Support » Plugin: My Private Site » User automatically logged out after a first succesful login

  • Resolved wp-maverick

    (@wp-maverick)


    Hi.
    First, thanks for this great plugin, it’s really useful.

    One of my users is facing a strange issue.
    He can log in easily to the general site and see the homepage.
    But when he tries to click a link (ex. post, page…), he is automatically logged out.
    Everything seems to be OK for other users…

    Do you have any idea of something which can cause this behavior?
    I’ve tried do disable cookies because it was my first idea but I can’t reproduce the bug (without cookies, it’s completely impossible to log in)

    Thanks in advance.

    here are my main settings:

    Where to after Login? Omit ?redirect_to= from URL (this option is recommended for Custom Login pages)

    Custom Login page? Yes

    Custom login URL http://www.mydomain.com/log-in/

    NB: all other settings are blank

    https://wordpress.org/plugins/jonradio-private-site/

Viewing 4 replies - 1 through 4 (of 4 total)
  • Not specifically related to this plugin, but I have seen this situation happen with what I call “Domain Aliases”. WordPress login cookies are specifically for one domain. http://www.example.com, example.com and example.org all have different login cookies.

    In theory, if your user logged in on example.org, and it was Parked in a way that left example.org visible in the browser address bar even though the WordPress Site was example.com, and the user clicked on a hard-coded example.com link, he/she would not be logged in.

    Hi and thanks for your feedback.
    I’ve asked him to check if there was a limitation about cookies in its own browser or otherwise, a global restriction due to his company security policy…
    I believe what you suggest can’t cause the problem because there is a unique domain name, and domain.com is automatically redirected to http://www.domain.com

    I have got caught before, though not with this plugin, with WordPress having me logged in to http://www.domain.com and not logged into domain.com, i.e. – for Admin panel access.

    There are a number of ways that this could be your problem, mostly related to timing between WordPress (which does its own redirection), the automatic redirection you speak of, and this plugin. For example, this plugin could see the URL before it is redirected, and therefore force a login based on the URL before redirection, not after. I’m not saying that is what is happening, as there are lots of possible combinations of those three “players”.

    Plugin Author David Gewirtz

    (@dgewirtz)

    Since this post has been quiet for the month, I’m marking it as resolved. Please start a new thread if you have more questions on this topic.

    –David

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.