authentication - Read For Learn

Can I Log Logged in WordPress users in Apache without a WordPress plugin?

Although a little clunky I’ve found a passable solution to this problem using mod_security. To implement this, enable modsecurity in Apache (presumably with a2enmod security). Then edit the config file. On my Ubuntu based systems this is at /etc/modsecurity/modsecurity.conf and as follows: Ensure SecRequestBodyAccess is On (and I assume SecRuleEngine to DetectionOnly). You may also … Read more

Cannot create posts via REST API

Sheepishly: The authorization field needs a space between “Basic” and the token. Problem solved.

is_user_logged_in() doesn’t work after custom login and redirect

The issue arises because the is_user_logged_in() function relies on the authentication cookies being recognized by the WordPress request lifecycle. When you set the authentication cookies using wp_set_auth_cookie(), they are sent to the browser, but they are not yet available to the same request that initiated the cookie setting. The cookies will only be recognized on … Read more

How to customize WP_Error (REST JWT authentication plugin) [closed]

✨ Solution I’m not sure this is the most efficient way to use rest_post_dispatch (documentation) for this purpose (maybe overkill but I didn’t found other way). It works as expected. add_filter(“rest_post_dispatch”, “rest_customize_result”, 10, 3); function rest_customize_result( WP_REST_Response $result, WP_REST_Server $server, WP_REST_Request $request ) { if ( $request->get_route() === “/jwt-auth/v1/token” && $result->get_status() === 403 ) { … Read more

Content being rendered as empty string in posts endpoint

My guess is, there is a filter causing change to the post content on api call. Could you check if the problem persists only in api or subscriber can see the content on normal page? The Restrict Content by Role plugin might be setting some rules that disallow subscriber role to view content in api … Read more

regsiter a new user through WordPress API with Google SSO doesn’t work properly

Unable to login with correct password

wp_authenticate_username_password not authenticating properly when pass username and password

Looking at the source code of wp_authenticate_username_password(), if you’re passing a valid WP_User object in the $user_obj parameter, it will simply be returned. Only if $user_obj is not a valid WP_User will the $username and $password parameters be checked. If you’re trying to ensure a user’s username and password are valid, I’d recommend using wp_authenticate() … Read more

WP Crowdfunding login redirect fails

WordPress REST API – Create post not working with 401 response but list posts working

+ More