WordPress login loops usually come from incorrect site URLs, bad cookie handling, security plugins, or forced HTTPS and proxy settings that are out of sync.
Common symptoms
- Credentials are accepted but the login page reloads
- The admin area redirects endlessly
- The issue started after enabling SSL or changing domains
Troubleshooting steps
- Clear browser cookies for the site and test again in a private window.
- Confirm the WordPress site URL and home URL values match the current domain and protocol.
- Temporarily disable security and caching plugins by renaming their folders in
wp-content/plugins. - Review
.htaccessand any forced redirect rules added by SSL or optimization plugins. - If the site sits behind a proxy or CDN, ensure the application correctly detects HTTPS.
Additional notes
- Login loops often appear after switching from HTTP to HTTPS without updating all related settings.
- A malformed cookie domain or mixed www and non-www settings can also trigger loops.
When to contact support
Contact support if redirects persist after disabling plugins and confirming the correct site URLs.