External Logins
External logins allow users to authenticate using a third-party. This feature is not available with all plans, and may require an upgrade. POP Forums is compatible with Google, Facebook and Microsoft, as well as OAuth2 providers who use JWT's. If an external login isn't already associated with a forum account, the user has the opportunity to either create a new account, or associate it with an existing account by logging in to it. They can remove these associations in the drop-down menu from their user name when they are logged in. The following documentation could quickly become out-of-date, as each vendor could change the process without notice.
On the external logins page of your forum's administration area, you enable each provider by checking the box to enable, then entering a client ID and secret. Obtaining these is different for every provider.
Google
- Go to the Google Cloud Console and log in to it using your Google account.
- If you don't have a project, create one in the top-level navigation.
- In the main navigation (the hamburger menu), choose "API and services," then "credentials."
- Click "create credentials," then "OAuth client ID."
- Choose "web application" and give it a name.
- Under "authorized redirect URI's," you'll need to enter
https://<your domain here>/Forums/Identity/CallbackHandler
, where your domain is something like meta.popforums.com
(replacing "meta" with whatever your forum ID is), or a custom domain, if you have that enabled and configured as part of your plan.
- Click "create" and receive your Client ID and Secret. These are available later by navigating to the same place and clicking on the name of your OAuth client name.
- You should see an option to setup your consent screen, which gives you a chance to upload a logo and other information.
Facebook
- Go to the Facebook Developer Site and log in using your Facebook login.
- Under "my apps," click "create."
- Add "Facebook login" as a product to enable.
- On the left, you should see "Facebook login," and if you click it, it expands to show "settings."
- Under "valid OAuth Redirect URI's," you'll need to enter
https://<your domain here>/Forums/Identity/CallbackHandler
, where your domain is something like meta.popforums.com
(replacing "meta" with whatever your forum ID is), or a custom domain, if you have that enabled and configured as part of your plan.
- Now click the main "settings" link near the top of the left navigation, then "basic." The resulting screen should have your App ID and Secret.
- Look around for settings for the conesnt screen, including a place to upload a logo.
Microsoft
- Go to the Auzre Portal and log in using your Microsoft account.
- Search or navigate for "App registrations."
- Click "new registration."
- Give it a name (this will appear on the consent screen). For "supported account types," you probably want "accounts in any directory and personal Microsoft accounts." Click "regsiter."
- Select the new registration, if you're not already there, and work your way down the left navigation items.
- On "overview," note the "application (client) ID."
- On "authentication," you'll need to add a redirect URI. You'll need to enter
https://<your domain here>/Forums/Identity/CallbackHandler
, where your domain is something like meta.popforums.com
(replacing "meta" with whatever your forum ID is), or a custom domain, if you have that enabled and configured as part of your plan. Click "save" at the top.
- On "certificates and secrets," click "new client secret" and create one, probably without expiration. Copy it before it disappears and use it in POP Forums.
OAuth2 returning JWT
This is for advanced users integrating with another OAuth2 source that supports JWT.