Comments on: GNUCITIZEN Wordpress Plugins

By: WordPress World: 50+ excellent WordPress Plugins, articles and resources - Stalkk.ed

Mon, 11 May 2009 18:36:01 +0000

[...] WordPress IPS – The WordPress IPS is probably one of the lightest plugins you will ever encounter but its power is immense and incomparable to anything else seen. The plugin is designed to simply block malicious requests before being processed by the WordPress engine and therefore secure against common and well known attack vectors. [...]

By: admin

admin — Fri, 03 Apr 2009 08:56:46 +0000

Dan, this is quite easy to do but of course quite insecure. You can code a very simply plugin just for this purpose but I wont recommend it.

By: Dan

Dan — Fri, 03 Apr 2009 00:52:56 +0000

Hmm, I like the direction of the app gateway plugin. However I was wondering how straight forward it might be to modify its code to automatically enter google account information for more automation when users sign up? eg. my wordpress mu install and google mail share the same domain… so if users are created with the same username as their googlemail username, could it automatically sign them in? (obviously the passwords would have to match)

Cheers
Dan

By: Cameron

Cameron — Wed, 18 Jun 2008 16:42:33 +0000

If you could do this, to would open a whole world of possibilities for Google Apps for domains users.

I would love to use Word Press as a gateway to host a number of online applications I wish to integrate with our Google Apps for domains system. It’s simple enough to embed a Wordpress site into the new Google Sites -but securing the site and integrating it with existing Google Apps (for domains) user’s logins is the barrier to doing this.

Such a plugin would allow admins to integrate Quickbooks, Zoho Creator, or a number of other applications right inside google sites.

By: pdp

pdp — Wed, 18 Jun 2008 08:47:58 +0000

hello Cameron, I might end up writing such a plugin. thanks for the idea.

By: Cameron

Cameron — Tue, 17 Jun 2008 23:33:28 +0000

pdp,

I’m looking for a way to secure my wordpress site using the same credentials my users are using in Google apps for domains.

Will this plugin allow people logged into Google apps for domains to seemlessly access my wordpress site?

By: Prima prova. -- TRUEMILKDOTORG

Prima prova. -- TRUEMILKDOTORG — Mon, 26 May 2008 20:48:15 +0000

[...] altra cosetta. Nel frattempo si ringraziano cordialmente Flisterz per il tema e Gnucitizen per i plugins. « Hello [...]

By: Prasannah

Prasannah — Sun, 25 May 2008 06:15:29 +0000

I've added the details and it works. But in my settings section it always shows:

Applications
Storage not loaded!

Designer
Storage not loaded!

By: pdp

pdp — Sun, 25 May 2008 06:11:11 +0000

you have to configure the plugin first but yes.

By: Prasannah

Prasannah — Sun, 25 May 2008 06:02:18 +0000

So that is, if I’m logged in to Wordpress and if I use the same login details for gmail, I’ll be taken to Gmail without asking for the login details is it?

By: pdp

pdp — Sun, 25 May 2008 05:58:41 +0000

all this plugin will do is to allow you to use your wordpress to authenticated with your google mail account, so you don’t have to login twice. your gmail credentials are locked with a master key which means that if somebody manages to crack into your wordpress account they still need to guess the master key in order to login into your other accounts. so, if you are planning to use it make sure that you choose significantly complicated key of at least 12 characters.

By: Prasannah

Prasannah — Sun, 25 May 2008 05:01:08 +0000

I’m kinda new to this whole gateway concept? I am primarily looking for a way for my users to be able to use Google Apps directly if they are logged in to my Wordpress site. Can this plugin help me do this?

By: pdp

pdp — Mon, 21 Apr 2008 08:52:26 +0000

I am glad that you find them useful. Newer versions of the plugs will be released soon.

By: Adieska

Adieska — Sun, 20 Apr 2008 16:14:31 +0000

Thanks for sharing. I’m a newbie in wordpress. Before I migrate to WP, I’m using free Blogspot blog. Once again thanks.

By: Stevens

Stevens — Wed, 02 Apr 2008 13:28:24 +0000

cool plugin for Wordpress. I’ve been waiting for more plugin. Usefull and it’s great. Good job

By: Ben Greenberg

Ben Greenberg — Fri, 29 Feb 2008 17:00:12 +0000

Thanks for your reply! This looks quite doable. I’m looking forward to experimenting with this. My scheme here is to have an internal work blog that I’ve set up be the gateway to other information like a communications planning calendar. Might be a week or two before I’m able to work on this further. I’ll let you know how it goes.

By: pdp

pdp — Fri, 29 Feb 2008 09:58:15 +0000

Ben, thanks. We have dozens more plugins to release to the public and we will do that as soon as possible. Let me answer your question here: The App gateway currently supports GMail only. But it is very easy to make it support whatever else you want. Within the folder of the plugin, you will find a file called gc-app-gateway-catalog.jsn. Notice the gmail branch. In order to add a new application, you have add a new branch. For example you can call it facebook. For the template parameter you have to specify the code that will be rendered within a new frame which will perform a CSRF request against the login form. Just follow the syntax in this file and you will quickly get the grip of it. There is a security reason why we choose this model instead of storing that kind of things in the database. I might add some more applications soon but if you can do that and help us expand on this wonderful plugin, it will be even better.

By: Ben Greenberg

Ben Greenberg — Thu, 28 Feb 2008 21:34:30 +0000

This is a nice collection of plugins. I just installed App Gateway in a Wordpress MU installation (v. 1.25) that I’ve got set up at work. When I use the Designer on the App Gateway options page, the only option available in the type pull down is gmail. I want to use this plugin for google apps under my own domain. So I want to be able to configure accordingly. Can you give my any pointers?

Many thanks!

By: holotone.net

holotone.net — Mon, 04 Feb 2008 00:30:14 +0000

[...] GNUCITIZEN Wordpress Plugins | GNUCITIZEN [...]

By: pdp

pdp — Sun, 27 Jan 2008 22:08:18 +0000

Joe,

I think that we’ve tested a few Analytics plugins and they all seamed to have at least one security problem. The one that we used to use, forgot the name but it should be the most popular plugin that does the job, has problems with quotes. Because the plugin automatically adds some JavaScript trickery for each anchor tag and because the author failed to sanitize single quotes, and because all Wordpress tags use single quotes for the tag attributes, it is possible to break out of the XSS protection mechanisms and persistently store JavaScript within the comment. This was in particular quite nasty but I failed to report the problem due to the fact that I didn’t have much time back then. That was like 2-3 months ago. The plugin might be still very vulnerable.