Recently we moved a site to SSL following popular guidelines.
Everything worked as expected except when it comes to uploading images via the frontend.
Trying to upload an image we get the following response:
302 POST async-ajax.php
200 GET https://example.com/wp-login.php?redirect_to=https://example.com/wp-admin/async-upload.php&reauth=1
So image upload fails, cookie is invalidated (reauth=1), user is forced to login again.
Other observations:
- Users are able to upload images via backend
- There is no errors in wp-debug
- It works fine if we revert to non-ssl
1 Answer
If you are using custom front-end registration through wp_signon function, check, if the second parameter, passed to that function is true:
$user_signon = wp_signon( $info, true ); ).
The second parameter tells WordPress to set the secure cookie for login. It works fine with SSL.
