Site only for users authenticated by different PHP application

Quick and dirty: add something that runs during the WordPress init action that checks your the domain.com login status, and dies if the person isn’t logged in. At a very basic level (if you don’t need a pretty “access denied” page or anything), you can do something as simple as this in a plugin:

function wpsx_26176_check_login() {

    // some logic to validate your cookies. here I'm just checking if a cookie exists
    // but obviously your validation would be more extensive
    if(!isset($_COOKIE['yourcookie'])) {
        wp_die('get out of here'); // If cookie is missing, just die
    }   

}
add_action('init', 'wpsx_26176_check_login');

What you’ll need to keep in mind if rolling out WordPress on a subdomain is that cookies are by default only applicable to the domain they’re set on. You’ll have to set the cookies written by your custom application to specifically be available across all your subdomains.

Related Posts:

  1. wordpress redirect after password reset
  2. Loosen/disable password policy
  3. Password protecting a page
  4. How to save Admin FTP password
  5. Bypass password protected posts via GET variable
  6. Why do generated passwords start/end with spaces?
  7. Duplicate hash method for password in .NET
  8. how to redirect to a custom password retrieval page
  9. Hide password protected posts
  10. Safe to store SMTP password in wp-config.php?
  11. Access code/password only restricts page access, no user registration..?
  12. PasswordHash not found in namespace
  13. Force all users in MU to change their passwords
  14. How to shorten length of auto generated password sent during registration?
  15. Forgot password not working
  16. Password reset message – change the network_home_url( ‘/’ )
  17. How to use wp_set_password in a plugin?
  18. Lost password link is redirecting to /shop/my-account/lost-password/
  19. Custom protected password page with ACF
  20. WordPress: force users to change password on first login
  21. Can’t login to wordpress despite changing password to something known directly in MySQL or using “Password Reset by Email” feature
  22. Lost password link redirects to my-account/lost-password/,how to fix it back to default lost password
  23. Password protect custom template
  24. Set content type to HTML for lost password email only
  25. Custom password generator for users
  26. Where is the reset password key stored/generated?
  27. Intercept invalid email during lost_password
  28. How validate usernames/passwords against WP’s database?
  29. Make post password required to publish
  30. Add error message on password protected pages
  31. User password field is empty
  32. Password reset bug? – “Sorry, that key does not appear to be valid”
  33. Get plain password on register
  34. post_password_required() not recognizing cookie set with correct password
  35. How to implement a custom password field that redirects to another page upon correct password?
  36. Password protect the site (without htaccess or membership)
  37. Password Protected page not asking for a password
  38. I would like to password protect my entire WordPress site (ip validated), except for one page
  39. Password protection for page template
  40. how to remotely check a username / password from within a plugin
  41. Password changed [duplicate]
  42. Adding parameters to password reset key
  43. Custom password form allows unlock two posts with the same password
  44. Deep customization of wp-login.php
  45. password recovery key is invalid on custom reset
  46. Password Protected Post is invisible until you login
  47. Custom Log In Screen – Disable password recovery [duplicate]
  48. Send password to user instead of reset password link
  49. Protect Passwords in wp_users with stronger protection than MD5
  50. How secure is a wp-config file?
  51. How to Remove or Deactivate “Application Passwords” in WordPress
  52. How to change “Reset Password” text on submit button
  53. How to recover password from a user
  54. resend user login & password with custom button
  55. How to show my wordpress admin username & password?
  56. Why does hashing a password result in different hashes, each time?
  57. Can’t alter $lostpassword_url
  58. current user’s password check
  59. How to read third party cookie to access password protected pages
  60. Ask logged in user to re-enter password to access page “x”
  61. Password Protect or IP to access under development WordPress site otherwise shown a placeholder page
  62. Password protected sites
  63. 2 accounts under same email preventing me from loging in
  64. How would I create a Password Protected Page with Content on it?
  65. wordpress custom password change problem
  66. Allow all reset password links within the past 24 hours to be valid and accepted
  67. WooCommerce Lost Password reset goes to 404
  68. I need help with wp_lostpassword, wp_register and wp_login_form
  69. Create Member who can’t be changed
  70. I can’t recover my password
  71. $expiration_duration = apply_filters( ‘password_reset_expiration’, DAY_IN_SECONDS );
  72. Frontend custom forgot password page
  73. Password Protection issue
  74. Entering a WP site with a SMS code
  75. Redirecting the lost password page request when using a custon login page
  76. Password Protect content() on homepage
  77. Function called by password_reset action passed only 1 argument instead of 2 in PHP 7.2.11
  78. How to set password from frontend if have activation key and user login in url in wordpress?
  79. Allow users from my ASP.Net MVC site to access my private WordPress site
  80. Custom password set/reset link in same URL format as default does’t work
  81. WordPress Protected Page Redirects to PDF
  82. How to Password Protect whole site except for some subdirectories
  83. Bypass a WordPress Password Protected Post or Page via a URL
  84. Custom page password recovery
  85. Accountless password generation
  86. Can I use core passworded page/post functions outside of wp-login.php?
  87. Is it possible to display newly generated password after wp_generate_password()?
  88. How do I password protect a page of posts on WordPress?
  89. forgot password
  90. mysql update user’s password and activation key
  91. Is it possible to have users register without having a password?
  92. Password Protection for posts and pages [duplicate]
  93. How WordPress hashes passwords
  94. WordPress reset password button not working
  95. Override the default password length when creating or updating a user profile
  96. Why can’t I create an Application Password?
  97. ‘random_password’ filters not taking effect
  98. FTP Password (not private key-value pair) for EC2 Instance
  99. How to Disable Pre-population of Password on Password Reset
  100. Bypass a WordPress Password Protected Page via url