I ran into an issue with my testing of Keyy.
In addition to whatever 2FA plugin we use (currently Clef), we also install JetPack with the Protect module turned on. Protect, formerly BruteProtect, uses crowd-sourced information to block known IPs of botnets from even reaching the login page. It’s nice!
Apparently JetPack/Protect also adds a “Prove Your Humanity” math-style captcha to the login page at times. With Clef, you could hide the login fields (user/password) and this captcha completely from the login page.
I ran into a situation where the Prove Your Humanity field popped up in the Keyy/WordPress login form. I didn’t fill it and I locked myself out of the site, even when using the Keyy app and QR code.
Of course, now I cannot reproduce this to show you a screenshot…
I know this is an early beta and I’m thrilled this project is happening! Ultimately, I would like to see Keyy, once setup, completely override the default login form (unless you use the override URL). As someone who manages a lot of WordPress sites, the easier I can make it for my users, the better! If they use a username/password field, they will use those and forget about the Keyy app…and if this math captcha appears, all bets are off.
- The topic ‘Keyy & JetPack Protect “Conflict”’ is closed to new replies.