How do I hide my WordPress login URL when someone accesses a Matomo report directly?
If you are using a plugin like “WPS Hide Login” to hide your WordPress Admin login URL, then Matomo may expose your WordPress login URL depending on the plugin you are using. This happens when you are logged out, and you are accessing the Matomo reporting or admin UI directly through a URL like this:
https://example.com/wp-content/plugins/matomo/app/index.php
If you are not logged in, Matomo will then redirect you to the WordPress login URL, ask you to log in, and redirect you back to the selected Matomo page. If you prefer a user to be redirected to the log in page instead, you can add the following snippet to your wp-config.php
:
define( 'MATOMO_LOGIN_REDIRECT', 'frontpage' );
Once configured, this will redirect the user to your homepage instead of the login page.
If you are using the “WPS Hide Login” in particular, then we automatically redirect you to the home page and you could force the behaviour to show the login page instead by adding this snippet to your wp-config.php
define( 'MATOMO_LOGIN_REDIRECT', 'login' );
Are you using a different plugin to hide the login URL? Please let us know and we might be able to add support for it automatically without needing to configure anything.