Plugin removed, wp-admin still redirected to login page

@muvmag

When the iTsec plugin is removed and you have made sure the Hide Backend rewriterule is removed from the .htaccess and it is still redirecting obviously there is some other mechanism responsible for the redirect.

Have you checked for any custom code in the active theme functions.php file ?
Is there any other plugin active which includes a hide backend feature ?

I noticed this URL for the Lost password link:

https://muvmag.com/wp-login.php?action=lostpassword&redirect_to=https://muvmag.com/login/

Note the redirect_to url parameter …

Anyway it looks like this is not an iTSec plugin issue.

dwinden

There was Wordfence and one other at one point, which could have also been the culprit but I am unable to remember the name.

I did notice that as well, but nothing found within the theme functions. The issue also persists upon switching themes, so it doesn’t seem to be a theme issue, and there are no other active plugins of that nature.

@muvmag

Ok, one thing is for sure this is not an iTSec plugin issue.

Also note ‘login’ is one of the 5 default WP Dashboard slugs while the other ones are:

– admin
– dashboard
– wp-admin
– wp-login.php

The iTSec plugin will never redirect from wp-admin to login …
That simply does not make any sense.

Also it seems you are using a customized login page. So check that code.

dwinden

@muvmag

Since this doesn’t seem to be an iTSec issue please mark this topic as ‘resolved’.

dwinden

Fixed it. Thanks!

@muvmag

Happy to hear you were able to resolve the issue.
Please take a moment to share the solution with the community.

dwinden

I dug around and found that Pippins plugin, “Restrict Content” utilizes and re-direct login feature and is easily disabled from the plugin settings menu. Boom!

@muvmag

Brilliant. Thank you for your feedback ??

dwinden