WordPress.org

Make WordPress Core

Opened 11 months ago

Last modified 11 months ago

#47088 reopened defect (bug)

Visting wp-login.php whilst logged in logs you out

Reported by: lev0 Owned by:
Milestone: Awaiting Review Priority: normal
Severity: normal Version: 3.0
Component: Login and Registration Keywords:
Focuses: Cc:

Description

I leave multiple, regularly-used WP admin tabs open in a browser window. The login sessions time out, as expected, resulting in tabs with URLs like https://example.com/wp-login.php?redirect_to=https%3A%2F%2Fexample.com%2Fwp-admin%2Fadmin.php%3Fpage%3Dfoo-bar&reauth=1

If log in on such a tab to do something, then switch to another tab that also has that type of auto-logged-out URL, I am immediately logged out of the site.

I would expect WP to realise that I am logged in and simply honour the redirect already in the URL, or at least provide the choice of logging out or going to the redirect page/dashboard.

Change History (4)

#1 @swissspidy
11 months ago

  • Component changed from General to Login and Registration
  • Milestone Awaiting Review deleted
  • Resolution set to duplicate
  • Status changed from new to closed

Thanks, we are already tracking this in #14949.

#2 @SergeyBiryukov
11 months ago

  • Milestone set to Awaiting Review
  • Resolution duplicate deleted
  • Status changed from closed to reopened

I think this ticket is different from #14949. That one is about getting an inaccurate "You are now logged out" message on the login page without actually being logged out.

This one is about the login page forcibly clearing cookies if reauth flag is set, see [14556]. Whether or not it's the intended behavior is up for discussion.

#3 @SergeyBiryukov
11 months ago

Whether or not it's the intended behavior is up for discussion.

Per comment:33:ticket:12142, it appears to be.

Last edited 11 months ago by SergeyBiryukov (previous) (diff)

#4 @SergeyBiryukov
11 months ago

  • Version changed from trunk to 3.0
Note: See TracTickets for help on using tickets.