=== GOAuth ===
Contributors: igroykt, freemius
Donate link:
Tags: google login, authentication, oauth, 2fa, rest api
Requires at least: 4.7
Tested up to: 5.9
Requires PHP: 7.0 and higher
Stable tag: 2.20
License: GPLv2
License URI: http://www.gnu.org/licenses/gpl-2.0.html

Go and OAuthenticate plugin for WordPress.

== Description ==
This plugin allow users authenticate with OAuth Providers. If you have Two-Factor verification enabled in account, then it will work or you can use the Google Authenticator App.
Dependencies: curl, bcmath, intl, openssl.
Supported OAuth Providers: Google


[youtube https://youtu.be/qJuByi5KwfA]

= Free Features =
* Force Login
* Google Authenticator
* Unlimited Users
* Wildcard Domain Support
* Single Domain Restriction
* Hide Login Form
* Hide Navigation Buttons
* Disable XMLRPC
* Disable Rest API
* Login Button Styles
* Save Data on Uninstall
* Persistent sessions

= Premium Features =
* Multiple Domain Restriction
* Custom Logo
* Auto Register
* Browser Language Detection
* Hide Name Fields
* Hide E-Mail Field
* Hide Password Field
* Auto Fix User Data

== Installation ==

Unpack "goauth.zip" to the "/wp-content/plugins/" directory.
Activate the plugin through the "Plugins" menu in WordPress.

== Frequently Asked Questions ==

If you have some question about setup and options then read "Help" in goauth settings page.

== Screenshots ==

1. General
2. Google Authenticator
3. Google OAuth
4. Login Form

== Changelog ==

= 2.19 =
* enhancement: SDK update

= 2.18 =
* bugfix: Loopback requests problem
* bugfix: Super user session did not destroyed properly after logout
* enhancement: Post authentication redirect update
* enhancement: Improved sessions

= 2.17 =
* bugfix: Table bugfix
* enhancement: Tested on PHP 7.4
* enhancement: SDK update
* enhancement: Cookies security update

= 2.16 =
* enhancement: Added error messages using wp_die with autoredirect
* enhancement: Improved a redirects
* enhancement: Improved a logout
* enhancement: Improved a authentication
* enhancement: Added option "exclude from autoregister" (useful if you have service accounts in g-suite)

= 2.15 =
* bugfix: Admin page destructor bugfix
* bugfix: Downgraded "Monolog" to avoid dependency conflict
* enhancement: Removed "isTokenExpired" because of token refresh limits

= 2.14 =
* bugfix: Hode Login Form
* bugfix: Redirect to Requested URI after session refresh

= 2.13 =
* enhancement: Google API Client update
* enhancement: UI update
* enhancement: Login button update
* enhancement: Offline MaterializeCSS script and style
* bugfix: option "plugin enable"

= 2.12 =
* enhancement: Google API Client update
* bugfix: Template bugfix
* enhancement: Auto Register update
* enhancement: User Default Role option

= 2.11 =
* enhancement: Help update
* enhancement: Hide WP Version option
* enhancement: Disable User Enumeration option
* enhancement: Code refactoring
* enhancement: Requirements check
* enhancement: UI update

= 2.10 =
* enhancement: Deutsch language
* enhancement: Russian language
* enhancement: English language
* enhancement: domain check update
* enhancement: UI update (interface has become more responsive and now you can change the settings in all tabs and press the save button once)
* enhancement: localization support

= 2.9 =
* enhancement: cyrillic detector
* enhancement: cyrillic transliterator
* enhancement: autoregister error handler

= 2.8 =
* enhancement: SDK update
* bugfix: asynchronous requests conflict with Gutenberg

= 2.7 =
* enhancement: antilockout
* bugfix: generate hash
* enhancement: google api client update
* bugfix: server sessions

= 2.6 =
* bugfix: autofix user data
* enhancement: asynchronous requests for cookies
* bugfix: persistent sessions
* enhancement: review notice

= 2.5 =
* enhancement: moved garbage collector to wp cron
* bugfix: add suffix if username exist
* bugfix: cookies path
* forward2past: persistent sessions
* bugfix: wordpress authentication session refresh
* forward2past: generate hash
* bugfix: session expiration check
* enhancement: database queries update
* enhancement: replaced some sessions to variables
* bugfix: autofix user data
* enhancement: google api client update
* enhancement: symmetric encryption of tokens

= 2.4 =
* bugfix: browser language detection
* enhancement: immediately log out a user on "domain restriction" option change
* enhancement: domain check
* bugfix: database prefix [thanks to Thibaut Colson]
* forward2past: wildcard domain support
* enhancement: code refactoring
* enhancement: new concept
* enhancement: auto fix user data
* enhancement: meterialize design
* bugfix: refresh token update
* bugfix: garbage collector
* bugfix: save data on uninstall

= 2.3 =
* License handling updates
* Admin page notices
* 3 button styles (white, black, blue)
* Replaced button on materializecss button
* New asset

= 2.2 =
* Replaced long time sessions on authentication cookies refresh
* Sessions confusion bugfix
* Additional checks
* Database queries update
* Google login update
* Authentication mechanism update
* Replaced database clear script on garbage collector method
* Database table update
* Request url bugfix

= 2.1 =
* Fixed session hijack
* Logic error exception
* Authentication mechanism update
* Google service error exception
* Requested url
* Improved hash expire check
* Improved server sessions check
* Long time sessions bugfix
* Database queries bugfix
* Cookies bugfix
* Code refactoring

= 2.0 =
* Logout bugfix
* Premium multiple domain restriction
* Free single domain restriction
* Removed wildcard domain support
* Some security fix
* Hide password field in profile
* Script for database clearing
* Long time sessions
* Login bugfix

= 1.6 =
* Replaced templates with scripts
* Google API Client update
* Session refresh bugfix

= 1.5 =
* Some authentication improvements
* Added "Save Data on Uninstall" option
* Added "Disable Rest API" option
* Added "Disable XMLRPC" option
* Added "Google Authenticator" support
* Removed "Bruteforce Security"

= 1.4 =
* Premium options

= 1.3 =
* Bug fixes

= 1.2 =
* Code optimization

= 1.1 =
* Force login
* Bruteforce security

= 1.0 =
* Google API
