Sucuri Tokens Break WooCommerce Square Connection

  • BIrdie

    (@goldendust20)


    4 years, 7 months ago

    Hello, we’ve been working with WooCommerce to track down the source of their WooCommerce Square plugin randomly disconnecting between the two platforms (WooCommerce & Square).

    Here’s the response to what they found:

    “Square is getting disconnected on your site due to Sucuri Security plugin updating your site’s secret keys once a week.”

    They said there’s nothing on their end they can do about this and to open a ticket with your team, and to “check with Sucuri Security support team if this feature can be disabled?”

    The last option the provide was to delete Sucuri, which I would prefer not to do!

    I hope you can help. The WooCommerce Square plugin ratings are tanking because a LOT of people are having this same random disconnection issue ??

    Thank you kindly!

    • This topic was modified 4 years, 7 months ago by BIrdie.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)

  • @goldendust20

    Do you have the ‘Activate Automatic Secret Keys Updater’ hardening applied? If so, deactivate it and see if that stops the issue. If it does, I would suggest waiting for a fix from Sucuri before hardening it again.

    • This reply was modified 4 years, 6 months ago by carmpocalypse.
    Thread Starter BIrdie

    (@goldendust20)

    Blast, I was SO hopeful. I unchecked the option to Activate Auto Secret Keys” and the plugin disconnected randomly again from our Square account today ??

    I went back to double check and the option in Sucuri to make sure it was still disabled, and to my surprise – it was enabled again. Is this something Sucuri does automatically?

    • This reply was modified 4 years, 6 months ago by BIrdie.

    @goldendust20

    It should not automatically enable again. I don’t have that hardening in place so I can’t tell you what code snippet is used and where it’s placed to see if after reverting the hardening if it actually deletes the code snippet. I would assume the code snippet gets added in to the wp-config file. When reverting the hardening of the automatic secret keys, it looks like the plugin is not removing the code snippet (most likely in the wp-config file). If your comfortable with checking your wp-config file, you can check and see if the code snippet is there and remove it manually.

    *Make a backup/copy of your wp-config file before modifying it*

    • This reply was modified 4 years, 6 months ago by carmpocalypse.
Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Sucuri Tokens Break WooCommerce Square Connection’ is closed to new replies.