• Resolved Uriahs Victor

    (@uriahs-victor)


    We’re using Wordfence on a central site where users with our plugin installed get a token on plugin install.

    The site that creates the token has nothing installed but WordFence and our authentication plugin which creates the token based on the request coming from the user site.

    We’re worried that WordFence might at different times be blocking the request coming to our central site, therefore user not receiving the token.

    How can we make sure that this doesn’t happen? Basically allow any request coming to a particular path on our central site e.g:

    https://example.com/auth/ (we want to allow all GET requests to pass for this path without WordFence blocking the request)

    We want to however keep the normal security benefits throughout the rest of the site

    using wp_remote_get(); to make the request

    • This topic was modified 5 years, 10 months ago by Uriahs Victor.
Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfphil

    (@wfphil)

    Hi @uriahs-victor

    You can create a test user and then generate the request for the token from the test site.

    Do you see a firewall block on the Wordfence Live Traffic tool page feed for that token request?

    If you do, then you have two methods of whitelisting outlined here via either the Learning Mode feature or the whitelist option on the Live Traffic page feed:

    https://www.wordfence.com/help/firewall/learning-mode/

    Plugin Support wfphil

    (@wfphil)

    Hi @uriahs-victor

    Since I haven’t heard back from you I am assuming that the instructions solved your issue so I am marking this topic as resolved.

    If however, for whatever reason, you are still experiencing this issue and it is not resolved please respond to the post, which moves it back up the queue, and mark this topic as “not resolved”.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Allow all incoming Get Requests’ is closed to new replies.