Replies: 3 comments 16 replies
-
@d3c1978 yes you can accomplish this with an additional bit of code. I have done this for someone that was also using Keycloak. You can find an example repository here: https://github.com/timnolte/oidc-keycloak-sso |
Beta Was this translation helpful? Give feedback.
-
There is also some documentation regarding mapping roles from an IDP to WordPress roles in the Wiki, though it is specific code for Azure Active Directory. https://github.com/oidc-wp/openid-connect-generic/wiki/Azure-AD-Role-Mapping |
Beta Was this translation helpful? Give feedback.
-
Hi @timnolte Tim, why is this role mapping a separate module? Is this not standard in the protocols? |
Beta Was this translation helpful? Give feedback.
-
If we install this plugin, is there a way we can designate some users (logging in through OIDC) as administrators/editors and others as normal users/subscribers? Are there any specifc claims/groups/roles we can use (we use Keycloak as our OP) that will automatically enable those roles to the users? If that is possible, I can totally switch to OIDC logins only and remove wp logins altogether.
Our use-case is: We have an Angular based SPA whose documentation is in this protected WP site. We use a Keycloak OP and we want all users already logged into our SPA to be able to directly navigate to this documentation page (without having to click any buttons on the WP login site like we do now). Also, we want some of the users (staff) to be able to administer and/or edit the pages/documentation.
What is the best way to achieve this?
Beta Was this translation helpful? Give feedback.
All reactions