Issue with login and access to protected content, nonce/cache problem?

  • Sandrinepeli

    (@sandrinepeli)


    6 years ago

    I have been struggling with this issue for the past 3 weeks and am running out of ideas. Any idea would be appreciated.

    My students have to login multiple times and then when they access protected content, they have to refresh the page 2-10 times to be able to access their classes.
    My website is hosted by GoDaddy with a managed wordpress plan, that has its own cache that unfortunately cannot be disabled.

    We ruled out a plugin issue by disabling all plugins
    We ruled out a theme issue as the login issue is the same when I change to Twenty Seventeen theme.
    I tried different login widgets and sometimes get the error message Your nonce did not resolve”
    I get the same error when login in with wp-login.php (sometimes login works but then access to classes does not work)
    I disabled the plugin “Autoptimize” and tried to flush out the Go Daddy cache, I get the same error.

    You can test the login with :
    email: test
    password: merdum

    Thesis & Current Skin
    ===========================
    Thesis Version: 2.7.1
    Skin Name: Classic Responsive
    Skin Version: 1.6.1
    Skin CSS: YES → 20.9kB on 07/22/2018 at 00:29:02
    Skin Custom CSS: YES → 0.28kB
    Skin Custom PHP: YES → 0.3kB on 06/02/2018 at 02:19:45

    Thesis Filesystem
    ===========================
    wp-content/thesis: YES
    wp-content/thesis/skins: YES
    wp-content/thesis/boxes: YES
    wp-content/thesis/master.php: YES → 0.2kB on 11/24/2018 at 19:54:52

    Thesis Skins and Boxes
    ===========================
    Installed Skins: Classic Responsive, Grind
    Installed Boxes:
    Active Boxes:

    WordPress
    ===========================
    WordPress Version: 4.9.8
    Filesystem Method: direct
    Using Multisite: NO
    Active Plugins: Advanced Ads, Advanced Recent Posts, Akismet Anti-Spam, Contact Form 7, Disqus for WordPress, Easy Watermark, EWWW Image Optimizer, kk Star Ratings, Login Widget With Shortcode, WP Courseware – Magic Members Add On, Magic Affiliate, Magic Members, Post Grid, Really Simple SSL, Search Exclude, Sidebar Login, Strong Testimonials, Tiled Galleries Carousel Without Jetpack, UpdraftPlus – Backup/Restore, Wordfence Security, WordPress Related Posts, Yoast SEO, WP Courseware, WP Mail SMTP

    PHP
    ===========================
    Version: 7.2.7
    cURL: YES
    Max Upload (according to WP): 33 MB
    Memory Limit (ini): 1024M
    Memory Limit (usage): 4 MB
    Memory Limit (WP): 40M

    Server/Database
    ===========================
    Site URL: https://paintingdemos.com
    Server Software: Apache
    Options Collation: utf8mb4_unicode_ci
    MySQL Version: 5.6.32-78.0-log
    PHP Handler: cgi-fcgi

    Browser
    ===========================
    User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Chris Dillon

    (@cdillon27)

    Hi Sandrine, it’s Chris from Strong Testimonials.

    A clue that may point you in the right direction: When I tried to login via wp-login.php, I received a “429 Too many requests” error.

    Waiting 30 seconds to retry should work better than 5 refreshes.

    There are times when the error is caused when the script on the website is making too many requests to another website or to another service using an API. Even in this case, the 429 too many requests error will be thrown.

    https://www.wpthemesindia.in/how-to-fix-error-429-too-many-requests/

    When login works, your site is slow. I suspect a cascade of redirects is creating too many requests and triggering the 429 error. That may be a configuration conflict between Really Simple SSL and Wordfence. (BTW, you can and should achieve 100% https without a plugin.)

    To troubleshoot properly, you must be able to rule out web host caching.

    If I were in your shoes, I would pare down the site to the bare essentials: Magic Members and WP Courseware, and use wp-login.php so you can catch any server error messages. Leave that in place for 24 hours to allow GoDaddy cache to catch up. If the problem continues, then I would ask GoDaddy support if the server logs provide any clues.

    Thread Starter Sandrinepeli

    (@sandrinepeli)

    Thanks Chris! I will try your suggestions.

    Waiting 30 seconds is a better idea than refreshing the page multiple times, it works, thank you.

    Using Real simple SSL was an instruction from GoDaddy support when I purchased the certificate , and yes I never understood why I would need an extra plugin to make SSL work properly. I disabled that plugin and the SSL seems to work so far.

    I have an option to “flush cache ” in my GoDaddy tab on the dashboard, wouldn’t that achieve the same result as waiting 24 hours?

    I disabled most plugins and am waiting 24 hours to see what is happening.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Issue with login and access to protected content, nonce/cache problem?’ is closed to new replies.