search

perrybutler / WP-OAuth

A WordPress plugin that allows users to login or register by authenticating with an existing Google, Facebook, LinkedIn, Github, Reddit or Windows Live account via OAuth 2.0. Easily drops into new or existing sites, integrates with existing users.
GNU General Public License v2.0
98 stars 76 forks source link

How does the plugin handle a user already logged in at the identity provider's site? #8

Open codecowboy opened 9 years ago

codecowboy commented 9 years ago

If I am logged in to LinkedIn in another browser tab, I am not prompted to authenticate with LinkedIn via WordPress. Is this scenario explicitly handled by the plugin? If so, where is this in the code?

perrybutler commented 9 years ago

That's the benefit of social login, which skips as many user-prompts as possible in a secure manner. Quick on-boarding. The first time you try to authenticate with LinkedIn, it should prompt you with a grant permissions screen which you tell it OK. Same for all users. After that, LinkedIn will either prompt you to login and then redirect to your WordPress site with the LinkedIn user identity, or if you're already logged into LinkedIn it just redirects to your WordPress site with the LinkedIn user identity, skipping the LinkedIn login screen. Hope that helps.