Comments on: GNUCITIZEN Wordpress Plugins

By: California SR22

California SR22 — Thu, 25 Sep 2008 05:21:09 +0000

Thanks guys, just downloaded and will use on our site shortly.

Great Work Keep it up :-)

By: Vic

Vic — Tue, 24 Jun 2008 18:49:04 +0000

Hi there,

Know anyone which plugin to use if I want only the first part (first paragraph) of the article to be displayed? If someone want to read more there will be a “read more” link… On my blog right now is displayed all of article content and I don’t want this… I’m talking about the latest 10 articles displayed on the first page of my blog. I’m using Wordpress. Can anyone help?

By: Cameron

Cameron — Wed, 18 Jun 2008 16:42:33 +0000

If you could do this, to would open a whole world of possibilities for Google Apps for domains users.

I would love to use Word Press as a gateway to host a number of online applications I wish to integrate with our Google Apps for domains system. It’s simple enough to embed a Wordpress site into the new Google Sites -but securing the site and integrating it with existing Google Apps (for domains) user’s logins is the barrier to doing this.

Such a plugin would allow admins to integrate Quickbooks, Zoho Creator, or a number of other applications right inside google sites.

By: pdp

pdp — Wed, 18 Jun 2008 08:47:58 +0000

hello Cameron, I might end up writing such a plugin. thanks for the idea.

By: Cameron

Cameron — Tue, 17 Jun 2008 23:33:28 +0000

pdp,

I’m looking for a way to secure my wordpress site using the same credentials my users are using in Google apps for domains.

Will this plugin allow people logged into Google apps for domains to seemlessly access my wordpress site?

By: Prima prova. -- TRUEMILKDOTORG

Prima prova. -- TRUEMILKDOTORG — Mon, 26 May 2008 20:48:15 +0000

[...] altra cosetta. Nel frattempo si ringraziano cordialmente Flisterz per il tema e Gnucitizen per i plugins. « Hello [...]

By: Prasannah

Prasannah — Sun, 25 May 2008 06:15:29 +0000

I’ve added the details and it works. But in my settings section it always shows -

Applications
Storage not loaded!

Designer
Storage not loaded!

By: pdp

pdp — Sun, 25 May 2008 06:11:11 +0000

you have to configure the plugin first but yes.

By: Prasannah

Prasannah — Sun, 25 May 2008 06:02:18 +0000

So that is, if I’m logged in to Wordpress and if I use the same login details for gmail, I’ll be taken to Gmail without asking for the login details is it?

By: pdp

pdp — Sun, 25 May 2008 05:58:41 +0000

all this plugin will do is to allow you to use your wordpress to authenticated with your google mail account, so you don’t have to login twice. your gmail credentials are locked with a master key which means that if somebody manages to crack into your wordpress account they still need to guess the master key in order to login into your other accounts. so, if you are planning to use it make sure that you choose significantly complicated key of at least 12 characters.

By: Prasannah

Prasannah — Sun, 25 May 2008 05:01:08 +0000

I’m kinda new to this whole gateway concept? I am primarily looking for a way for my users to be able to use Google Apps directly if they are logged in to my Wordpress site. Can this plugin help me do this?

By: pdp

pdp — Mon, 21 Apr 2008 08:52:26 +0000

I am glad that you find them useful. Newer versions of the plugs will be released soon.

By: Adieska

Adieska — Sun, 20 Apr 2008 16:14:31 +0000

Thanks for sharing. I’m a newbie in wordpress. Before I migrate to WP, I’m using free Blogspot blog. Once again thanks.

By: Stevens

Stevens — Wed, 02 Apr 2008 13:28:24 +0000

cool plugin for Wordpress. I’ve been waiting for more plugin. Usefull and it’s great. Good job

By: Ben Greenberg

Ben Greenberg — Fri, 29 Feb 2008 17:00:12 +0000

Thanks for your reply! This looks quite doable. I’m looking forward to experimenting with this. My scheme here is to have an internal work blog that I’ve set up be the gateway to other information like a communications planning calendar. Might be a week or two before I’m able to work on this further. I’ll let you know how it goes.

By: pdp

pdp — Fri, 29 Feb 2008 09:58:15 +0000

Ben, thanks. We have dozens more plugins to release to the public and we will do that as soon as possible. Let me answer your question here: The App gateway currently supports GMail only. But it is very easy to make it support whatever else you want. Within the folder of the plugin, you will find a file called gc-app-gateway-catalog.jsn. This file is responsible for defining what applications the plugin supports. Here is the content of the file:

http://www.gnucitizen.org/wordpress/wp-content/plugins/gc-app-gateway/gc-app-gateway-catalog.jsn

Notice the gmail branch. In order to add a new application, you have add a new branch. For example you can call it facebook. For the template parameter you have to specify the code that will be rendered within a new frame which will perform a CSRF request against the login form. Just follow the syntax in this file and you will quickly get the grip of it. There is a security reason why we choose this model instead of storing that kind of things in the database. I might add some more applications soon but if you can do that and help us expand on this wonderful plugin, it will be even better. Credits apply where due, you know that :)

By: Ben Greenberg

Ben Greenberg — Thu, 28 Feb 2008 21:34:30 +0000

This is a nice collection of plugins. I just installed App Gateway in a Wordpress MU installation (v. 1.25) that I’ve got set up at work. When I use the Designer on the App Gateway options page, the only option available in the type pull down is gmail. I want to use this plugin for google apps under my own domain. So I want to be able to configure accordingly. Can you give my any pointers?

Many thanks!

By: holotone.net

holotone.net — Mon, 04 Feb 2008 00:30:14 +0000

[...] GNUCITIZEN Wordpress Plugins | GNUCITIZEN [...]

By: pdp

pdp — Sun, 27 Jan 2008 22:08:18 +0000

Joe,

I think that we’ve tested a few Analytics plugins and they all seamed to have at least one security problem. The one that we used to use, forgot the name but it should be the most popular plugin that does the job, has problems with quotes. Because the plugin automatically adds some JavaScript trickery for each anchor tag and because the author failed to sanitize single quotes, and because all Wordpress tags use single quotes for the tag attributes, it is possible to jail-break out of the XSS protection mechanisms and persistently store JavaScript within the comment. This was in particular quite nasty but I failed to report the problem due to the fact that I didn’t have much time back then. That was like 2-3 months ago. The plugin might be still very vulnerable.

By: JoePhantom

JoePhantom — Sun, 27 Jan 2008 22:00:25 +0000

Thanks for sharing.

“Well, what do you know? The plugin does nothing but to provide nice and clean interface for enabling and using Google Analytics. The reason we had to write this plugin was because all other Google Analytics plugins out there are vulnerable to simple and persistent XSS, no CSRF trickery required, just post your comments on the vulnerable site. Shame! It is absolutely possible to write an AJAX Wordpress comment worm”

Interesting. Could you go depeer in the topic?