Support » Plugin: iThemes Security (formerly Better WP Security) » Hide backend, multisite, Chrome password autofill broken

  • Yesterday I deployed the latest version of iThemes Security plugin with the refactored “hide the backend” feature on our multisite network.

    Subsequent to doing this, when Chrome automatically fills in the password, the WordPress login page rejects it. But if I type it in, or paste it in, it works just fine.

    Following are the specific steps I did to confirm this
    1.) Deleted all memorized passwords in Chrome for this site (and the other sites in this network)
    2.) Deleted all the browser data for the last day in Chrome
    3.) Browse to the login page using my hidden slug, e.g.
    4.) Type in the username and password and it lets me in, and I tell Chrome to memorize this site
    5.) Close my browser
    6.) Open my browser and go to the same login page
    7.) Chrome now automatically fills in the username and password which worked in step 4 above. But when I click login, it fails.
    8.) At this point if I type or paste in the same password it works.

    Please help.

Viewing 1 replies (of 1 total)
  • This also happens to me. It can be very confusing after the last update.

    Also, the previous behaviour made more sense. If you were already logged in, you were taken directly to the backend, instead of being shown the login form.

Viewing 1 replies (of 1 total)
  • The topic ‘Hide backend, multisite, Chrome password autofill broken’ is closed to new replies.