This plugin replaces standard WordPress login forms with one powered by Auth0 that enables:
- Universal authentication
- Over 30 social login providers
- Enterprise connections (ADFS, Active directory / LDAP, SAML, Office 365, Google Apps and more)
- Connect your own database
- Passwordless connections (using email or SMS)
- Ultra secure
- Multifactor authentication
- Password policies
- Email validation
- Mitigate brute force attacks
IMPORTANT: By using this plugin you are delegating the site authentication and profile handling to Auth0. That means that you won’t be using the WordPress database to authenticate users and the default WordPress login forms will be replaced.
Please see our How It Works page for more information on how Auth0 authenticates and manages your users.
Migrating Existing Users
Auth0 allows multiple authentication providers. You can have social providers like Facebook, Twitter, Google+, and more, a database of users and passwords (just like WordPress but hosted in Auth0), or you can use an Enterprise directory like Active Directory, LDAP, Office365, Google Apps, or SAML. All those authentication providers might give you an email and a flag indicating whether the email was verified or not. We use that email (only if its verified) to associate a previous existing user with the one coming from Auth0.
If the email was not verified and there is an account with that email in WordPress, the user will be presented with a page saying that the email was not verified and a link to “Re-send the verification email.” For either scenario, you can choose whether it is mandatory that the user has a verified email or not in the plugin settings.
Please note: In order for a user to login using Auth0, they will need to sign up via the Auth0 login form (or have an account created for them in Auth0). Once signup is complete, their Auth0 user will be automatically associated with their WordPress user.
You can enable the Auth0 as a WordPress widget in order to show it in a sidebar. The widget inherits the main plugin settings but can be overridden with its own settings in the widget form. Note: this form will not display for logged-in users.
Also, you can use the Auth0 widget as a shortcode in your editor. Just add the following to use the global settings:
Like widgets, shortcode login forms will use the main plugins settings. It can be customized by adding the following attributes:
icon_url– A direct URL to an image used at the top of the login form
form_title– Text to appear at top of the login form
gravatar– Display the user’s Gravatar; set to
redirect_to– A direct URL to use after successful login
custom_css– Valid CSS to alter the login form
custom_js– Valid JS to alter the login form
dict– Valid JSON to override form text (see options here)
extra_conf– Valid JSON to override Lock configuration (see options here)
show_as_modal– Display a button which triggers the login form in a modal; set to
modal_trigger_name– Button text to display when using a modal
[auth0 show_as_modal="1" modal_trigger_name="Login button: This text is configurable!"]
Note: this form will not display for logged-in users.
Tested up to:
Require PHP Version:
The plugin hasn't been transalated in any language other than English.
The information provided in this THEME/PLUGIN DIRECTORY is made available for information purposes only, and intended to serve as a resource to enable visitors to select a relevant theme or plugin. wpSocket gives no warranty of any kind, express or implied with regard to the information, including without limitation any warranty that the particular theme or plugin that you select is qualified on your situation.
The information in the individual theme or plugin displayed in the Directory is provided by the owners and contributors themselves. wpSocket gives no warranty as to the accuracy of the information and will not be liable to you for any loss or damage suffered by you as a consequence of your reliance on the information.
Links to respective sites are offered to assist in accessing additional information. The links may be outdated or broken. Connect to outside sites at your own risk. The Theme/Plugin Directory does not endorse the content or accuracy of any listing or external website.
While information is made available, no guarantee is given that the details provided are correct, complete or up-to-date.
wpSocket is not related to the theme or plugin, and also not responsible and expressly disclaims all liability for, damages of any kind, arising out of the use, reference to, or reliance on, any information or business listed throughout our site.