bclaim
Forum Replies Created
-
Forum: Plugins
In reply to: [Speed Optimizer - The All-In-One Performance-Boosting Plugin] Force HTTPSOkay, no problem. Here’s some extra info – this is also true when using the WordPress API through a web browser. Without the Site Tools HTTPS Enforce, it does not redirect to HTTPS (even with the redirect rules in place in the .htaccess).
Forum: Plugins
In reply to: [Speed Optimizer - The All-In-One Performance-Boosting Plugin] Force HTTPSHi again,
Just did some quick tests using Postman and it seems a HTTP connection is possible (bypassing HTTPS), unless HTTPS Enforce is enabled in Site Tools.
Forum: Plugins
In reply to: [Speed Optimizer - The All-In-One Performance-Boosting Plugin] Force HTTPSThank you for the reply. I have disabled HTTPS Enforce in Site Tools and am using the Force HTTPS feature in the plugin now only.
We will be looking to get an app developed for the website. I assume there should be no way to get around the HTTPS protocol (meaning to bypass the Forced HTTPS) once the HTTPS rewrite code is placed in the .htaccess by SG Optimizer? I am referring to direct HTTP requests to the API endpoints (as opposed to direct HTTPS) or would the Site Tools HTTPS Enforce feature be required for API/app use (to prevent any bypass of HTTPS).
Hope this all makes sense. Thanks.
Thanks Nicu.
Thanks.
I assume the same goes for the default WooCommerce login/register/account page? (/my-account/)
Forum: Plugins
In reply to: [WooCommerce] Creating & choosing an account password on the Checkout pageHi there,
Thanks for your reply.
Sorry, I should have clarified that you are able to proceed through the checkout with a weak password, even though any password strength checks work.
Thank you. Will keep an eye on things and see how it goes.
Edit: Created new thread. https://wordpress.org/support/topic/failure-to-load-css/
- This reply was modified 5 years, 11 months ago by bclaim. Reason: Created new thread
Thanks for your reply.
We initially were not using double opt-in and it would still happen.
However, we are using it now but there is an issue. Every time the plugin syncs to Mailchimp, it overrides (essentially disables) the double opt-in options without any notice. We would like to use the double opt-in as we believe it is an important feature.
Also, we have noticed that the Log In link does not redirect to the previous page after succcessfully logging in.
Thank you for quickly providing the fix. Everything seems to be working well at the moment 🙂.
Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] 6G FirewallHi Gerroald,
Thanks for your reply. I no longer use the code.
After some careful investigation, I have figured out that this error is triggered when a scan is started/run.
Forum: Plugins
In reply to: [Wordfence Security - Firewall, Malware Scan, and Login Security] 6G FirewallActually, looking into this further after removing the code, I still see the error. The error is as follows:
[apache][authz_core:error] [pid 4223] [client <myserveripaddresshere>] AH01630: client denied by server configuration: /home/user/www/<domainnamehere>/public_html/.user.ini, referer: https://<websiteaddresshere>;/.user.ini
Just noticed this thread:
https://wordpress.org/support/topic/cant-emable-sg-optimizer/
I assume I can whitelist the REST requests?
I second this. Can we please have a visual change when the “Log In” button is clicked when using 2FA?