ALL users locked out

  • venicedesign

    (@venicedesign)


    11 years, 3 months ago

    We are still testing our new BuddyPress site when we run into this issue.

    One user kept entering their login incorrectly and after so many times it locked them out. Then I tried logging into one of the WP Admins and it was locked out as well. Then I try to login with several other logins and on the first attempt to login with what is 100% the login info I get taken to the same /?login=false page.

    I changed the name of the /theme-my-login/ directory(to disable) and then went to /wp-admin/ and tried to login with the Administrator credentials. It says that the account is locked and to wait 30 minutes and try again.

    I see people having this same problem with this plug-in on a few other places throughout google but no real solution. Have you found one for this problem? We plan on having a lot of members, how could ONE member lock EVERY member’s account because they typed it in wrong so many times. How can a Subscriber attempting to login cause the MAIN Admin to be locked out?

    Is there a way to fix this issue? Besides deleting your plug-in? I really like the plug-in and would like to use it but this is a problem.

    Will update after I try and login again.

    Thanks in advance.

    http://wordpress.org/extend/plugins/theme-my-login/

Viewing 7 replies - 1 through 7 (of 7 total)
  • Thread Starter venicedesign

    (@venicedesign)

    11 years, 3 months ago

    It has been over an hour now and it still wont let me login with any login. Is there any of resetting this? The plug-in is not active… Can I do it with phpMyadmin?

    HELP!

    Plugin Author Jeff Farthing

    (@jfarthing84)

    11 years, 3 months ago

    Not sure why I have to repeat this over and over but – if TML is no longer active, it is not the culprit.

    Thread Starter venicedesign

    (@venicedesign)

    11 years, 3 months ago

    Once TML was deleted the problem went away. So how is it not the culprit?

    After it was deleted I still had to wait for the time to pass (an hour) without trying to log in to ANY of the accounts. Then I was finally able to log in through /wp-admin (since TML was now deleted)

    I reinstalled the plug-in and then disabled the ‘Security’ section and have found this to be a resolution, since there is no other solution that I can find or you can provide.

    AEG-wiz

    (@aeg-wiz)

    11 years, 3 months ago

    I didn’t run into quite the same issue as you venicedesign, but someone was trying to login to my admin account and subsequently locked the credentials. I just wanted to add that the lock is stored with metakey: theme_my_login_security in the usermeta table of your wordpress database.

    If you do a search for that key, you should be able to address the issue manually in the future. (For instance, I left the metadata there and just changed the “is_locked” boolean in the serialized array from 1 to 0.)

    Plugin Author Jeff Farthing

    (@jfarthing84)

    11 years, 3 months ago

    I am contemplating the best way to handle admin lockout. Do you guys think you should recieve an e-mail that your account has been locked with a link to unlock it?

    Thread Starter venicedesign

    (@venicedesign)

    11 years, 3 months ago

    @aeg-wiz – thank you this info would have helped but I ended up just waiting it out.

    @jeff Farthing – I think that would be a great idea! This way there is some easy way to reset it. I was in a panic when it happened to me.

    psn

    (@psn)

    11 years, 2 months ago

    Your suggestion sounds great.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘ALL users locked out’ is closed to new replies.