WordPress was never built for OIDC or SAML. Export it as a static site to S3 + CloudFront and the built-in login system stops working completely.
The fix? Amazon Cognito + Gatey:
- Configure Cognito User Pools & Hosted UI (no client secret needed, SPA app type)
- Connect Social IdPs (Google, Facebook, Apple, Amazon)
- Add Enterprise IdPs (OIDC, SAML: Okta, Azure AD, Auth0, Ping)
- Wire it into WordPress with Gatey (User Pools, General, Custom Providers)
- (Optional) Enable IAM so authenticated users can call your AWS APIs directly
🔗 Full guide with screenshots on wpsuite.io.
Static-friendly, secure, and no secrets stored in WordPress.
Top comments (0)