Glossary Item Box

Squirrelcart v4.4.0

Social Sign-In

Overview

Social Sign-In allows your customers to login using popular social networking sites that they already have accounts for, like Facebook, Twitter, and Google. 

Behind the Scenes

We use a standard protocol called Oauth 2.0 to accomplish this, and a script called Opauth behind the scenes, which is a PHP based implementation of the Oauth 2.0 protocol. 

Strategies

Opauth uses the term strategy to refer to a network a user can login with. Squirrelcart supports the following strategies:

How it Works

In addition to seeing a login form to login using an account native to Squirrelcart, your customers will see buttons to login via social networks:

 

When the Login with Us button is clicked, it will open the standard Squirrelcart login form:

 

If they click any of the social network login links instead:

 

...they will be taken to the corresponding site. There, they will be asked to login if they are not already logged in:

 

 Once logged in, the user will be asked to grant permission:

 

When they click Okay, they will be returned to your site. They will be logged in automatically. If any additional requried fields are not made available to Squirrelcart, they will be asked to provide the missing information using Squirrelcart's account details page:

 

The above screen will not appear if all required fields are provided in the response from the social network. For most strategies, they will only return the email address and the person's name. If you make those the only required fields for the account form on the address form settings page, the users will not need to complete this step.

Once they have granted approval, on subsequent logins if they are already logged in via the social network they choose, they will be logged in immediately. If they are not logged in, they will be asked to login and will then return to your store without having to be asked for permission.

Changing Login Method

An existing user can change their login method at any time. To do so, they just need to click the Account Details link. Towards the bottom of the account details page they will have options to switch to any other enabled strategy:

If The Customer Forgets How They Logged In

If the customer can't remember how they logged in, as long as there is a valid email address assigned to their account they will be able to reset their account using the standard Forgot Password feature. When they do so, they will be sent an email to reset their account, which will log them in using the native Squirrelcart login strategy.

Requirements

 

Enabling Social Sign-In

  1. If you have not already done so, enable our SEO URL feature.
  2. When a strategy is enabled, the URL to login with that strategy by default will be something like this:
    http://www.example.com/auth/facebook

    The auth string let's Squirrelcart know that a login request is being made. This string can be changed if you wish, using the SSI URL Base field which is located in the Account Settings fieldset on the Store Settings page.

    We recommend leaving this field set to it's default value of auth. If you decide to change it and you have the No Filename field checked on your Store Settings page, you will need to change the "auth" string in your htaccess file to match. See the SEO URL section of our URLs topic for more info.
  3. Enable at least one strategy. See the topics corresponding to the strategies you wish to enable in this section for instructions.

Disabling Social Sign-In

  1. Open the Account Settings page:
  2. Uncheck the checkbox in the Enabled column for all strategies except for Squirrelcart

 

 

 


© 2001-2014 Lighthouse Development. All Rights Reserved.