We wish to implement a single sign on, through OAuth 2.0, between Liquid Feedback, which will act as server, and Wordpress, which will act as client. How do we proceed?
If the Liquid Feedback can take the role of OAuth2 authorization server then you can integrate it with Auth0 by configuring a custom OAuth2 social connection. Having done that you can then install the Auth0 Wordpress authentication plugin which will allow end-user to authenticate into Wordpress through the associated Auth0 account.
Through configuration of the plugin you can state that the only method of authentication available to the Wordpress client application is the Liquid Feedback custom OAuth2 social connection which means that when the plugin tries to authenticate through Auth0 the only option is to then go to Liquid Feedback as the source of users. If an end-user is already authenticated to Liquid Feedback (and assuming Liquid Feedback has the notion of an authentication session) then when it performs the login to Wordpress it won’t actually have to provide credentials again.
Thanks for the fast reply! Unfortunately it’s not what needed. I need that a user can register and login on Wordpress as usual and can authenticate also on Liquid Feedback without creating new user credentials.
Thanks for the fast reply! Unfortunately it’s not what needed. I need that a user can register and login on Wordpress as usual and can authenticate also on Liquid Feedback without creating new user credentials.
In that case that is somewhat different that what initially described as it seems both Liquid Feedback and Wordpress would be acting as relying parties/client applications and none would be a server. To achieve that, you should use Auth0 authentication in Wordpress through the plugin and configure a database connection where registered users (including credentials) will be stored. You’ll then need to configure Liquid to act also as a client app which delegates auth to Auth0 using any of the supported protocols (OAuth2, SAML, WS-Federation).