At my place after many years after replacing the router from EdgeMax to Cloud Gateways 2 weeks ago, I also had a similar problem and only added the rule I gave in another topic. https://forum.cloudron.io/post/98217

It has been working properly ever since. I don't open other ports besides http,https or add domain in DNS tab.

Why so? In the Ubiquiti system, the loopback works between the WAN and LAN, so the “LAN IN” rule activates the loopback correctly. Because the loopback “works” in the address network like Gateway, so, then when I added blocking access to Gateway from different VLANs(probably at this point, because I configured in stages throughout the week), then I could not turn on the site on the computer through the local network, and outside with no problem. I started snooping what was the cause, reviewed the rules in the firewall and the forum. I read somewhere that you had to add a rule in LAN IN. After adding it started working as it should, even the tests in Wordpress shows correctly.

@privsec just create your own wordpress using the LAMP-App look at this to see how to configure the wpconfig
here

this might solve your issues

In OpenID there is no well supported way to log out users from services which used the OpenID for authentication (in Cloudron case the apps). Those app have their own session and session handling. So there is mostly likely no way around this unless an app would start using OAuth2 access and refresh tokens (but implementation of that was spotty in the past which sparked OpenID connect in the first place)

For a start if you logout of the dashboard, subsequent app logins (from a state where the app has no login session) then Cloudron will prompt you to login with a username. If that is not happening the Oidc session was still alive.

The best way I found was to use container tabs in like firefox and probably other browsers, which maintain isolated sessions. This is also how I use other services like Digitalocean where we have multiple accounts with different roles.

@lushmedia I think the SSO user gets listed only after you login once. Did you login once?

Is there any success to this since we are also testing Performance? And would like to activate the module?

So a fresh installation of Wordpress Developer caused this issue? At least I am not able to reproduce this. Neither with or without email enabled for that app.

If it helps, the startup script is at https://git.cloudron.io/cloudron/wordpress-developer-app/-/blob/master/start.sh?ref_type=heads#L7

I think we need more logs from your fresh app then to see whats the problem.

This appears to be a plugin conflict with my theme. Sigh, back to the theme we go

I managed to log into the back end of WP and started enabling and disabling different plugins. I discovered there was a conflict with one of them related to Toolset and WooCommerce. It's working again now.

@privsec you probably have installed WordPress with Cloudron authentication enabled. To fix this, install a new WP with Cloudron authentication disabled. You can then import the Cloudron backup of the other app into this one.

@jdaviescoates I absolutely and entirely did.....

So clearly missed a step.

all working as expected now - Many thanks!

@girish thank you after updating app package I can edit aliases

@dsp76 this should be fixed now with the latest update.

Actually I apologize, perhaps my testing was incomplete. I'm not sure what I did wrong but I reverted the live site that had auto-updated, and then I cloned the backup of 3.7.0 with OIDC to a staging domain. I then created a new user in the staging domain as if I was a new member signing up, and then I was able to login in after logging out. I think the issue was with my admin account somehow being unable to login and I haven't quite figured that part out yet. But it seems like it's working fine for local accounts I guess with the new 3.7.0 app version, so that's good news then. 🙂

@Dave-Swift you can re-import the app. See https://forum.cloudron.io/topic/12382/cloudron-sso-questions

Currently, there is no setting to change from SSO to non-SSO mode and viceversa. This is a selection made at install time.

Workaround: install a new WP app in the correct mode and then import the latest backup of the other WP into this app.

This perhaps?
https://openid.net/specs/openid-connect-rpinitiated-1_0.html

@chetbaker I couldn't figure how these two are related i.e API and permalinks... Do you know?

Its a pfsense - as a virtual appliance.