authentication required

  • Resolved todbanner

    (@todbanner)


    10 years ago

    I’m running EE 4.7.13.decaf.

    I’m protecting my /wp-admin/ directory with additional security in apache2.conf and asking for a password.

    on the /registration-checkout/ page then users click the “Proceed to Payment Options” button they are being presented with the credentials check for my /wp-admin/ directory.

    Can you shed any light on why this is happening?

    For now I’ve had to disable my second level authentication, but I would like to reinstate it with the proper configuration.

    thanks.

    https://wordpress.org/plugins/event-espresso-decaf/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Darren Ethier (nerrad)

    (@nerrad)

    10 years ago

    The problem is that the plugin uses /wp-admin/admin-ajax.php for all ajax requests (which is the api WordPress provides for doing ajax request). If you want to protect your wp-admin directory then you need to exclude admin-ajax.php.

    Josh Feck

    (@builtbynorthby)

    10 years ago

    From http://codex.wordpress.org/Hardening_WordPress#Securing_wp-admin
    second paragraph:

    Simply securing the wp-admin/ directory might also break some WordPress functionality, such as the AJAX handler at wp-admin/admin-ajax.php. See the Resources section for more documentation on how to password protect your wp-admin/ directory properly.

    Thread Starter todbanner

    (@todbanner)

    10 years ago

    Great! Thanks guys.

    You learn something new every day around here 🙂

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘authentication required’ is closed to new replies.