WordPress is one of the most popular content management systems to create websites and blogs. It is pluggable and many of these plugins help to add functionality and beauty. OpenAM on the other hand is, amongst other things, a popular Access Management and Federation system that can be used to authenticate users that want to access a site powered by WordPress.
Until recently, the only option was to install a Policy Agent in the Apache Web Server that hosted the WordPress. There were no UPDATED WordPress plugins to add the authentication capabilities of OpenAM directly, only some outdated versions that worked with its predecessor OpenSSO.
Last month a new plugin was released, and today it was enhanced with support of older versions of OpenAM, like 10.x.
You can install the plugin directly from WordPress, just go to the plugins option, look for OpenAM Authentication, install, configure and voilà!
The key features of the plugin are:
- Authenticates directly from the WordPress login screen without the need to redirect to OpenAM.
- If the authentication module or Service Chain configured requires more than user and password, you can opt to redirect to OpenAM
- No OpenAM Policy Agent needed.
- Implements SSO if there is already a valid session in OpenAM in the same domain as the WordPress installation.
- Lightweight implementation using REST.
- Easy to configure
Here the link to find more information about it: https://wordpress.org/plugins/openam-authentication/
Code on GitHub: https://github.com/ForgeRock/openam-authentication
A screen-shot of the configuration page of the plugin here:
If you have WordPress, go and give it a try!