Openid plugin issue

dung · September 19, 2025, 5:46pm

Describe the issue or problem
Please tell us what happens and what you expected to happen.

––
We expect openid plugin to work on multi journals hosting OJS environment where there are also multiple custom domain names other than the one main one, for example:
we have one main domain name journalhosting.university.ca and we also have cultureinthepast.org or warsinthepresent.net for other journals within the same hosting environment.

––

The plugin will work for only journalhosting.university.ca but not for any other domain names.

the version of plugin is:

openid plugins.generic 3.4.0.0 2024-11-01 1 1 OpenIDPlugin

Steps I took leading up to the issue
For example:

Downloaded https://github.com/pkp/openid/releases/download/v3_4_1-0/openid-v3_4_1-0.tar.gz
Install using admin page of the site
Configure plugin to work with the company Entra SSO authentication
See error on every login of all domain names except for the only one main domain name.

image1011×166 27.2 KB

What application are you using?
Ours is OJS 3.3.0-20

Additional information
We are wondering if the plugin is designed for multi journal hosting environment with some different domain names for some different journals.

Thank you for any help or suggestion.

Dung.

rcgillis · September 20, 2025, 9:07am

Hi @dung,

This would suggest that you’re downloading a 3.4 version that is likely not compatible with the version you’re running (3.3.). It is best to download and install plugins from the plugin gallery, as they have been tested against the given release you’re running.

-Roger
PKP Team

dung · September 22, 2025, 2:27pm

Hello @rcgillis

I tried exactly your suggestion but still there is no luck. Here is the error message:

Let me know what else I can try ?

Thank you!

Best regards,

Dung.

gabriela1 · September 22, 2025, 7:58pm

Hello,

Thank you for your guidance so far.

I think we have two separate problems.

Configuring the plugin site-wide and not being able to authenticate at the journal level (only the main site URL will allow us to log in successfully). Do we need to add the settings for the plugin for each journal, not site-wide?
We host multiple journals in the same installation of OJS, and five journals have custom domains. Is it possible to use the OpenID Authentication Plugin for our journals with custom domains, and how would we go about configuring it (in OJS)?

Best wishes,

Gabriela

mpbraendle · September 23, 2025, 9:10am

Hi Gabriela,

multiple journals with custom domains are possible with OpenID. We have that running in production since about 2 months on https://www.hope.uzh.ch and its journals. You need to configure the plugin for each journal individually. Maybe @krg can comment how he did this.

krg · September 24, 2025, 11:18am

Yes, you can use the plugin for multiple journals but you need to configure it for each journal separately.

Additionally ensure that you provide the correct “Redirect URL” shown during the OJS plugin setup to the Identity Provider you’re using:

This, too, you have to do for each configured journal with or without an own domain.

Hope this helps.

gabriela1 · September 24, 2025, 2:20pm

Thank you very much for your help. This is what we needed, and it makes things much clearer.

Best wishes,

Gabriela

gabriela1 · September 25, 2025, 4:55pm

Hi @rcgillis

Thank you for your assistance.
In GitHub, openid-v3_4_1-0.tar.gz is listed under OJS 3.3.0. Is there another release that would match our OJS version?

Best wishes,

Gabriela

dung · September 25, 2025, 6:49pm

Hello @krg

Can you please provide Gabriela and I your versions of OJS, openid plugin, and php.

We have tried hard based on your instruction but still no luck, So I think it may have to do with versions. The error I found in my php log is:

Thank you so much for you help thus far.

mpbraendle · September 25, 2025, 8:57pm

We are using OJS 3.4.0-9 and openid 4.0.0.0 .
The deprecated warning in your version indicates that somewhere before in the code the variable that is passed as first parameter is not set.

dung · September 26, 2025, 2:33pm

Thanks @mpbraendle I bet version is our problem and yes I do not know why first param was not set. Our MS Entra admin and I too can confirm that the authentication step was successful but in the last step of the auth process the call back from openId plugin to Entra failed - I have a feeling this is because php8 does not like something that was written for php7.

dung · October 3, 2025, 2:08pm

Update: We need to implement MFA by way of Openid, so we are going to upgrade to OJS 3.4.0-9 and openid 4.0.0.0. @mpbraendle May I ask for your linux OS version. We are on Red Hat Enterprise Linux release 8.10 (Ootpa).

Best,

D.

mpbraendle · October 3, 2025, 2:20pm

Same here. Red Hat Enterprise Linux release 8.10 (Ootpa)

asmecher · October 6, 2025, 3:00pm

This topic was automatically closed after 11 days. New replies are no longer allowed.