Disable WordPress Login for certain users/roles

  • Resolved tobsen11

    (@tobsen11)


    3 years, 3 months ago

    Is it possible to disable WordPress login only for certain user roles?

    For example, I’d like to force admins to authenticate via Google.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Paul Ryan

    (@figureone)

    You should be able to hook into the authenticate filter at the very end (after all other hooks have run, including Authorizer and core WordPress authentication), and then check whether you have a successful authentication of a user with administrator role but not a value of google in the authenticated_by user meta (Authorizer adds this user meta for external service users).
    https://developer.www.ads-software.com/reference/hooks/authenticate/

    So something like this (untested, just wrote this now):

    add_filter( 'authenticate', function ( $user, $username, $password ) {
	// Fail to authenticate administrator users unless via Google in Authorizer.
	if ( 
		! empty( $user->roles ) &&
		in_array( 'administrator', $user->roles, true ) &&
		'google' !== get_user_meta( $user->ID, 'authenticated_by', true )
	) {
		$user = new WP_Error( 'authentication_failed', __( 'Admins must authenticate with Google.' ) );
	}

	return $user;
} ), PHP_INT_MAX, 3 );

    Just be careful with this filter since it’s easy to accidentally lock yourself out of WordPress.

    Plugin Author pkarjala

    (@pkarjala)

    This question appears to be answered! If you still need assistance, please let us know!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Disable WordPress Login for certain users/roles’ is closed to new replies.