Changeset 3173920
- Timestamp:
- 10/22/2024 09:25:06 PM (17 months ago)
- File:
-
- 1 edited
-
rainbow-secure/trunk/readme.txt (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
rainbow-secure/trunk/readme.txt
r3164550 r3173920 1 === Rainbow Secure ===1 === Rainbow Secure – Advanced MFA & SSO Plugin === 2 2 Contributors: rsecurewp 3 Tags: SSO, SAML, security, login, authentication3 Tags: SSO, SAML, MFA, login, OTP, Security 4 4 Requires at least: 5.0 5 5 Tested up to: 6.6 … … 9 9 License URI: https://www.gnu.org/licenses/gpl-2.0.html 10 10 11 Rainbow Secure SSO for WordPress, integrating with Rainbow Secure's Identity Provider (IDP).11 Boost your WordPress site’s security with advanced multi-layer MFA and seamless SSO integration. 12 12 13 13 == Description == 14 14 15 Rainbow Secure is designed to simplify and enhance the security of your WordPress site's login process by enabling Single Sign-On (SSO) through SAML with Rainbow Secure's IDP. This plugin facilitates seamless user authentication using existing credentials from Rainbow Secure's Identity Provider.15 Rainbow Secure’s MFA and SSO Plugin provides enterprise-level protection with customizable authentication workflows to secure your website and user accounts from credential theft, brute-force attacks, phishing, and more. Empower your users with secure and seamless logins, while protecting your site from cyber threats. 16 16 17 17 **Key Features:** 18 * Easy integration with Rainbow Secure's Identity Provider19 * Secure SSO login for WordPress users20 * Auto-provisioning of user accounts21 * Attribute mapping between IDP and WordPress22 * Role mapping for seamless role management23 * Customizable SAML settings24 18 25 **Third-Party Services:** 26 This plugin relies on external services provided by Rainbow Secure for activation and configuration purposes. The plugin communicates with the following external APIs: 19 1. **Multi-Factor Authentication (MFA)** 20 Safeguard your WordPress site with various MFA options, including: 21 * Formatted Passwords: Customize passwords with additional layers like color and style. 22 * OTP Challenges: Receive OTPs via Email, SMS, or Mobile App for every login attempt. 23 * Adaptive Authentication: Security adjusted based on device, time of access, location, and behavior. 24 * Remember Device: Trusted devices can be whitelisted to reduce repeated MFA prompts. 25 * Location-based MFA: Define trusted work locations for seamless, secure access. 27 26 28 1. **Rainbow Secure Activation API:** 29 - **Service URL:** `https://www.rsecureoffice.com/sso/rs_activatewebsiteplugin.aspx` 30 - **Purpose:** To verify and activate the plugin using a site-specific activation key. 31 - **Data Sent:** 32 - Site URL 33 - Requested Company Information (Name, Type, Industry) 34 - Requested Administrator Details (Name, Email, Phone) 35 - Requested Plugin Activation Key 36 - **Data Received:** 37 - Activation status 38 - Expiration date of the activation 39 - [Terms of Use](https://www.rainbowsecure.com/terms-conditions/) 40 - [Privacy Policy](https://www.rainbowsecure.com/privacypolicy/) 27 2. **Single Sign-On (SSO)** 28 Simplify login for your users with SSO integration: 29 * Supports SAML, Integrate with 1000+ SaaS applications including Microsoft Office, Google Workspace, Salesforce, Zoom, Canva, Stripe, Cloud Providers including Azure AD, AWS, Google, IAM providers including Entra, Okta, Ping Identity. 30 * User provisioning and de-provisioning for automatic WordPress account management. 31 * Role mapping and session management across multiple apps. 32 33 3. **Customizable Security Policies** 34 Define security rules tailored to your organization’s needs: 35 * Set Conditional Access rules based on IP, role, location, or time. 36 * Restrict access to trusted devices or enforce custom password policies with Rainbow Secure features. 37 * Role-based access control ensures only authorized users reach key areas of your site. 38 39 4. **Compliance and Reporting** 40 Achieve regulatory compliance and maintain control over user activities: 41 * GDPR & CCPA compliance: Tools to manage user data privacy with export and deletion capabilities. 42 * Audit logs: Track login attempts and SSO/MFA activity for accountability and monitoring. 43 * Secure data transmission with AES-256 encryption for credentials and tokens. 44 45 5. **WooCommerce & BuddyPress Integration** 46 Protect your eCommerce transactions with WooCommerce support, and extend MFA and SSO security to BuddyPress for community sites. 47 48 6. **Custom Branding & Login Flows** 49 Customize your login screens with your brand’s logos and colors, and create passwordless login options for a seamless, secure user experience. 50 51 7. **Premium Support & Enterprise Features** 52 Enjoy 24/7 priority support and enterprise-grade features such as load balancing, high availability, and multi-factor backups for scaling your security. 41 53 42 54 == Installation == … … 45 57 2. Activate the plugin through the 'Plugins' screen in WordPress. 46 58 3. Go to "Rainbow Secure" in the WordPress admin menu to configure the plugin settings. 47 4. Follow the instructions to integrate with Rainbow Secure's Identity Provider .59 4. Follow the instructions to integrate with Rainbow Secure's Identity Provider and set up MFA. 48 60 49 61 == Frequently Asked Questions == 50 62 51 = How do I configure the plugin with Rainbow Secure's Identity Provider? = 63 = How do I configure the plugin with Rainbow Secure's Identity Provider and MFA? = 64 Navigate to the Rainbow Secure settings page in the WordPress admin dashboard. Follow the setup instructions to configure your Identity Provider (IDP) details, such as entity ID, SSO URL, and X.509 certificate, along with configuring MFA methods. 52 65 53 Navigate to the Rainbow Secure settings page in the WordPress admin dashboard. Follow the setup instructions to configure your Identity Provider (IDP) details, such as entity ID, SSO URL, and X.509 certificate. 54 55 = Can I map custom attributes from my IDP to WordPress user fields? = 56 66 = Can I map custom attributes from my IDP to WordPress user fields? = 57 67 Yes, Rainbow Secure allows you to map custom attributes from your IDP to WordPress user fields. You can configure these mappings in the Attribute Mapping section of the plugin settings. 58 68 59 = Does the plugin support Single Logout (SLO)? = 60 69 = Does the plugin support Single Logout (SLO)? = 61 70 Yes, Rainbow Secure supports Single Logout (SLO). You can enable this feature in the plugin settings. 62 71 … … 65 74 1. Plugin settings page 66 75 2. Request Activation Key Page 67 3. User login screen with SSO enabled76 3. User login screen with SSO and MFA enabled 68 77 69 78 == Changelog == 70 79 71 = 1.0.0 = 72 * Initial release of Rainbow Secure 73 * SSO functionality with SAML 74 * User auto-provisioning and attribute mapping 75 * Role mapping and customizable settings 80 = 1.0.0 = 81 * Initial release of Rainbow Secure 82 * Multi-Factor Authentication (MFA) options including OTP and Adaptive Authentication 83 * Single Sign-On (SSO) functionality with SAML 84 * User auto-provisioning and attribute mapping 85 * Role mapping, WooCommerce, and BuddyPress support 86 * Customizable security policies and login flows 87 * Compliance tools and audit logs for GDPR & CCPA 76 88 77 89 == Upgrade Notice == 78 90 79 = 1.0.0 = 80 Initial release .91 = 1.0.0 = 92 Initial release with MFA and SSO support. Configure MFA options and security policies for enhanced protection. 81 93 82 94 == License ==
Note: See TracChangeset
for help on using the changeset viewer.