Two Factor emails not working on HTTP sites

  • Resolved bizzle0x

    (@bizzle0x)


    1 month ago

    Hello,
    I’m experiencing an issue with the Two Factor plugin and I’m hoping you can provide some guidance.
    The plugin works perfectly on sites with HTTPS and an associated domain – emails are sent and received without any problems. However, on HTTP sites (without SSL certificates), the two-factor authentication emails are not being sent or received at all.
    Is this a known limitation of the plugin? Does the Two Factor plugin require HTTPS to function properly for email delivery? If so, is there any workaround or configuration that would allow it to work on HTTP sites?
    I’d appreciate any information or suggestions you might have to resolve this issue.

    Thank you for your time and assistance.

    Best regards

Viewing 1 replies (of 1 total)
  • Plugin Author Kaspars

    (@kasparsd)

    2 days, 8 hours ago

    The plugin does not require HTTPS for security codes over email. It uses the same wp_mail() function as WP core to send those codes.

    The only two-factor method that requires TLS is FIDO U2F Security Keys but it isn’t supported in any of the recent browsers and will be removed from the plugin in the upcoming releases.

    You could try doing a password reset on those non-HTTPS sites to confirm that email delivery is working.

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.

Tags