Thread Starter
jjbte
(@jjbte)
Just an update… I had forgotten when I originally posted that I still have one site running WooCommerce and Captcha 4.2.3. That site does NOT have this issue.
So the problem appears to have been introduced with the update to 4.2.4. Sites running WooCommerce and Captcha 4.2.4 are allowing the login to WordPress even when the Captcha answer is incorrect.
Hi,
Please provide links to the pages where captcha works correctly and where it doesn’t.
Sincerely,
BestWebSoft Support Team
Thread Starter
jjbte
(@jjbte)
I cannot provide such info publicly, so I submitted it just a second ago via your website’s support request form (Subject: Providing Info Requested Via WP Support Thread). The Description includes a link to this thread as well as the information you requested.
I did some troubleshooting and realized the other difference between the site working properly and the one not is the existence of the Two Factor Authentication plugin on the WooCommerce site. I deactivated all plugins but WooCommerce and Captcha and then re-activated them one by one. Captcha worked properly until TFA was once again activated. Then it would allow login even if the Captcha answer was incorrect. NOTE: Sometimes it rejects the first incorrect answer, but it always allows login on the second try with an incorrect answer.
I have been using this setup for nearly a year with no issues. Captcha 4.2.4 suddenly caused this conflict with the TFA plugin. I absolutely must have the TFA plugin since WooCommerce allows Administrator, etc. logins from the customer login form. To prevent this, I enable TFA for all administrative accounts. If this conflict cannot be resolved, I guess I will have to move on to another captcha plugin. I understand you cannot make your plugin work with every other plugin that exists.
I plan to report this issue to the TFA support forum as well so they can look into it.
Thank you for your response.
Hi,
The case is, free plugin version is incompatible with WooCommerce. For more info, please visit http://bestwebsoft.com/products/captcha/
Sincerely,
BestWebSoft Support Team
Thread Starter
jjbte
(@jjbte)
Please refer to my original comment where I stated I am not looking to use your plugin to log in via the WooCommerce customer account page. I understand that your free plugin does not support that. I am trying to use your plugin to log in via the default WordPress login form. I don’t understand why the default form should be affected simply because WooCommerce is installed.
Also, as I stated subsequently, a deeper investigation revealed the actual culprit to be the TFA plugin. With TFA deactivated, Captcha worked properly even with WooCommerce installed and active.
I’m disappointed that Captcha and TFA stopped working together with the update to Captcha 4.2.4, but I understand there will be plugin conflicts.
Hi,
We analyzed our plugin and found out that the problem occurs because of TFA plugin. For plugin optimization, we’ve added the check for clicking “Log In” button which has name="wp-submit" attribute (in v. 4.2.4). If TFA is activated, when clicking “Log In” button, all elements of the form are hidden, and field “One Time Password” appears with own “Log In” button which has no “name” attribute. That is why captcha is not checked.
Sincerely,
BestWebSoft Support Team
Hi,
Since there is no reply from you, we consider this topic as resolved. We hope you’ve found the solution. If you have any questions, please feel free to contact us via our Help Center – https://support.bestwebsoft.com/.
Thread Starter
jjbte
(@jjbte)
There is no solution for this particular issue. This plugin works great in general; it’s just not compatible with the Two Factor Authentication plugin. At the time I discovered this issue, I posted in the TFA forum, but I received no reply from that plugin’s authors.
I use this plugin on other, non-TFA sites, but when using TFA, I instead use the captcha provided by All In One WP Security. That captcha works properly with TFA installed and active. However, it does not have all the bells and whistles offered by this plugin (e.g., the ability to choose the difficulty of the math problems displayed).
I do thank you for looking into this issue and replying.
