HideMyWP and Ultimate Member (conflit Password)

Hi,

Please use the predefined paths from Safe Mode (select it and save the settings), enable Late Loading from Advanced > Compatibility, and give it another try.

In case that doesn’t help, find out the IP of Ultimate Member and add it to Change Paths > Level of Security > Whitelist IP.

Keep us posted on the progress.

Hello

I followed your advice, but I think I must be doing something wrong. Would you be willing to take over as admin? Regards, Stan.

• This reply was modified 1 year, 11 months ago by angelysou.

?@angelysou Please don’t offer to send or post logon credentials on these forums: https://www.ads-software.com/support/guidelines#the-bad-stuff

It is not OK to offer, enter, or send site credentials on these forums. Thanks for your cooperation.

I know that I know nothing! ^^
I definitely won’t post any credentials here, LOL!
I’m waiting for someone from their staff who knows what they’re talking about. Regards, Steven.

• This reply was modified 1 year, 11 months ago by angelysou.

Nor should you ask or allow anyone to login to your site.

I’m waiting for a coder from their staff, SIR! I know who I am, where I’m going, and what I’m doing, but thank you for the multiple answers that don’t help me ??

Cool.
We have rules here and ask you to agree to follow them.

@petersquirrly I’ve deleted your offer to login to your user’s site. I’m am 100% sure you mean well but please never ask for credentials on these forums.

• https://www.ads-software.com/support/guidelines/#the-bad-stuff

Now for the why: The internet is a wonderful place full of very nice people and a few very bad ones. I’m sure everyone here is very nice however, by giving some ones keys to your house you are trusting they wont steal anything. Likewise the person who takes the keys is now responsible for the house FOREVER.

If something was to go wrong, then you the author may well legally become liable for damages, which they would not normally have been as their software is provided without warranty.

Please be aware that repeatedly asking for credentials will result in us escalating this to the plugins team.

It’s never necessary to do that. Here’s why.

There are many ways to get information you need and accessing the user’s site is not one of them. That’s going too far.

• Ask for a link to the https://pastebin.com/ or https://gist.github.com log of the user’s web server error log.
• Ask the user to create and post a link to their phpinfo(); output.
• Ask the user to install the Health Check plugin and get the data that way.
• Walk the user through enabling WP_DEBUG and how to log that output to a file and how to share that file.
• Walk the user through basic troubleshooting steps such and disabling all other plugins, clear their cache and cookies and try again.
• Ask the user for the step-by-step on how they can reproduce the problem.

You get the idea.

Volunteer support is not easy. But these forums need to a safe place for all users, experienced or new. Accessing their system that way is a short cut that will get you into real trouble in these forums.

Sir, you have polluted the topic. Best regards.

• This reply was modified 1 year, 11 months ago by angelysou.

Thank you for your feedback @angelysou,

First, please check the settings from Ultimate Member for login to have all the paths set correctly like in the image.

View post on imgur.com

Reinstall the last version of the premium plugin and save the settings again in Hide My WP. We updated the compatibility with Ultimate Member.

Hello, it’s a great pleasure to read you. I followed the steps, I had already done the redirection as in the picture. I searched through the documentation but I can’t find it myself. I receive the link but it redirects the URL with the token to the default password reset page:

https://skilldesk.fr/reset-password/?act=reset_password&hash=xxxxxxxx&login=xxxxxx

Automatically redirected to:

https://skilldesk.fr/reset-password/

Kind regards, thank you for everything again.

• This reply was modified 1 year, 11 months ago by Steven Stern (sterndata).

Hello,

I am using WP-Rocket. I proceeded as follows:

In the “Never cache the following URLs (one per line)” section, add the URL paths of the password reset pages you want to exclude. For example, if the URL of your password reset page is https://skilldesk.fr/reset-password/, add /reset-password/ (without the domain name) to this section.

In the “Never cache pages with the following query terms” section (or “Never cache URL(s) with the following query strings” in English), add the query parameters used in the password reset URLs. For example, if the URL of your password reset page contains query parameters like act=reset_password, hash=xxxxxxx, et login=xxxxxx, add these parameters separately :

act
hash
login

To exclude password reset pages from WP Rocket and the query requests, you need to add a rule in the .htaccess file. Since the password reset URL contains the string reinitialisation-du-mot-de-passe, you can use it to identify these pages.

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{QUERY_STRING} ^act=reset_password
RewriteRule ^reinitialisation-du-mot-de-passe/ - [L]
...

I will try until I find it, but these two solutions do not work. Do you have any ideas?

Sincerely, Angelysou

Hi Angelysou,

Have you tried with the options?

Hide My WP > Advanced > Compatibility > Priority Loading

Hide My WP > Advanced > Compatibility > Late Loading

Hope that you’ll find the solution for your website.

Hello everyone,
@johndarre, yes I tried those two options. Likewise, it redirects me to the reset page and doesn’t allow the call. Best regards.

Hello, I am reaching out to you again because I still haven’t found a solution to my problem. I have searched the web a bit, but also found no answers. I followed all of your advice, but it doesn’t work.

Sincerely, Angelysou