Affiliate Login – Unwanted behavior

  • Resolved vipteam

    (@vipteam)


    7 months, 1 week ago

    Scenario #1:

    In case of incorrect entry (email, password, or both), the visitor is redirected to https://www.somepage.com/wp-login.php

    Why? The correct behavior would be for the visitor to stay on the same affiliate login page (Affiliates Manager plugin). Nothing more and nothing less. Possibly to redden the border of the field. Maybe with a short notice: Wrong entry, try again. Or something like that.

    Note: I do NOT have registration enabled on my website! This is my setup:

    Dashboard > Settings > General
    Membership: [ ] Anyone can register (disabled)

    A little clarification: I use a membership plugin that uses its own registration/login page. Also, I do NOT have WooCommerce registration enabled, Guest checkout is enabled. From all the above, I have no need and do not want to use the WordPress form for registration/login. Affiliates Manager enforces it. Completely wrong.

    Scenario #2 (disastrous):

    I hid / renamed wp-login.php with the help of “WPS Hide Login” plugin. (https://www.ads-software.com/plugins/wps-hide-login/). When the hacker tries to go to wp-login.php, the message is displayed: Oops! That page can’t be found (404). The plugin works perfectly.

    The behavior of the Affiliates Manager plugin is unwanted and undesirable. It somehow bypasses the hidden/renamed login page and sends the visitor to the real wp-login.php page with the WordPress login form. That’s not normal. It’s like inviting hackers to a website.

    In addition, jumping from one form to another does not inspire confidence even in visitors / users of the affiliate program.

    Question:

    Can you edit this the right way? See how they solved it in other affiliate plugins. Or at least to start with making Affiliates Manager compatible with WPS Hide Login. I don’t expect this to happen tomorrow but at least try to work on it. This is an important matter.

    Thanks in advance. Regards,

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter vipteam

    (@vipteam)

    Update

    WPS Hide Login plugin had a bug, due to the disclosure of the real login page. The new update solved this problem. Now everything works as it should. But wp-login.php is 404 so it can’t work with Affiliates Manager. That’s about the WPS Hide Login plugin.

    Everything else related to Affiliates Manager still remains an open question. In any case, it is necessary to create an internal login form (such as the internal registration form). Don’t rely on WordPress for everything.

    Thanks in advance. Regards,

    Plugin Support mbrsolution

    (@mbrsolution)

    Thank you for reaching out to us. Unfortunately we don’t have an integration addon for the following plugin https://www.ads-software.com/plugins/wps-hide-login/.

    I have submitted a message to the developers to investigate further your request.

    Kind regards.

    Plugin Author affmngr

    (@affmngr)

    @vipteam, Thanks for the feedback. This is what WordPress does when a login is not successful. The plugin is using the default login form provided by WordPress. There is no option in that form to change this behavior unfortunately.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Affiliate Login – Unwanted behavior’ is closed to new replies.