• I stumbled on this plugin so I decided to add support for WordPress using Oauth2 Authorization Code.

    Not all software comes with Oauth2 support out of the box or with a plugin. Thanks for making this happen.

    I first tested it using Postman to make sure I get the desired results. It works like expected.

    My goal was getting authentication using Oauth2 and to retrieving member’s avatar for a multiplayer game, texas hold’em precisely.

    Luckily, the Authorization Code grant type is not a Pro version.

    I also manage to get it working with the code which works like a charm.

    The only minor thing I found is the token could contain additional info like userId so I can use it in one pass to call REST API to retrieve the member’s avatar.

    I also could not find info on different values for the scope to use along. Basic and Profile scope seem to return the same info, since I was expecting that oauth/me could give me more extended info like avatar.

    But, definitely worth checking as Authorization code is the most secure grant type to use. This is the beauty to have WordPress as Oauth Provider is to allow exiting members of a site to use their credentials to login to the game and have their avatar displayed in game. Thus, it exactly meets my needs.

    Kudos to the teams!

    • This topic was modified 1 month, 1 week ago by LuckyRiver.
    • This topic was modified 1 month, 1 week ago by LuckyRiver. Reason: Add clip
    • This topic was modified 1 month, 1 week ago by Jan Dembowski. Reason: Deleted link, link are not permitted in reviews
Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Justin Greer

    (@justingreerbbi)

    Forum Moderator

    Thank you for your review and feedback! Your experience is greatly valued and the team has worked hard to make the plugin as seamless as possible to date.

    Authorization Grant type is the most used grant type in the OAuth arsenal and thus we find it imperative to keep it open for use. We have looked into more scopes but have left it open for extending by the users. The reason being is that there is a lot of ways this scopes can be handled and mapped which make is difficult to make generic.

    We are looking into role based, scope specific changes here in the near future. This along with some better UX, we plan to make OAuth for WordPress a much easier tool to implement.

    Thanks again for the review and feedback.

    Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    @luckyriver Thanks for the review but please keep it to your words here only. No links or links to images. That’s not permitted in reviews and I have removed yours.

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this review.