zeriffan

I have it working now. I used the wordfence_ls_require_captcha filter documented at: https://www.wordfence.com/help/login-security/

@wfadam, do you think this is the right usage for this filter?

thanks

I tried disabling plugins to see which one(s) might be interfering. I disabled caching as well. No luck.
I noticed that Yeost SEO was loading recaptcha js for some reason. I got rid of that as well. Still no luck.
I will try themes next:)
thanks!!!

Yes, using the WP basic auth works with the jwt plugin disabled. I wonder why this error pops up with this very popular plugin. There must be sites being accessed with rest api using this jwt plugin + wordfence(with recaptcha). Any thoughts?

After deleting the inactive plugin, the test resulted in this error:
{
“code”: “[jwt_auth] wfls_captcha_verify”,
“message”: “VERIFICATION REQUIRED: Additional verification is required for login. Please check the email address associated with the account for a verification link.”,
“data”: {
“status”: 403
}
}
Notice the jwt-auth code before the wfls error.

• This reply was modified 4 years, 1 month ago by zeriffan.

The invisible captcha plugin is not active. I will delete it and test again. But, I do have an active plugin for jwt (JWT Authentication for WP REST API)

I read an issue on their github page about that interfering with a recaptcha plugin. I wonder if that may be affecting the rest call

Yes, with recaptcha enabled ( there is no 2FA), i can see a type: failed login in the live traffic which shows my user and the service host where its originating

HI @wfadam
Thanks for your prompt reply. I have sent the diagnostic report via plugin email.

thanks!

I had to move the meta tag for viewport above another call. That seemed to fix it. Now, this is a change from my test site where this setup works just fine.

Thanks for your help.