Google+ verification 403 error

Hi @subratamal!

We have received some feedback about 403 errors with Google from our users recently.

What we have noticed so far, users who experienced this issue usually had some kind of firewall, I.e.: ModSecurity

The problem usually is that the firewall does not allow passing http/https links in the URL, but the scopes that Google used loos like:
https://www.example.com/wp-login.php?loginSocial=google&state=12a12a12a12a12a12a12&code=11111111111111111111111111111111111AAAAAAAAAAAAA&scope=https://www.googleapis.com/auth/userinfo.email+https://www.googleapis.com/auth/userinfo.profile

So after the scope there are 2 https urls:

• https://www.googleapis.com/auth/userinfo.email
• https://www.googleapis.com/auth/userinfo.profile

However in the next release of Nextend Social Login we will use the new equivalent scopes:

• email
• profile

I am not sure if that will fix the problem, since according to our experiences the old scopes will still appear in the URL that is received after the user authenticated.

Currently it seems like this is a common issue with the Google API:
https://stackoverflow.com/questions/52318115/google-plus-api-problems-with-email-and-profile-scopes

Anyway please get in touch with us directly on:
https://nextendweb.com/contact-us/

Hi @laszloszalvak,

Thanks for the information. We are trying to contact our server admin regarding this.

Thank you very much.

Hi @laszloszalvak @subratamal

I’m also having the same issue. Is there any solution for this I can try?

Hi @rixoj!

This far the problem was always caused by a server configuration issue. In the feedbacks we had, the cause was ModSecurity, specifically rules 11085 and 11089 were restricting the access. You could try to contact your server host and ask them to turn those kind of rules off, maybe just check their Firewalls if that blocks the connection. If that won’t help, please write to us and we will try to figure out the cause:
https://nextendweb.com/contact-us/?product=Social%20Login&platform=WordPress