Md. Habibur Rahman
Forum Replies Created
-
Thank you so much for confirming, I really appreciate your patience and thorough testing throughout this process. Glad to hear everything is working correctly now. If you run into anything else in the future, feel free to let me know anytime. 🙏
Hi, thank you again for all your detailed testing and patience,, I really appreciate it.
I’ve just released version 1.1.3, which adjusts the OTP handling to run earlier in the login flow and completes authentication using
wp_signon(). This allows WordPress core to correctly set persistent cookies when “Remember Me” is enabled.We have tested this across multiple environments and browsers, and confirmed that in some cases the issue was also related to specific environment conditions.
Please update to v1.1.3, then test again by:
- Logging in with Remember Me checked
- Completing the OTP step
- Checking
wordpress_logged_in_*in DevTools → Application → Cookies
→ you should now see a future expiry instead of Session
Thank you once again for helping improve this feature — your feedback has been very valuable!
Hi, thanks again for pointing this out!
You were absolutely right — I was callingwp_set_auth_cookie( $user_id )without the$rememberparameter, which resulted in WordPress creating only a browser-session cookie that expired when the browser was closed.I’ve now updated the 2FA flow so it correctly stores the user’s “Remember Me” choice and calls
wp_set_auth_cookie( $user_id, $remember )after successful OTP verification. WordPress safely handles the$tokengeneration automatically when omitted, so that part is covered as well.I’ve released version 1.1.2, and this fix is now included.
Thank you for taking the time to report this and helping improve the plugin — I really appreciate it!If you notice anything else, please feel free to share anytime.