Will you be formally testing this on the latest WordPress version(s) so that the database is correct.
]]>Is it possible to add a custom message when blocking additional logins. I see this question has been asked before here https://www.ads-software.com/support/topic/message-on-blocked-login/ but not answered.
]]>In the code snippet you give in the FAQ, to bypass multiple login control for administator ou editor profiles :
function loggedin_bypass_roles( $prevent, $user_id ) {
// Array of roles to bypass.
$allowed_roles = array( ‘administrator’, ‘editor’ );
$user = get_user_by( ‘id’, $user_id );
$roles = ! empty( $user->roles ) ? $user->roles : array();
return ! empty( array_intersect( $roles, $whitelist ) );
}
add_filter( ‘loggedin_bypass’, ‘loggedin_bypass_roles’, 10, 2 );
I guess there is an error on this line :
return ! empty( array_intersect( $roles, $whitelist ) );
that should be :
return ! empty( array_intersect( $roles, $allowed_roles ) );
I seem to be having trouble with the Limit Active Logins plugin. I have the following settings applied:
Login logic = Block
Max Act. Logins = 3
We have hundreds of users and we have had reports of them being presented with the error message of max devices reached when logging in, even though they have no logged in sessions.
For example, one user yesterday reported the error so I logged them out and then they could log back in. Today they received the same error even though they are only logged in on one device.
This seems like a widespread issue, almost like when a user logs out, their session is still remaining on the website and then they can’t log back in.
Please could you advise?
]]>Just been notified for the following vulnerability Loggedin – Limit Active Logins <= 1.3.1 – Reflected Cross-Site Scripting (wordfence.com) and see that the plugin Loggedin – Limit Active Logins – WordPress plugin | www.ads-software.com is currently shown as “This plugin has been closed as of September 30, 2024 and is not available for download. This closure is temporary, pending a full review.”
Hoping you will be able to resolve the vulnerability and get it back in the WP “store” soon.
]]>Hi, I use “Logged in” with “Block login logic”.
A user tells me they are not logged in on multiple devices but they see the blocked message.
How can I view this user’s access number, date and IP address?
]]>Hi!
I’ve created a dutch lnguage .mo file in order to change the message the subscribers see when using to many logins. But no matter where I place this file, it does not change the default english. I tried:
/domains/diersporengids.nl/public_html/wp-content/languages/plugins
/domains/diersporengids.nl/public_html/wp-content/languages/
/domains/diersporengids.nl/public_html/wp-content/plugins/loggedin/languages
What do I need to do in order to make this work? Thanks!
]]>Hey there!
I wanted to ask if there are any plans to add IP limitations, so users can only log in from X number of IPs, instead of active sessions/devices.
Maybe a basic version of this can be achieved by simply using/adding a filter somewhere to also do an IP check and compare that to an IPs list on the usermeta.
That way all the other functionality of your plugin can be reused ??
Is there any snippet or filter that you can think of, that can be used to achieve this?
I’ve noticed that there’s a topic on the matter, although with more complex requests like blocking, but it was abandoned:
https://www.ads-software.com/support/topic/limit-the-number-of-ips-per-user/
Thanks for your plugin!
Serafín
I already delete the plugin Files with Filezilla, but I can’t access to wp-admin or using the website login form.
]]>Hi!
I wanted to evaluate the plugin in our staging environment. I set the number of concurrent active user sessions to 1 and also set the behaviour to blocking. Then I opened up some other browsers on another computer and tried to log in to the staging env, which sadly worked, despite after saving my settings. I repeated the test after logging myself out on all devices using this plugin. I assume this plugin isn’t compatible with WP Staging, which is sad because how are admins supposed to evaluate the plugin securely?
WP Staging website: https://wp-staging.com/
Best regards
David
]]>In the FAQ there is code to BYPASS for specified users or roles, can you share similar code to only ENFORCE the login limit for a specified list of user IDs?
]]>We are aware that a lot of our members are giving out their passwords to friends etc and wanting to know if there is now a better way to stop this. We would gain so many more members if we this could happen.
In your plugin features, it says “Prevent users from sharing their account.”
But I wonder how this works?
Hi, how can I show an error message when someone is blocked from logging in?
I tried this code but it is not working/:
add_filter( 'loggedin_error_message', function ( $message ) { return 'My custom error message'; } );
Instead my site just displays this:
There was a problem with your username or password.
]]>hi i have 2 questions please:
thanks!
]]>Hi, an excellent plugin.
Is there a way to designate a different number of maximum active logins for each membership? (I use Woocommerce Membership by the way)
I see there’s a code for user roles, but certain memberships share the same user role, so this presents a problem for me. Any help would be greatly appreciated, thanks!
I did the login tests with my facebook account with the Nextend Social Login and Register plugin (https://www.ads-software.com/plugins/nextend-facebook-connect/) and unfortunately it circumvents security. ??
]]>Hello, I work with the Nextend social login register plugin to log in to my wordpress. Having problems with this plugin? I want only 1 time to be able to log in.
]]>Hello,
I need to set a different number of logins by role.
I have a paid membership website, and this will be an incentive to get a higher subscription.
Role 1 : 1 active login
Role 2 : 2 active logins
Role 3 : 3 active logins
Do you have a code snippet to allow that?
Thank you
Exactly what I need but does it work on Multisites??
]]>I have a site where i sell streaming videos. If user 1 shares his account with user 2, when the stream goes up, user 1 will start watching and then user 2 will log in and watch too. So they will both watch the stream with only one account.
My issue is: is there a way to automatically logout user 1 if user 2 logs in the same account without the user 1 having to refresh or change pages?
Hi there,
First of all thanks for a great plugin!
The compatibility is only reported up to 5.9.3 (which is the version I use).
Is it compatible with 6.0.x or will you release an update for this?
Many thanks!
]]>I installed the plugin today along side a login tracker that tracks logins. Upon installing the plugin, I reset the salt and secret keys to ensure everyone was logged out.
Soon after, customers began saying they were having issues logging in. Noting that they were receiving the blocked message. Checking the login tracker, I can see it was their first login attempt since installing the plugin.
How is this plugin tracking logged in users and can you tell me what could be happening?
]]>I used this plugin with only 1 login at time, Then I logged out from all the emails, On the next day I couldn’t log in into any email, I cannot even disable the plugin since admins as well are included, Idk what to do now.
]]>Hello,
I use a custom login page with this plugin https://buddydev.com/plugins/bp-branded-login/
The error message will not display with this plugin. Can you add a redirect feature to a custom page when the login limit is reached and user tries to login.
Example.
1. Login limit is set to 2
2. User tries to login in a 3rd device
3. Redirect user to custom error page called (login-error), this page will explain why the user could not login while using a custom login page plugin
Thanks
]]>Hello, I am looking to limit the number of active logins on my website per membership subscription. For example, membership A would allow two active login numbers, whilst membership B would allow 5 active logins. Is there any integration to allow this?
Thanks
]]>Can anyone confirm that this plugin is working with PHP 8.0?
I updated all my sites to PHP 8.0, but only one crashed and this plugin was cited in the error logs.
Hi the force logout input form support only number entry, while the default wordpress userID is alphanumeric. I can not used this feature
]]>Hi, im new
I was testing the plugin, and I got blocked… How can I unlock my user from the database? (cant wait 2 days)
Hello,
I’ve change the message in the functions.php in child theme but your default message continues to show.
Please advise, thanks.
Regards,
]]>Dear Support,
I can’t see Settings in wpadmin->General. Plesae let me know what can be the issue.
Thanks & Regards
Sanjay Kumar