Stay up to Date with Our News and Releases

When I started working on WP OAuth Server 4 years ago, the idea was to provide a simple way for WordPress to become an OAuth Server. The initial build had a simple goal; to provide the ability for Single Sign On. WP OAuth Server (then named “OAuth2 Provider“) started gaining traction in the education realm along with […]

Earlier this week is was brought to my attention that there is relatively new exploit effecting people using the PROXY header. Providing support for WP OAuth Server, I can say that there is a lot of systems using the PROXY header. Some hosts just use it by default. The exploit is known as Httproxy. You […]

Version 3.2.81 of WP OAuth Server has been released. This update contains minor fixes to coding standards for WordPress as well as some bug fixes that did not make it into the 3.2.8 push. Updates Include: Fix for what we thought was a redirect_uri issue. It turned out to be an action parameter issue. User Claims now are […]

I am proud to announce that wp-oauth.com has launched an all new affiliate program. The program allows you to send referrals to wp-oauth.com and receive a payout on your commission at the end of each month. Our affiliate program is a free program designed for you to earn money. With the affiliate program, you earn 10% of all […]

Today I released version 3.2.8 of WP OAuth Server. This updated contains some mostly enhancements and 1 bug patch: Fixed user Claims with OpenID and ID Token calls. Added wo_get_access_token function for public use. It is recommended that you update as soon as you get the time to do so. If you have any troubles […]

Today I released version 3.2.7 of WP OAuth Server. This updated contains some mostly enhancments and 1 security patch: Added wo_authorization_code_authorize action. Passed user_id as a single parameter. Added wo_restrict_single_access_token filter. Returns true or false / Defaults to false. Added wo_auth_code_lifetime filter. Defaults to 30. Fixed possible XSS issue with client description. It is recommended […]

Today I released version 3.2.6 of WP OAuth Server. This updated contains some mostly enhancments including: Localization. WP OAuth Server now has the ability  to support multiple languages. If you are up to the task, I will give a free 1 year license to WP OAuth Server for each language you translate the plugin to. Ability […]

Today we updated our TLS certificates to Let’s Encrypt from StartCom. This should not effect any functionality or API services but if you experience any issues, please submit a support request.  

Upgrade time ~10 Minutes We tried to make this transition as smooth as possible but the changes required that there be some breaking changes (mainly to the options can configuration). This upgrade ONLY applies to current license holders of WP OAuth Server 3.1.X that are wanting to upgrade to 3.2.0. Steps to upgrade you must […]

With the introduction of the REST API for WordPress, the possibilities are endless. I see this a bit skeptical since there is some choke points in the REST API. Everything always has its flaws and given that the REST API in core is fairly new, I hold my personal opinions close and contribute when and where […]