It seems that WP Cerber is creating a conflict when used with the WP Altcha plugin on login and creating an erroneous ‘Error : Could not verify you are not a robot.’ message, probably coming from the Altcha plugin but goes away when WP Cerber is deactivated. ‘/wp-json/altcha/v1/challenge’ is showing up in traffic inspector so I added it to the white list but it doesn’t seem to resolve this issue. I am not sure anyone on the Altcha side will have an answer for me on this wondering if anyone on the Cerber side knows what to do? Thanks!
On the WP Altcha instructions it says:
REST API
This plugin requires the WordPress REST API. If you are using any “Disable REST API” plugins, ensure that the endpoint /altcha/v1/challenge is allowed.
Where specifically in WP Cerber would I address this?
Hi!
To allow the /altcha/v1/challenge REST API endpoint in WP Cerber, do the following:
- Go to the Hardening tab.
- Scroll down to the setting called Allow these REST API namespaces.
- Add this value to the list (on a new line):
altcha
- Scroll down and click Save Settings.
That’s it! WP Cerber will now allow that specific endpoint even if REST API access is otherwise restricted.
You can read more here:
Thanks very much for this info. I have added the altcha namespace and am able to login normally but still receive what seems like a superfluous error that has no bearing on logging in.
I am wondering if there could be something else I am missing here? Like some setup in the WP Cerber Anti-Spam panel or somewhere else?
It would seem that if I don’t adjust the login directory from /wp-admin to /something-else then this problem goes away. Not sure if this is an Altcha issue or a Cerber issue at the moment but figured I’d put it out there.