Daniel Bachhuber

Hey @seotoco,

It’s hard to say what the issue might be without being able to debug the code, which is outside what we support.

If you track down a specific reproducible issue with WP Native PHP Sessions, we’d be happy to take a look at getting it fixed.

Hey @seotoco,

Sorry to hear you’re having difficulties.

Is it possible to use sessions with PHP 7.4 or 8.0 without downgrading the php version?

WP Native PHP Sessions works on PHP 7.4 in my testing. Maybe there’s something else about your server configuration that’s different and causing issues?

Is this site on Pantheon or hosted elsewhere?

Hey @livestainablesupport:

I would just like to determine if this plugin will help increase the load times on my wordpress dashboard?

It certainly can! It will help with any slow queries that are already cached through WordPress’ internal object cache. It won’t help with other performance issues, however.

Also is it compatible with Woocommerce, an Xneelo Apache server and WP Rocket.

Yep, it should work fine with all of those. Let us know if you run into any specific issues.

Good luck!

Hey @diegop78,

For newly created users, you should be able to use the wp_saml_auth_new_user_authenticated filter (ref). For users that already exist in WordPress, you can use the wp_saml_auth_existing_user_authenticated filter (ref).

The README has some documentation on how to use the latter which you can adapt for the former.

Hope this helps!

Hi Eline,

or is WP SAML AUth mainly used for creating and logging users into wordpress.

This is correct. WP SAML Auth only handles the authentication bridge between WordPress and your SAML-based IdP.

However, if you have a SAML-based IdP, you could pair WP SAML Auth with something like Site Secrets (or another plugin that restricts access to your site) in order to achieve what you want.

Hope this helps!

Ah, that’s what I get for not testing my code snippet ??

I like your version much better!

Great! Glad you were able to figure a solution out.

I’ve tagged WP SAML Auth v1.2.4 with the wp_saml_auth_internal_logout_args filter.

Rather than directly modifying class-wp-saml-auth.php at line 259, I think you can hook onto the wp_saml_auth_pre_authentication filter instead:

add_filter(
	'wp_saml_auth_pre_authentication',
	function ( $retval ) {
		session_start();
		$_SESSION['sessionIndex'] = $provider->getSessionIndex();
		$_SESSION['nameId'] = $provider->getNameId();
		return $retval;
	}
);

Ah, thanks for sharing that.

session_id() will only return a value if a PHP session has been started with session_start() (reference). If you haven’t called session_start(), it will return an empty value.

I’m not quite sure session_id() is the correct function to use to generate a SessionIndex, however.

Were you provided additional documentation on how to generate the sessionIndex value? This Auth0 documentation seems to imply the value is included in the original logging-in response.

In addition to modifying the action_wp_logout method, you’ll also need to add a filter to wp_saml_auth_internal_logout_args. Can you share the filter you added?

Great question, @kirkyedinak! I appreciate all of the detail you’ve included ??

Can you try out the new filter I’m considering with this pull request and let me know if it meets your needs?

Hi @trumor,

Thanks for the report.

Unfortunately, if the sites are on different domains, it won’t be possible to pass session data from one request to another. PHP session data is tied to the visitor with a domain-based cookie.

What you might consider instead is including a query parameter (e.g. ?redirected=true) in the initial redirect, and using the presence of the query parameter to set a session on the target site.

Hope this helps!

@marksabbath No worries! Glad you were able to figure it out ??

Hey @marksabbath,

WP Redis doesn’t look into the delete_user action. Can you share more details about the debugging you’ve done that leads you to believe the issue is caused by WP Redis?

You’re welcome!

Hey @swebervna,

You’ll want to add the filter to a mu-plugin, or your theme’s functions.php file.

Here’s a comprehensive overview to actions and filters, if it’s helpful: https://kinsta.com/blog/wordpress-hooks/