification, so confidentiality and authentication);
  • SASL (Digest-MD5, CRAM-MD5 and PLAIN only for now);
  • SRV records "randomization" algorithm.


You can have some news about this plugin on my freedom haven. You can also drop me an instant message on "hysseo" at zemarmot.net.

Have a nice life!

Requires: 3.2.0 or higher
Compatible up to: 4.4.6
Last Updated: 1 year ago
Active Installs: Less than 10


0 out of 5 stars


Got something to say? Need help?


Not enough data

0 people say it works.
0 people say it's broken.

100,1,1 100,1,1 100,1,1 100,1,1