- This topic has 10 replies, 6 voices, and was last updated 6 years, 3 months ago by
.
-
Posts
-
I am using simple membership for a small private association of 70 members. 2 separate members have told me that they’ve logged in, using their own user id and password, but the website shows them as logged in as another member. This is freaky. Any idea why it’s happening and how to stop it?
Could it be that they are sometimes on the same wifi network??Hi, can you carry out a test yourself. Would it be possible for you to try and log in using one of the two members login accounts mentioned above? Then report back.
Regards
I tried to log in as one of the members and it blocked me.
The point they both made was that they logged in with their own credentials but were then told that they were already logged in as another member. Different ‘other’ member in both cases.
both pairs – the logger in and the member they were told they were – all have different ids and v different user ids.
I did notice that in each case the log ins were in 1-2 hours of each other….but in one case the logger in logged in before the person who the system said they were. So don’t think it’s relevant.
Any update on this? We had the same issue last night: Member username/passwords (which I set up) were given out at a parent meeting, then one user logged in at the meeting and saw another user’s profile info. Their IDs are different (#20 and 64), they both have gmail addresses – we use email addresses as usernames – but they are not similar. We started everyone out with the same password, and told them to login and change it asap.
Really like this plugin, otherwise – it’s been simple to set up & works well.
Update – I was just able to replicate this; I logged into the parent’s account, the one who had the issue last night, and can see the other parent’s profile info. I had previously logged into the other parent’s account, spot-checking, but had logged out. Last night, both moms were logging in from the parent meeting, so it is possible that they were both using the school’s WiFi.
Could it a caching problem? We are using CloudFlare to cache the site.
@HeronCo, @Judy-Stanley, @arizonanorse —
Are any of you using a page caching plugin such as W3 Total Cache or WP Super Cache? If so, please click the appropriately provided links and ensure proper integration.
That was it – we had WP Super Cache installed prior to setting up caching on CloudFlare, and I had forgotten to disable it. I turned off WP Super Cache, and it seems to have fixed the problem. Thank you for your quick response!
I recently encountered the same problem. User logged in, went away for a bit, came back and found he was logged in as another user (thus able to access their private info). I do not have any caching plugins installed. I host on FlyWheel, which comes with it’s own caching, but I have disabled it. They do have Fastly CDN by default (which I can’t turn off), could that be causing the issue?
- You must be logged in to reply to this topic.