[resolved] How does BP work on non-standard login forms? (2 posts)

  1. gecko_guy
    Posted 2 years ago #

    I use a custom login form on a page.

    The form is a basic login form, but uses a bit of custom PHP and Ajax for the login (along with a NONCE).

    It never redirects to the standard WP login page.

    I have no idea what happens if a baddy keeps entering information in this form, can you shed a bit of light?




  2. Sam Hotchkiss
    Plugin Author

    Posted 2 years ago #

    For non-standard login pages:

    • BP does protect you. The BP login check is run before any POST'ed login information is parsed
    • BP does NOT prevent the login page from being shown. They don't get the error until after they submit their login
    • In the event of a BruteProtect API outage, no logins are allowed (our math CAPTCHA doesn't display). This is an issue that is pretty high up on our priority list

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • BruteProtect
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic


No tags yet.