New WordPress plugins for Single Sign On!

We have created an OAuth server and an OAuth client plugin, which allows us to Single Sign On between two WordPress websites, where we can use the server’s authentication for login.

WordPress Plugins

The Lana Passport – OAuth 2.0 Server is a premium WordPress plugin that can be purchased from CodeCanyon for $79.

https://lana.codes/product/lana-passport/

The Lana Single Sign On – OAuth 2.0 Client is a WordPress plugin that can be downloaded from WordPress.org for free.

https://lana.codes/product/lana-sso/

Lana Single Sign On was primarily created for the Lana Passport plugin.

Case Study

We also wrote a Case Study on the development of plugins, which is quite an interesting read for everyone.

https://lana.codes/case-study/oauth2-server-and-client-wordpress-plugin/

Audit and security

At Lana Codes, we always pay special attention to safety. We checked Lana Passport with PHP_CodeSniffer. We tested these plugins a lot, because these plugins do user authentication, which requires special development.

We also checked similar plugins in repositories and marketplaces and found a very high-rated vulnerability:

Simple Single Sign On by Dash10 Digital WordPress plugin Authentication Bypass:
https://lana.codes/lanavdb/0bab7575-45fc-432d-945e-6100c35c574c/

OAuth Single Sign On – SSO (OAuth Client) by miniOrange WordPress plugin Authentication Bypass:
https://lana.codes/lanavdb/12bb3c02-45f1-4ce8-8a5a-8b44352cf7fc/

WP OAuth Server (Login with WordPress) by miniOrange WordPress plugin Authentication Bypass:
https://lana.codes/lanavdb/6d794d65-d44b-4099-94c5-3dd2995b218c/