=== SEORise Connector ===
Contributors: seorise
Tags: seo, content, ai, publishing, automation
Requires at least: 5.0
Tested up to: 6.7
Requires PHP: 7.4
Stable tag: 2.0.0
License: GPLv2 or later
License URI: https://www.gnu.org/licenses/gpl-2.0.html

Connect your WordPress site to SEORise AI platform for automated content generation and publishing.

== Description ==

SEORise Connector integrates your WordPress with the SEORise AI content platform. This version introduces a production-grade, signed communication (HMAC) and a one-click connect flow (OAuth-like with PKCE) for secure, reliable publishing.

= Features =

* One-click Connect (OAuth-like with PKCE)
* Signed requests (HMAC, timestamp, nonce, body hash)
* Automatic, idempotent content publishing
* Modern, clean admin interface
* Works with all themes

= Requirements =

* WordPress 5.0 or higher
* PHP 7.4 or higher
* SSL certificate (HTTPS) recommended for secure connections

== Installation ==

1. Upload the plugin files to the `/wp-content/plugins/seorise-connector` directory, or install the plugin through the WordPress plugins screen directly.
2. Activate the plugin through the 'Plugins' screen in WordPress
3. In WordPress admin → SEORise, click Connect and sign in to SEORise
4. After redirect back, click Verify to confirm secure connection
5. Start publishing from SEORise (or call the REST endpoint directly)

== Frequently Asked Questions ==

= Is this plugin compatible with my WordPress version? =

The plugin is compatible with WordPress 5.0 and higher. It has been tested up to WordPress 6.7. The Modern Cards design uses standard WordPress admin styles and CSS that work across all supported versions.

= What PHP version do I need? =

PHP 7.4 or higher is required for optimal performance and security.

= Does the plugin work with all themes? =

Yes, the plugin works independently of your theme as it only adds functionality to the WordPress admin area.

== Changelog ==

= 2.0.0 =
* v2 bridge: HMAC-signed communication (timestamp, nonce, Content-SHA256)
* New REST endpoints (WordPress): /wp-json/seorise/v2/{health,verify,disconnect,publish}
* One-click Connect (OAuth-like with PKCE)
* Idempotent publish with X-Idempotency-Key
* Removed legacy OAuth and Bearer token flows

== WordPress Compatibility ==

The Modern Cards design is fully compatible with WordPress 5.0+ because:

1. **CSS Variables**: We use CSS custom properties (variables) with fallbacks
2. **Flexbox**: Supported in all modern browsers and WordPress 5.0+
3. **WordPress Admin Styles**: Integrates with native WordPress admin UI components
4. **Responsive Design**: Works on all screen sizes with media queries
5. **Accessibility**: Follows WordPress accessibility standards

Security overview:
- HMAC SHA-256 signature over METHOD|PATH|TIMESTAMP|NONCE|SHA256(body)
- Authorization: SEORISE key_id:signature:timestamp:nonce
- Body integrity: Content-SHA256 header
- Anti-replay: server-side nonce cache (10 minutes)
WordPress REST:
- /wp-json/seorise/v2/publish (POST)
- /wp-json/seorise/v2/verify (POST)
- /wp-json/seorise/v2/disconnect (POST)
- /wp-json/seorise/v2/health (GET)

