Should you be using a premium WPO365 addon or bundle, and are you using wp-config.php for Identity Provider configuration(s), then please continue reading.
For quite some time, it has been possible to manage Entra ID-based Identity Provider (IdP) secrets, such as the application (client) secret, using WordPress’ wp-config.php [tutorial], and to remove those secrets from the WordPress database [read more]. Recently, this functionality has been expanded to include support for configuring multiple Identity Providers [tutorial]. With the release of version 30, this portion of the plugin has been worked on once again, enabling the configuration of various tenant types, such as regular Entra ID, Azure AD B2C, and Entra External ID.
Updates for WPO365 version 30 may break your existing setup, when you re-apply the Obfuscate AAD options logic while WPO365 | LOGIN version 30 or higher is active.
When you re-apply the Obfuscate AAD options logic, then WPO365 will replace a number of IdP properties in the database with placeholder values. If you have not yet added those values to the site’s wp-config.php, the IdP configuration become incomplete. As a result SSO and possible other integration scenarios will fail.
For as long as the Obfuscate AAD options logic is not re-applied, WPO365 will automatically look up the missing properties in the database and return their correct values instead of the placeholder values.
Therefore it is highly recommended to review the IdP configuration in your site’s wp-config.php and incorporate the new properties, using the list provided in this article.
Please note You can safely omit parts of the configuration if you do not use the corresponding functionality. For example, if you have implemented OpenID Connect (OIDC) based Single Sign-on, then you can omit the keys that configure the SAML 2.0 IdP. If you have not configured WPO365’s built-in Microsoft Graph Mailer for WordPress then you can skip adding the corresponding four options.