2. Once the user puts in their credentials, they are redirected to the blog or page they want to access. On the backend, the plugin exchanges an authorization code for an ID token that has user information, like name and email. This ID token comes in handy if you want to query Active Directory for more user information.
3. The plugin uses the ID token to find a WordPress user with a username or email address matching the Active Directory user.
4. If the information is found, the user is authenticated to that particular user account.