Contributors: marius1hello, dickhardt, remotelychris, rohanharikr
Donate link: https://www.hello.dev/
Tags: security, login, oauth2, openidconnect, apps, authentication, sso
Requires at least: 4.9
Tested up to: 6.4
Stable tag: 1.5.4
Requires PHP: 7.4
License: GPLv2 or later
License URI: http://www.gnu.org/licenses/gpl-2.0.html
Free and simple to setup plugin provides registration and login with the Hellō Wallet. Users choose from popular social login, email, or phone.
Provide your users registration and login using their choice of popular social login, email, or phone. No need for you to configure your application at each provider or pay for a premium plugin.
Hellō Login verifies your users' email addresses so you don't have to. No longer do they have to manage another username and password to use your site.
Hellō is a cloud identity wallet cooperatively operated with a mission to empower users to control their identity. Learn more at hello.coop.
- Hellō Login installs with Hellō Quickstart to get you up and running in 7 clicks.
- Users manage how they login at wallet.hello.coop. No need for you to manage how they login or help them recover their account.
- Hellō Login uses the Hellō service, which provides login and verified email for free. See hello.dev/pricing for details.
Documentation, configuration, and settings can be found in Settings > Hellō Login
Watch a video showing installation and key features, and how Hellō Login relates to popular alternatives.
- Search for “hello openid” through 'Plugins > Add New' interface.
- Find the plugin box of Hellō Login and click on the Install Now button.
- Activate the Hellō Login plugin, then click Settings.
- Click the Quickstart button and complete the Quickstart flow.
- Once back at the Hellō Login Settings page, link your admin account with your Hellō Wallet.
- Download Hellō Login.
- Upload Hellō Login through 'Plugins > Add New > Upload' interface or upload hello-login folder to the
/wp-content/plugins/
directory. - Activate the Hellō Login plugin, then click Settings.
- Click the Quickstart button and complete the Quickstart flow.
- Once back at the Hellō Login Settings page, link your admin account with your Hellō Wallet.
Hellō is a cloud identity wallet that empowers users to prove who they are to any site that accepts Hellō. Learn more at hello.coop.
Hellō supports all popular ways to login including Apple, Facebook, GitHub, Google, Line, Microsoft, Twitch, Twitter, Yahoo, as well as email, phone and crypto wallets. We are adding more methods on a regular basis. See hello.coop for a complete list.
No. Hellō provides sites user data only with informed consent. User data is only accessible while the user has unlocked their wallet by logging in with their preferred provider.
Hellō has a freemium business model where basic claims such as login, verified email, and profile data is free. In the future we will have premium claims such as verified name, age, citizenship, residency, affiliations, and entitlements.
You can update your site configuration at console.hello.coop.
If you have "Allow users to log in to this site using WordPress.com accounts" enabled under Settings / Security, then you can only use WordPress accounts for logging in, and Hellō is not available. If you have "Let visitors use a WordPress.com, Twitter, Facebook, or Google account to comment." enabled under Settings / Discussion, then you can only use WordPress for leaving comments. You will need to disable these for Hellō to be available.
Please submit to https://github.com/hellocoop/wordpress/issues
- Improvement: clarifications regarding business model
- Improvement: WordPress 6.4 support
- Improvement: WordPress 6.3 support
- Improvement: updated screenshot list
- Improvement: added link to video showing installation and key features
- Improvement: tabbed Settings page
- Improvement: WordPress 6.2 support
- Improvement: added support for provider hint
- Improvement: added "Update Email with Hellō" functionality
- Improvement: internal restructuring for better testability and added basic unit tests
- Improvement: PHP 7.4 is the new minimum required version
- Fix: fixed parsing of empty scope
- Improvement: disable account linking on settings page when in multisite mode
- Improvement: simplified scope related settings and added scope validation
- Improvement: scroll to comment form after log in to post a comment
- Improvement: FAQ to clarify WordPress.com behavior
- Fix: handle cancelled log in attempts
- Improvement: set first and last name on sign-in if previously empty and if now available
- Improvement: save extra claims under user meta
- Improvement: add default scopes and reduce required scopes to
openid name email
- Improvement: set username and nickname even if only full name is available
- Fix: alter comment links only if plugin is configured
- Improvement: redirect back to blog post or page after sign-in
- Improvement: use Hellō link and button to sign in to leave a comment
- Fix: add cache control HTTP headers to auth request start endpoint response
- Feature: added Hellō section to profile page with link / unlink functionality
- Feature: added admin notices for Quickstart and link/unlink actions
- Feature: redirect to settings page on plugin activation
- Improvement: more restructuring of the settings page
- Improvement: moved away from all REST APIs
- Improvement: restructured the settings page
- Improvement: added information about what data is being sent through Quickstart
- Improvement: increased state time limit to 10 minutes
- Improvement: updated the short description of the plugin
- Fix: logged out message on login page moved to top
- Improvement: disable logging by default
- Improvement: login page layout fixes and improvements
- Improvement: logins from wp-login.php redirect users to admin area
- Improvement: show "User Settings" section
- Improvement: show settings form in debug mode
- Fix: disable caching on REST API response
- Improvement: enable logging by default
- Improvement: content changes on plugin settings page
- Fix: use query parameter based redirect URI
- Fix: authentication request URL generated through REST API on button click
- Improvement: removed the WordPress User Settings section
- Improvement: removed the Authorization Settings section
- Improvement: use /hello-login/callback path for redirect URI
- Improvement: added endpoint for Quickstart response
- Fix: client id field being reset on settings save
- Fix: automatic configuration of rewrite rules
- Feature: added screenshots
- Update: plugin details
- Fix: plugin settings and login page redirects after connecting with Hellō
- Feature: added
given_name
andfamily_name
scopes as defaults - Fix: admin account linking done based on curren session
- Feature: link user account on sign-in, when account is matched on email
- Fix: map
nickname
to new username, instead ofsub
- Feature: added "Settings" link right in plugin list
- Fix: show "Continue with Hellō" button on login page only if the plugin is configured
- Feature: added
integration
parameter to Quickstart request
- First release in WordPress plugin repository
- Feature: toggle settings page content based on settings and current user state
- Feature: collapse username / password form on login page
- Feature: send Privacy Policy and Custom Logo URLs to Quickstart
- Feature: added "Link Hellō" button to settings page
- WordPress plugin submission feedback
- Improvement: updated "Tested Up To" to 6.1.0
- Fix: input/output sanitization and generation
- Improvement: removed unused global functions
- Improvement: enabled user linking and redirect after login
- Forked https://github.com/oidc-wp/openid-connect-generic
- Feature: merged PR that adds PKCE support
- Feature: integrated Hellō Quickstart
- Feature: removed unnecessary configuration options
- Improvement: renamed all relevant identifiers to be Hellō Login specific