Use Envato oAuth instead of Tokens
Closed this issue · 5 comments
Instead of generating a token users should be able to authenticate with their Envato account.
@turtlepod This would be another good one for you take a look at. The current implementation of this repository is very closely tied to our "Setup Guide" we use in the themes (https://cloudup.com/cS5VS8THomR) but I would like it to become much more generic.
Right now it uses a generated token which involves too many steps (you have to generate it, copy and paste it back in to the field, etc). I would like the ability to simply output a "Connect with Envato" button (like our edd-envato-login plugin) anywhere in wp-admin that once connected checks the user's installed themes vs. their purchased Envato themes and prompts for automatic updates if there is any overlap.
Feel free to start from scratch. Most of the code in this repository is derived from https://github.com/envato/wp-envato-market
If there ends up being too much overlap with https://github.com/astoundify/edd-envato-login it might be nice to pull out the duplication code in to a separate repository that can easily be included in both.
OK! I'll do this early tomorrow 👍
I'm not sure how to do this.
To connect a user we need APP ID and Secret Key.
And we don't want to put this data in the theme publicly, right?
Is it safe to add this data in the theme/plugin?
(I'll do more research tomorrow)
Ah right that's probably why I did it like this before... It would be nice if there was some sort of workaround though that potentially used our site as the connector/middle man if possible? Not sure...
I'm sorry, I don't think it's possible to do this.
Even Envato Market plugin uses Personal token.
(I think the reason they have "personal token" is for use case like this ?)