Problem when reauth parameter included at end of wp-login url | WordPress.org

JLCooper2
(@jlcooper2)

9 years, 5 months ago

I’ve been using this in a multisite install of wordpress and hit a problem when a reauth is required, i.e. when the wp-login.php url is called with the parameter of reauth=1. Instead of redirecting to authenticate via the IdP it displays the traditional WordPress login page.

Having had a read around the subject it appears that the reauth parameter stops WordPress calling any attached authenticate filters.

Post which may hold a hint at an answer [https://wordpress.org/support/topic/custom-authentication-issue-with-wp-40?replies=5]

https://wordpress.org/plugins/shibboleth/

Viewing 2 replies - 1 through 2 (of 2 total)

Thread Starter JLCooper2
(@jlcooper2)

9 years, 5 months ago
I’ve got a work around based on the following code that clears the reauth entry in the $_REQUEST object if the action entry is set to shibboleth.
```
function clear_reauth(){
        if($_REQUEST['reauth'] && $_REQUEST['action'] == 'shibboleth'){
                unset($_REQUEST['reauth']);
        }
}

add_action( 'login_init', 'clear_reauth' );
```
Plugin Author Jonathan Champ
(@jrchamp)

8 years, 8 months ago

This was fixed in github last summer: https://github.com/mitcho/shibboleth/commit/532104435f0d0d3723e6d2f211705226264de783

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Problem when reauth parameter included at end of wp-login url’ is closed to new replies.

Tags

reauth

In: Plugins
2 replies
2 participants
Last reply from: Jonathan Champ
Last activity: 8 years, 8 months ago
Status: not resolved