Solved

Can I pass Wordpress URL parameters to identify a user?

Posted on 2013-06-06
8
615 Views
Last Modified: 2014-11-12
Hey Experts!!

Site A = Microsoft Azure platform
Site W = Wordpress platform

I have a bit of a dilemma. I have 2 sites, Site A and Site W. Site A is where all of my customer data is stored. Site W is where they will be purchasing products.
I control NOTHING on Site A, but have full control of Site W.  

My question is this:
If Site A can pass me URL variables, can I identify and possibly login users on my Wordpress site(Site W)?  I realize I may have to keep the user data in 2 separate places, but I'll have to tackle this later.  For now I just need to know if and how I can do this.
0
Comment
Question by:LZ1
  • 4
  • 3
8 Comments
 
LVL 9

Expert Comment

by:Ishaan Rawat
ID: 39225931
0
 
LVL 30

Author Comment

by:LZ1
ID: 39226739
I read the codex, however I don't want to update a user. Unless I misread, it seems I can only update their account.  Rather take them to a product page or at least their account page.
0
 
LVL 70

Expert Comment

by:Jason C. Levine
ID: 39227847
Surprisingly, WordPress is pretty weak on SSO and passthrough login solutions. The closest/best plugin to look into at this time is Keyring:

http://wordpress.org/plugins/keyring/

Alternately, you can bypass the wp-users table for an external database:

http://wordpress.org/plugins/external-db-auth-reloaded/

I have implemented something similar to the above plugin (also using the original external-db-auth abandoned plugin as the base) and it works very well.
0
 
LVL 30

Author Comment

by:LZ1
ID: 39228786
Thanks Jason, I'll definitely look into those.

Along the same note though, would there be a better way of going about all of this? Obviously besides having the same platform on the same domain for everything.
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 70

Expert Comment

by:Jason C. Levine
ID: 39229464
There really isn't.  Your problem is a fundamental one: the data isn't where it needs to be and you don't have enough control to implement a more granular solution.  So a login token or external authentication are your only choices.
0
 
LVL 30

Author Comment

by:LZ1
ID: 39229886
So where can I learn more about actually doing it? I've never done anything this "heavy".  Any tutorials or good articles you could recommend?

After that I'll close the question and then ask more specific questions as they come up.
0
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 500 total points
ID: 39232533
This isn't quite as difficult as it sounds.  You need to be able to generate a token on site A that contains the user's information, encrypted, and create a URL that has the encrypted text as the query string.  On site B, you decrypt the information and do something with it that makes life easier for the user.

The headache is that you won't have a matching user account on Site B unless you are doing something else that synchronizes the two databases.  Worse, you probably won't have a plain-text password from the Azure site to import to WordPress.  This is why I think you should look into the external DB plugins and not login tokens...it's easier.

One thing you COULD do with the token method is pass the user information through wp_create_user()  and basically auto-create an account for users the first time they cross over.  If the account already exists, you would redirect them to the login page and autopopulate the username.
0
 
LVL 30

Author Comment

by:LZ1
ID: 39234492
Thanks for all the info Jason. I haven't done anything like that yet of course. But I'll be looking into it this week.

Stay tuned, I'm sure this will be a lot of fun. Thanks again.
0

Featured Post

The problems with reply email signatures

Do you wish that you could place an email signature under a reply? Well, unfortunately, you can't. That great Exchange/Office 365 signature you've created will just appear at the bottom of an email chain. What a pain! Is there really no way to solve this? Well, there might be...

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Although it can be difficult to imagine, someday your child will have a career of his or her own. He or she will likely start a family, buy a home and start having their own children. So, while being a kid is still extremely important, it’s also …
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
The purpose of this video is to demonstrate how to reset a WordPress password if you are locked out and cannot reset the password. A typical use would be if you cannot access the email to which WordPress would send the password recovery email to…
The viewer will learn how to dynamically set the form action using jQuery.

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now