This WordPress plugin is forked from authorizer, modified to use a CAS proxy login instead direct authentication.
Also included in this project is a custom MAAP profile view that references a CAS proxy granting ticket. To use this custom view, add it in the page-templates folder of a WordPress theme, and then create a new WordPress page that references the template.
The modified authentication code relies on the use of sessions. If the Wordpress site does not have sessions configured, one tested solution is to add the following code to the /wp-includes/functions.php file:
if (!session_id()) {
session_start();
}To bundle the plugin for deployment to our WordPress instance, and if you are on an unix based machine, run the following command to create a ZIP file that can be used to install the plugin. This command reads the list of files specified in authorizer.lst and creates a ZIP file named authorizer.zip. The -r option ensures that the contents of folders specified in the authorizer.lst file are included in the ZIP. Select a location on your filesystem to save this zip file as it shouldn't be committed.
version_number should be the current version number of the authorizer plugin that we are using.
build_number is an incremented value as we make changes to our forked copy of the authorizer plugin.
zip -r ~/authorizer-v<version_number>-build_<build_number>.zip -x \*.DS_Store -@ < authorizer.lst
Sample Filename: authorizer-v2_9_12-build_1.zip
If you need to manually create the ZIP file, refer to the authorizer.lst file to know which files and folders should be compressed.
- Original WordPress Plugin: authorizer
- Changelog: changelog
Authorizer is a WordPress plugin that restricts access to specific users, typically students enrolled in a university course. It maintains a list of approved users that you can edit to determine who has access. It also replaces the default WordPress login/authorization system with one relying on an external server, such as Google, CAS, or LDAP. Finally, Authorizer lets you limit invalid login attempts to prevent bots from compromising your users' accounts.
Authorizer requires the following:
- CAS server or LDAP server (plugin needs the URL)
- PHP extensions: php5-mcrypt, php5-ldap, php5-curl
Authorizer provides the following options:
- Authentication: WordPress accounts; Google accounts; CAS accounts; LDAP accounts
- Login Access: All authenticated users (all local and all external can log in); Only specific users (all local and approved external users can log in)
- View Access: Everyone (open access); Only logged in users
- Limit Login Attempts: Progressively increase the amount of time required between invalid login attempts.
