Super simple way to allow a single sign on to your Wordpress site when using Cloudflare Access.
Enable Cloudflare Access self-hosted application to protect your /wp-admin
folder. Add your auth domain and aud settings from Cloudflare Access. Authenticated user will be automatically logined to WordPress if their email address matches.
Follow Cloudflare document to setup Access.
You can also define configs in wp-config.php
define('WP_CF_ACCESS_AUTH_DOMAIN', 'yourdomain.cloudflareaccess.com'); define('WP_CF_ACCESS_JWT_AUD', 'examplef2nat0rkar2866wn829a0x2ztdg'); define('WP_CF_ACCESS_REDIRECT_LOGIN', true);
This plugin is not affiliated with nor developed by Cloudflare. All trademarks, service marks and company names are the property of their respective owners.
Enable the “Redirect login page” option and all future logins will be redirected to /wp-admin
and trigger Access authentication.
The option assumes that /wp-admin
folder is protected by Cloudflare Access. If the folder is not protected, then auto-login will fail and redirect back to the login page, causing the redirect loop.