Alright @Laudian posited workaround seems to addressing:
Is usually caused by having your Cloudflare SSL setting set to
flexible. Can you confirm you have set it toFull (strict)?
Hopefully when I start layering in CF magic via
https://turbofuture.com/internet/Cloudflare-Firewall-Rules-for-Securing-WordPress
… things will not break again.
So for all those folks using Word Press and wanting to get your feet wet invoking a tastier of CF magic … if you have trouble accessing your WP-admin or login prompts …
-
allowlist on Cloudflare Firewall rules the IP or IPs you use
(https://www.whatismyip.com/)or CF likely has same tool …to access and work on your Word Press site -
Change the default CF SSL setting from Flexible to Full (Strict) … it is possible that just “Full” may work for you too.
-
Start learning about CF magic…start experimenting with different network protections CF provides …
https://turbofuture.com/internet/Cloudflare-Firewall-Rules-for-Securing-WordPress
for you old CloudFlares heads of which I am one… do try to work through the new updated CF platform … it is pretty impressive and I am very grateful that CF still provide small volunteer nonprofit and small frys of all flavors a FREE level … although it is smart to do not all ORGs do anymore. I would not have gone as deep with new CF if they had not.
While “your mileage will likely vary” … I am going to assume that I can safely layer in these additional CF protections
https://turbofuture.com/internet/Cloudflare-Firewall-Rules-for-Securing-WordPress and there will be no additional Blockers. THX ALL!