wordpressnut1
Forum Replies Created
-
I am also having this problem. The access token field in the settings is disabled and when using JWTs there doesn’t appear to be any filters which can be used to change the expiry
No problem! I did some digging through the WP w3all plugin code and can see that it’s basically triggering a logout on requests which are missing the relevant phpBB cookies so not sure there’s much you can do about that on your end unless there’s a way of controlling the execution order and intercepting the request before it hits that plug-in. For now I’ve just customised that plug-in to whitelist the oauth and WP API endpoints.
Thanks for your advice and assisting with getting this resolved
Thanks for getting back to me! It looks like this is being caused by the WP w3all phpBB plug-in as the oauth plug-in works fine when this is deactivated. It’s a long shot but have you seen this before or can provide any tips on getting these two plugins to play nicely?
After some debugging it looks like WordPress is performing a logout when attempting to call the API with the access token since all the wp cookies are being expired. Any pointers as to why this could happen? I’ve also noted that though implicit flow is enabled, when attempting to use implicit flow I am redirected with no query string after an authorize. I’m using postman to test
I’ve been unable to reproduce this issue on a local fresh wp install.