HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

is there anybody managed to setup embedded SSO?

bsoylubsoylu New
edited December 2021 in Vanilla 3.x Help

I'm trying to figure embedded SSO with the given instructions.

I'm using a standalone site for forum with a different domain name.

I've added Vanilla Forum Plugin to wordpres site.

I've added jsconnect to forum site and added a connection successfully.

on the forum site SSO is working seamlessly. But in WP site when I want to embed the forum as iframe, it asks the user signin although user is already signed in WP Site by giving an error as "State cookie is required."

I test with "Embed Token for Embedded SSO" by adding it on forum page in WP site before embed.js script.



vanilla_sso = 'eyJpZCI6NDA1NiwibmFtZSI6IkRldmVsb3BlciIsImVtYWlsIjoiYnVsZW50QHNveWx1Lm9yZyIsInBob3RvIjoiaHR0cHM6XC9cL2JsdWVncmFzc2RhZGR5LmNvbVwvd3AtaW5jbHVkZXNcL2ltYWdlc1wvYmxhbmsuZ2lmIiwicm9sZXMiOiJhZG1pbmlzd********************* 1640310181 hmacsha1';


<script type="text/javascript" src="https://www.****.com/js/embed.js"></script>


I can see it's shown in page source of forum page but it's not accepted by the embed.js.

anybody has an experience on embedded SSO and help me on this?

What is missing here? What am I doing wrong?

forum: Version 2021.012

vanilla plugin version: Version 1.3.1 

php version in WP:7.3

php version in Forum Site: 7.4

Sign In or Register to comment.