reauth redirect loop when logged out and timed out

  • [email protected]

    (@theresawebdevgmailcom)


    9 years, 9 months ago

    I am still having the issue described below but am using TML Version 6.3.9. I have tried all three redirection options with the same results

    Theme My Login 6.0.3
    Another potentially overwhelming bug has been found in the Theme My Login 6.0 branch.

    This bug reveals itself when you try to access yoursite.com/wp-admin without being logged in. This will forward you to the TML page with a query argument of “reauth” appended to it. This query argument tells WP to delete the login cookie. This is all fine. The problem comes when after successful login with the “Custom Redirection” module enabled and set to referrer, it passes back the “reauth’ value, essentially logging the user out.

    https://www.ads-software.com/plugins/theme-my-login/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter [email protected]

    (@theresawebdevgmailcom)

    Update:

    I have gone through my user roles and login/logout scenarios and see the main issue is when 2 of the roles logout from the profile page. I am using a custom profile page (profile-form.php) for both roles if i go to /your-profile and click signout, I am redirected to /login/?reauth=1
    The login page contains the login form but is being redirected to itself. Because reauth=1 is in the url, I am never logged in.

    Any help would be apprecited. TML settings for the roles is question are as follow
    1. Redirection – login and logout redirect to referer ( I can’t change this because in all other scenarios we want user to stay on same page when they logout)
    2.Both roles in question are restricted from wp-admin and have a custom profile
    3. wp-login.php is disabled

    Plugin Author Jeff Farthing

    (@jfarthing84)

    First of all, you should definitely upgrade to 6.3.10. What is the URL for the logout link?

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘reauth redirect loop when logged out and timed out’ is closed to new replies.