Conflict with Ajax login
-
Hi,
I’m using the Listable theme with “Login With Ajax plugin” (Version 3.1.6 | By Marcus Sykes). I was having issues login in to my website via the Ajax plugin (no problem though to login via /wp-admin). Message: “an error has occured. please try again.”. Since I have hundreds of subscribers that need to access my website (and since I don’t want them to access it via /wp-admin), I really need this Ajax plugin.
After deactivating all my plugins one by one, I discovered that JetPack was apparently the one causing this issue. When I deactivated JetPack, I could login again to my website via the Ajax Plugin. Of course, my first thought was that this was linked to a security conflict. So I reactivated JetPack, and deactivated the “Protect/Prevent brute force attacks” feature, and the Ajax login feature continue to work properly.
I read on https://codex.wordpress.org/Brute_Force_Attacks that password protecting the wp-login.php file (and wp-admin folder) can add an extra layer to the server. But password protecting wp-admin can break any plugin that uses Ajax on the front end. If the “Protect/Prevent brute force attacks” feature indeed protects wp-admin, this can explain the bug I encountered. It’s usually sufficient to just protect wp-login.
I’ll share this information on the support page of the “Login With Ajax” plugin. However, I doubt this is the only login plugin that might be affected by JetPack’s security features.
Cheers,
- The topic ‘Conflict with Ajax login’ is closed to new replies.
