Submit Changelog
Track Changelogs

SAML IDP (Identity Provider) – Login with Website Users

Changelog

1.16.6

  • Improved validation for SAML ACS URL.
  • Fixed assets conflicts.

1.16.5

  • Fixed the PHP 8.1 compatibility issue related to libxml handling.

1.16.4

  • WordPress 6.9 compatibility.
  • Security fix: Secured XML parsing to prevent XXE attacks and internal error exposure.
  • Security fix: Restricted ACS URLs to trusted Service Providers to prevent misuse and redirects.

1.16.3

  • Fixed and improved the existing integration of RobRichardsXMLSecLibs library.

1.16.2

  • Code Improvement: Removed unused code flows.
  • Security Improvements

1.16.1

  • Updated plugin name.

1.16.0

  • WordPress 6.8 compatibility.
  • Fixed UI inconsistencies for contact buttons.
  • Bugfix: Select POST binding ACS URL when metadata contains multiple ACS URLs.

1.15.9

  • Improved validations while importing metadata.
  • Improved UX for NameId selection with a search and select.
  • Added a confirmation popup for metadata upload flow when we are replacing existing configurations.

1.15.8

  • Updated forgot password link associated with the miniOrange account in the plugin.
  • Bugfix: Fixed plugin action link leading to a 404 page.
  • Added certificate generation framework in the plugin to generate new SSO certificates when expiry is near.
  • Removed certificate files. Certificates will be stored in and used from the database from now on.
  • Note: If you downgrade to previous versions your SSO might be interrupted.

1.15.7

  • Compatibility with WordPress 6.7.
  • Improved security for SQL Queries executed by the plugin.

1.15.6

  • Migrated the php fopen and unlink calls to relevant WP Filesystem calls

1.15.5

  • Compatibility with WordPress 6.6.
  • Bug fix – Fixed AWS metadata import issue.
  • Bug fix – Fixed autoload file conflict issue.
  • Removed RewriteRules flow which added rules to WordPress htaccess and moved it to the plugin.

1.15.4

  • Compatibility with WordPress 6.5.
  • Bug fix – Removed unnecessary html tags from error messages.

1.15.3

  • Updated license plans.
  • Updated certificate.
  • Compatibility with WordPress 6.4 and PHP 8.2.

1.15.2

  • Bug fix – Introduced in v1.15.1, plugin throwing fatal error in some cases.

1.15.1

  • Bug fix – Warning appearing on Service Providers page.
  • Bug fix – Unable to change NameID attribute value.
  • Bug fix – Fixed RelayState characters getting stripped.
  • Bug fix – Fixed configuration tables not being deleted on plugin deletion.
  • Setting more secure cookies at the time of SSO.
  • Updated support email address.
  • Compatibility with WordPress 6.3.

1.15.0

  • Code fixes as per WordPress guidelines.

1.14.5

  • Readme update
  • Version upgrade

1.14.4

  • Compatibility with WordPress 6.1

1.14.3

  • Updated X.509 certificate for signing SAML response.

1.14.2

  • Compatibility with older versions of WordPress.

1.14.1

  • Safari Compatibility fixes.
  • Minor bug fixes.

1.14.0

  • UI Revamp

1.13.6

  • Readme update
  • Version upgrade

1.13.5

  • Minor bug fixes.

1.13.4

  • Bug fix – Upload SP Metadata, and Download IDP Metadata

1.13.3

  • Vulnerability fixes.

1.13.2

  • Updated libraries to the latest version.
  • Removed visual tour.

1.13.1

  • Minor UI fixes

1.13.0

  • Revamped the UI for a quicker SSO configuration.
  • Added the ‘Keep configuration intact’ feature to retain your configuration while reinstalling / upgrading.
  • Added a ‘Request a Demo’ feature to try out the Premium plugin.
  • Added organization details in the IDP Metadata XML.
  • Other visual improvements and minor bug fixes.

1.12.7

  • Added Contact Us widget for easier support access.
  • Updated the default signature algorithm to SHA-256 for more secure SSO.
  • Bug fixes for Upload SP Metadata functionality.
  • Compatibility with WordPress v5.8 and PHP 8.

1.12.6

  • Updated endpoints for IDP Metadata XML
  • Updated license to MIT
  • Compatibility with WordPress v5.7

1.12.5

  • Fresh certificates to secure your SSO
  • Bug fixes
  • Compatibility with WordPress v5.6

1.12.4

  • Added Upload SP Metadata feature
  • Revamped the feedback form
  • Compatibility with WordPress v5.5

1.12.3

  • Bug fixes

1.12.2

  • New License Plans

1.12.1

  • Updated certificates and metadata
  • Updated Guide links
  • Improved UI

1.11.1

  • Support Contact changes
  • Certificate Updates

1.11.0

  • Added Visual Tour
  • Bug Fixes
  • UI Refresh

1.10.9

  • Security Fixes

1.10.8

  • Bug Fixes – User Session Check during IDP initiated flow
  • Added support for JWT token authentication
  • Security Fix

1.10.7

  • Compatibility with version WordPress 4.9
  • Bug Fixes

1.10.6

  • Metadata XML file fixes
  • Fix for showing all distinct user attributes

1.10.5

  • Documentation Link Fixes

1.10.4

  • Support Query Form Fix

1.10.3

  • Constant File Changes

1.10.2

  • Added Support for Ws-Fed

1.10.1

  • API fixes

1.6

  • Changes in detecting Service Provider

1.5

  • Bug Fixes

1.4

  • Added documentation for new users.

1.3.5

  • Bug Fix while reading AuthnRequest

1.3.3

  • Added Custom Static Attributes
  • Bug Fixes

1.3.2

  • Bug Fixes

1.3.1

  • Tested Compatibility with WordPress 4.5.1
  • Updated Policies

1.3

  • Added Single Logout
  • Licensing Changes

1.2

  • Changes & fixes for WordPress 4.5
  • Bug fix for reading SAML Assertion

1.1

  • Bug Fixes

1.0.5

  • Major Security Fix

1.0.4

  • Bug Fixes

1.0.3

  • Change login URL of IDP
  • Fix for fetching SP Configuration

1.0.2

  • UI Changes
  • Addition of Encryption in Premium options
  • Table Update

1.0.1

  • Added Premium Options
  • Bug fixes

1.0.0

  • this is the first release.

Plugin Website
Visit website

Author
miniOrange
Version:
1.16.6
Last Updated
March 25, 2026
Active Installs
600
Requires
WordPress 4.8
Tested Up To
WordPress 6.9.4
Requires PHP
5.6

Share Post

Join our newsletter.

Get insights into what’s happening at ChangelogWP right in your inbox. We don’t believe in spam.