I have a custom user-role "pharmacist" and I have some hidden sections on our page, which only logged in users can see.
The user-role "pharmacists" has no access to the wp-admin dashboard (if he tries to enter he should be redirected)
Everything was working fine, until I installed the toolset.
We use a custom url with some secret $_GET code and people going to this url will be logged in via the
wp_signon() function and also wp_set_auth_cookie()
If I change the credentials in my function to an admin user, everything works fine.
I don't believe the issue here is being explained clearly.
Can you let me know what exactly happened after you've installed our Toolset Plugin ? Also which plugin are you using to create the custom pharmacist role.
To explain it again in more details:
1. We do have an external service called docCheck which is handling logins
2. once a client is logged in the will get to our secret url with a $_GET Code
3. we check if the code is correct and sign them in as a user with the
$user = wp_signon( $creds, false );
wp_set_current_user($user->ID );
wp_set_auth_cookie( $user->ID, true );
4. if nothing throws an error we redirect the user to a page where we check if the user is logged in or not
5. but after login we can not see any pages and it will throw an error (redirect loops)
6. to make it work again we need to clear all the cookies
before we installed Toolset it was working perfectly fine and we have the same script running on other sites
without Toolset.
Which Toolset plugin did you activate that caused the issue ? Was it our Toolset Access plugin as I know that our Access plugin handles user permissions so it may be a case where they are conflicting somehow.
I am using Toolset Access Version 2.8.11 - and I also use Remove Dashboard Access Version 1.1.3.
But if I activate the Toolset Access with or without the Remove-Dashboard-Access it is not working.
A logged in user - in my case call it a reader - can not access any sites. It will redirect until it crashes.
As soon as a user signs in - which is not an admin - the user will not be able to see any pages. Each page will lead to and infinite redirect. We use the user doccheck as a user to work with and external login system. So if people login with the doccheck tool they will be logged in as the user doccheck. But this is actually not important as no user except admin works.
