Support » Plugin: Duo Two-Factor Authentication » Better implementation/compatibility with wp_login_url()

Viewing 6 replies - 1 through 6 (of 6 total)
  • This is a common method used to help fight against bot brute force attempts and will help this plugin be more compatible with other security plugins.

    I appreciate this making it into the new release, however the latest release breaks duo two again for multisite on WPEngine.
    On line 76 in Duotwo.php you have:
    'post_action': '<?php echo esc_url(network_site_url('wp-login.php', 'login_post')) ?>',

    This works for me:
    'post_action': '<?php echo esc_url(site_url('wp-login.php', 'login_post')) ?>',
    I see that the codex suggests network_site_url, but using network_site_url causes a “no data loaded error”, the same issue as earlier in this ticket but changing it back to site_url allows it to work as intended.

    Not sure if this could be related to the changes 3.7 made to Multisite, but maybe?

    Anyway this is what worked for me. Maybe @octaimage (support guy at WPEngine) can weigh in here!

    Plugin Author Duo Security


    Thanks for all the great feedback around this issue. The latest version of our plugin (1.7), released 10/30/2013 contains a fix for this specific issue.

    @taylor4484 @octalmage

    I had a similar issue in my multisite, using 3.8 and setup in sub domain config. The above site_url fix worked for me. Not sure why duo are using network_site_url as site_url works fine.

    I have detailed my issue better on github and sent them a pull request. Hopefully Duo can merge the change…

    @spacedmoney, I’m having the same problem, I just go in and change the plugin to use site_url any time there is an update.

    Are you using WPEngine?

    I am not using WPEngine, I am using the multisite in sub domain config.

    I have submitted the fix to them, up to @duosecurity to work on it now.

Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Better implementation/compatibility with wp_login_url()’ is closed to new replies.