WordPress Redirect Logic

Here’s how you can achieve this:

1. **Add the following code to your WordPress theme's `functions.php` file**:

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Check if the user is logged in
        if (is_user_logged_in()) {
            // Redirect to the users page or any other page
            wp_redirect(admin_url('users.php?page=userwp-user-approval'));
            exit;
        }
    }
});

### Explanation of the Code:
– `template_redirect`: This action hook runs before the template is loaded and is perfect for URL-based redirections.
– `strpos($_SERVER['REQUEST_URI'], 'focus_admin')`: Checks if `focus_admin` exists in the requested URL.
– `is_user_logged_in()`: Verifies if the user is already logged in.
– `wp_redirect()`: Redirects the user to the specified page.
– `admin_url('users.php?page=userwp-user-approval')`: Constructs the full admin URL to redirect the user.

### Notes:
– Ensure this code does not conflict with other redirection rules in your project.
– If you want to allow non-logged-in users to access the page, adjust the condition accordingly.

### Test the Implementation:
– Visit any URL containing `focus_admin` while logged in and ensure it redirects correctly.
– Test while logged out to confirm no redirection occurs.

### Updated Code:

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Check if the user is logged in
        if (is_user_logged_in()) {
            // Parse the redirect_to parameter from the URL
            $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url('users.php?page=userwp-user-approval');
            
            // Redirect to the specified page or a fallback page
            wp_redirect($redirect_to);
            exit;
        }
    }
});

### Key Updates:
1. **Extract `redirect_to` Parameter:**
– The code checks if the `redirect_to` parameter exists in the URL using `$_GET['redirect_to']`.
– If it exists, it sanitizes the URL using `esc_url_raw()` to ensure it's safe.
– If `redirect_to` is missing, it falls back to a default URL (`users.php?page=userwp-user-approval`).

2. **Dynamic Redirection:**
– The redirection uses the `redirect_to` parameter value for flexibility.

### Security Considerations:
– The `esc_url_raw()` function ensures the URL is properly sanitized to prevent open redirect vulnerabilities.
– Ensure the `redirect_to` parameter points to a trusted location within your application.

### Example Scenarios:
1. **URL:**
`https://example.com/focus_admin/?redirect_to=/wp-admin/users.php?page=custom-page`
– The user will be redirected to `/wp-admin/users.php?page=custom-page` after verification.

2. **URL Without `redirect_to`:**
`https://example.com/focus_admin/`
– The user will be redirected to `/wp-admin/users.php?page=userwp-user-approval` (fallback URL).

### Updated Code:

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Check if the user is logged in
        if (is_user_logged_in()) {
            // Get the redirect_to parameter from the URL, or default to the admin dashboard
            $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();
            
            // Redirect to the specified or default page
            wp_redirect($redirect_to);
            exit;
        }
    }
});

### Key Changes:
1. **Default to `wp-admin`:**
If the `redirect_to` parameter is not present in the URL, the code will use `admin_url()` as the default, which resolves to `/wp-admin`.

2. **Sanitization with `esc_url_raw`:**
Ensures the value of `redirect_to` is safe to use for redirection.

### Behavior:
1. **With `redirect_to`:**
If the URL is:

https://example.com/focus_admin/?redirect_to=/wp-admin/users.php?page=custom-page

The user is redirected to `/wp-admin/users.php?page=custom-page`.

2. **Without `redirect_to`:**
If the URL is:

https://example.com/focus_admin/

The user is redirected to `/wp-admin`.

### Security Considerations:
– Use `esc_url_raw()` to prevent malicious or unsafe URLs from being processed.
– Ensure that `redirect_to` only points to trusted locations within your site to avoid open redirect issues.

### Working Code for URL Redirection

add_action('init', function () {
    // Check if the URL contains 'focus_admin'
    if (isset($_SERVER['REQUEST_URI']) && strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Check if the user is logged in
        if (is_user_logged_in()) {
            // Check for the redirect_to parameter
            $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();

            // Perform the redirection
            wp_safe_redirect($redirect_to);
            exit;
        }
    }
});

### Why This Should Work:
1. **Using the `init` Hook:**
The `init` hook runs early in the WordPress lifecycle, which makes it a reliable point to handle URL checks and redirections.

2. **`wp_safe_redirect`:**
This function ensures the redirection URL is within the same domain, preventing potential security risks.

3. **Using `$_SERVER['REQUEST_URI']`:**
Directly checks the current URL for the `focus_admin` keyword, ensuring the condition matches.

4. **Default Redirection:**
If `redirect_to` is missing, it falls back to `admin_url()`, which resolves to the WordPress admin dashboard.

### Testing:
1. **URL with `redirect_to`:**

https://example.com/focus_admin/?redirect_to=/wp-admin/users.php?page=custom-page

– Expected: Redirects to `/wp-admin/users.php?page=custom-page`.

2. **URL without `redirect_to`:**

https://example.com/focus_admin/

– Expected: Redirects to `/wp-admin`.

3. **Logged-Out User:**
– No redirection should occur if the user is not logged in.

### Debugging Tips:
1. **Enable Error Logging:**
Add the following to `wp-config.php` to catch any errors:

define('WP_DEBUG', true);
   define('WP_DEBUG_LOG', true);
   define('WP_DEBUG_DISPLAY', false);

2. **Check Server Configurations:**
Ensure your server’s rewrite rules or caching mechanisms (e.g., Cloudflare, browser cache) aren’t interfering with the redirect.

3. **Test in Different Environments:**
Test the functionality in a staging environment to rule out conflicts with other plugins or theme code.

### Updated Code Using `template_redirect`:

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (isset($_SERVER['REQUEST_URI']) && strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Check if the user is logged in
        if (is_user_logged_in()) {
            // Extract the redirect_to parameter from the URL
            $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();

            // Perform the redirection
            wp_safe_redirect($redirect_to);
            exit;
        }
    }
});

### Explanation:
1. **`template_redirect` Hook:**
– This hook fires before WordPress includes the template file.
– Perfect for redirection logic as it ensures all WordPress query processing is complete.

2. **Check `REQUEST_URI`:**
– Scans the current URL for the `focus_admin` string to determine if redirection logic should apply.

3. **Check Login Status:**
– `is_user_logged_in()` ensures the redirection only applies to logged-in users.

4. **Dynamic Redirection:**
– Retrieves the `redirect_to` parameter from the URL.
– Uses `admin_url()` as a fallback to redirect to the WordPress admin dashboard if `redirect_to` is missing.

5. **`wp_safe_redirect`:**
– Ensures the redirection target is safe and within the same domain.

6. **`exit`:**
– Immediately stops script execution after the redirection to prevent further processing.

### Testing Scenarios:
1. **URL with `redirect_to`:**

https://example.com/focus_admin/?redirect_to=/wp-admin/users.php?page=custom-page

– Expected: Redirects to `/wp-admin/users.php?page=custom-page`.

2. **URL without `redirect_to`:**

https://example.com/focus_admin/

– Expected: Redirects to `/wp-admin`.

3. **Logged-Out User:**
– Expected: No redirection occurs.

### Debugging:
If the code still doesn't work:
1. **Enable Debugging in WordPress:**
Add this to your `wp-config.php`:

define('WP_DEBUG', true);
   define('WP_DEBUG_LOG', true);
   define('WP_DEBUG_DISPLAY', false);

Check the debug log at `wp-content/debug.log`.

2. **Check Plugin/Theme Conflicts:**
Temporarily disable other plugins and switch to a default theme (like Twenty Twenty-Four).

3. **Inspect Redirect Logic:**
– Add debug logs to check conditions:

error_log('Redirect triggered for focus_admin');
     error_log('Redirecting to: ' . $redirect_to);

4. **Server Cache:**
Ensure your server or CDN cache (e.g., Cloudflare) isn’t interfering. Clear the cache and test again.

This approach ensures a reliable and secure redirection system using `template_redirect`.

if (strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
// Check if the user is logged in
if (is_user_logged_in()) {
// Redirect to the users page or any other page
$redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();

// Redirect to the specified or default page
wp_redirect($redirect_to);
exit;
}
}
});
after applying this code we can logout from wp-admin

To fix this and ensure proper handling without affecting logout functionality, you can refine the code as follows:

### Refined Code Using `template_redirect`
Use the `template_redirect` hook instead of `init`, and explicitly exclude actions like logout:

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (isset($_SERVER['REQUEST_URI']) && strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Ensure this is not a logout request
        if (!isset($_GET['action']) || $_GET['action'] !== 'logout') {
            // Check if the user is logged in
            if (is_user_logged_in()) {
                // Get the redirect_to parameter or default to the admin dashboard
                $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();

                // Perform the redirection
                wp_redirect($redirect_to);
                exit;
            }
        }
    }
});

### Key Fixes:
1. **Exclude Logout Action:**
– The `!isset($_GET['action']) || $_GET['action'] !== 'logout'` condition ensures that the redirection logic does not interfere with logout actions.

2. **Use `template_redirect`:**
– This hook runs later in the request lifecycle, making it less likely to conflict with other WordPress actions.

3. **Dynamic `redirect_to`:**
– The code handles cases where `redirect_to` is provided or falls back to the admin dashboard.

### Why This Works:
– The logout URL in WordPress typically includes `action=logout`. By excluding such requests from the redirection logic, the logout process proceeds uninterrupted.
– Using `template_redirect` ensures redirection happens only after WordPress has determined the correct template, reducing the chance of interfering with core actions like logging out.

### Test Scenarios:
1. **Logout Attempt:**
– Visit `/wp-login.php?action=logout`. Ensure the logout process works without redirection issues.

2. **`focus_admin` with `redirect_to`:**
– Test URLs like `/focus_admin/?redirect_to=/wp-admin/options-general.php`. Ensure proper redirection.

3. **`focus_admin` without `redirect_to`:**
– Test `/focus_admin/`. Ensure redirection to `/wp-admin`.

### Debugging Tips:
If issues persist, add the following debug lines to monitor the conditions:

error_log('Redirect triggered. Request URI: ' . $_SERVER['REQUEST_URI']);
error_log('Redirecting to: ' . $redirect_to);

Check the debug log at `wp-content/debug.log` for insights.

### Updated Code with Debugging

add_action('template_redirect', function () {
    // Check if the URL contains 'focus_admin'
    if (isset($_SERVER['REQUEST_URI']) && strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        error_log('focus_admin found in the URL'); // Debugging: Log if focus_admin exists

        // Ensure this is not a logout request
        if (!isset($_GET['action']) || $_GET['action'] !== 'logout') {
            error_log('This is not a logout request'); // Debugging: Log for non-logout requests

            // Check if the user is logged in
            if (is_user_logged_in()) {
                error_log('User is logged in'); // Debugging: Log if the user is logged in

                // Get the redirect_to parameter or default to the admin dashboard
                $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();
                error_log('Redirecting to: ' . $redirect_to); // Debugging: Log the redirection target

                // Perform the redirection
                wp_safe_redirect($redirect_to);
                exit;
            } else {
                error_log('User is not logged in'); // Debugging: Log if the user is not logged in
            }
        } else {
            error_log('This is a logout request, no redirection applied'); // Debugging: Log for logout requests
        }
    }
});

### Debugging Added:
1. **Error Logs:**
The `error_log` statements provide insights into the conditions being met (or not). Check the debug log at `wp-content/debug.log` to trace the execution flow.

2. **Key Checkpoints:**
– Whether `focus_admin` is detected in the URL.
– Whether the request is a logout action.
– Whether the user is logged in.
– The value of the `redirect_to` parameter.

### Enabling Debugging:
To enable WordPress debugging, add the following to your `wp-config.php`:

define('WP_DEBUG', true);
define('WP_DEBUG_LOG', true);
define('WP_DEBUG_DISPLAY', false);

### Steps to Test:
1. **Access URL with `focus_admin` and `redirect_to`:**
– Example:

https://example.com/focus_admin/?redirect_to=/wp-admin/options-general.php

– Expected Behavior: Redirects to `/wp-admin/options-general.php`.

2. **Access URL with `focus_admin` without `redirect_to`:**
– Example:

https://example.com/focus_admin/

– Expected Behavior: Redirects to `/wp-admin`.

3. **Access Logout URL:**
– Example:

https://example.com/wp-login.php?action=logout

– Expected Behavior: Logout proceeds without interference.

### If Still Not Redirecting:
1. **Check Logs:**
Review the `wp-content/debug.log` file to see which conditions are failing.

2. **Inspect Conflicts:**
Temporarily disable other plugins and switch to a default theme like Twenty Twenty-Four to rule out conflicts.

3. **Rewrite Rules:**
Ensure `.htaccess` or server configuration (e.g., Nginx rules) is not interfering with the URL structure.

4. **Alternative Hook:**
If `template_redirect` still doesn’t work, try using the `wp` hook:

add_action('wp', function () {
       // Place the same redirection logic here
   });

To fix this while using the `init` hook, we can refine the logic to **bypass redirection during logout**. Here’s the updated solution:

### Updated Code for `init` Hook

add_action('init', function () {
    // Check if the URL contains 'focus_admin'
    if (isset($_SERVER['REQUEST_URI']) && strpos($_SERVER['REQUEST_URI'], 'focus_admin') !== false) {
        // Exclude logout requests
        if (!isset($_GET['action']) || $_GET['action'] !== 'logout') {
            // Check if the user is logged in
            if (is_user_logged_in()) {
                // Get the redirect_to parameter or default to the admin dashboard
                $redirect_to = isset($_GET['redirect_to']) ? esc_url_raw($_GET['redirect_to']) : admin_url();

                // Perform the redirection
                wp_safe_redirect($redirect_to);
                exit;
            }
        }
    }
});

### Key Fixes:
1. **Exclude Logout Requests:**
– The condition `!isset($_GET['action']) || $_GET['action'] !== 'logout'` ensures the logic does not apply when a user is logging out.

2. **Safe Redirection:**
– `wp_safe_redirect` ensures only safe URLs (within the same domain) are used for redirection.

3. **Fallback URL:**
– Redirects to the admin dashboard (`admin_url()`) if `redirect_to` is not provided.

### Why This Works:
– It uses the `init` hook but excludes logout requests explicitly.
– The logout request includes `?action=logout`, so it bypasses the redirection logic when logging out.

### Steps to Test:
1. **Login and Visit URL with `focus_admin`:**
– Example:

https://example.com/focus_admin/?redirect_to=/wp-admin/options-general.php

– Expected: Redirects to `/wp-admin/options-general.php`.

2. **Login and Visit URL without `redirect_to`:**
– Example:

https://example.com/focus_admin/

– Expected: Redirects to `/wp-admin`.

3. **Logout Attempt:**
– Visit `/wp-login.php?action=logout`.
– Expected: Logout proceeds without redirection issues.

### Debugging:
If the logout issue persists, ensure the logout URL is correctly formatted by checking:

error_log('Logout action bypassed. Request URI: ' . $_SERVER['REQUEST_URI']);

– Enable WordPress debugging by adding the following to `wp-config.php`:

define('WP_DEBUG', true);
   define('WP_DEBUG_LOG', true);
   define('WP_DEBUG_DISPLAY', false);

### Alternative Approach:
If you still encounter issues, you could explicitly check for the `logout` URL by comparing it directly with the `REQUEST_URI`:

if (strpos($_SERVER['REQUEST_URI'], 'action=logout') === false) {
    // Redirection logic here
}

This ensures the logout functionality is completely isolated.