• Resolved guerrilladigital

    (@guerrilladigital)


    Using Version 7.3.4, and for some reason today, our ability to send restricted users “to the WordPress login screen” is no longer working and our client’s website is wide open to the public.

    The only thing we did recently is our client added Cloudflare prior to hitting our servers. Would this have an effect on this behavior?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support Darin Kotter

    (@dkotter)

    @guerrilladigital Cloudflare is almost certainly the culprit here, though it depends on how you are restricting users. If you are restricting based on IP address, Cloudflare will send all requests to your site with the IP address of the CDN, not the IP address of the actual user. We try and work around this the best we can but we are limited in what we can do.

    In v7.3.2 we added some additional filters that individual sites can use to further customize this behavior (as well as increase security if they so desire). Can read more about those here: https://github.com/10up/restricted-site-access#how-secure-is-this-plug-in

    willdries

    (@willdries)


    We had the same problem. Also with CloudWays by the way. We think it has something to do with the caching technique their using.

    For CloudFlare we created a Page Rule for bypassing the Cloudflare cache. So for us Restricted Site Access is working now as intended with that Page Rule active. Maybe this can be helpful.

    • This reply was modified 2 years ago by willdries.
    • This reply was modified 2 years ago by willdries.
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘“Send them to the WordPress login screen”’ is closed to new replies.