Just wanted to share that when All In One WP Security and Theme My Login are both installed, AIOS makes it impossible to get to the Dashboard page made by TML.
The reason for that is this bit of code near the end of classes/wp-security-wp-loaded-tasks.php:
public static function aiowps_login_init() {
//if user is logged in and tries to access login page - redirect them to wp-admin
//this will prevent issues such as the following:
//https://projectdmc.org/support/topic/already-logged-in-no-captcha
if (is_user_logged_in()) {
wp_redirect(admin_url());
} elseif (!(isset($_GET['action']) && 'postpass' == $_GET['action'])) {
AIOWPSecurity_Utility_IP::check_login_whitelist_and_forbid();
}
}Something about TML’s Dashboard triggers function aiowps_login_init() and causes it to redirect to wp-admin. This is unwanted behavior.
If I comment out wp_redirect(admin_url()); like this //wp_redirect(admin_url()); – this redirection stops happening.
This is not a permanent solution, of course, since it’ll be wiped out next time there’s an update. Also, people who have WP login form captcha activated should not comment it out.
But figured it would be good to share anyway, in case someone else runs into this problem.
Is there a way to keep the redirect if a user tries to go to the front end login page while already logged in, but don’t have it redirect when the user is going to the front end dashboard? That would be ideal, but I haven’t figured out how to make it work like that.