Route Matomo Standalone UI through WP Admin as it triggers Microsoft Defender SmartScreen - Also incompatibility with GoDaddy

[tsteur]

When using MS Edge 85 or newer.

This seems to not only be happening for the opt out see https://github.com/matomo-org/wp-matomo/pull/338 but also when clicking on any of our links to the Matomo UI such as the "Reporting UI" or "Admin UI". Basically whenever we load Matomo UI without the WordPress context around.

The only way around this be to route everything through the WP admin URL. I've tried getting this work when implementing Matomo for WordPress but it never worked because too many things get messed up. Making this work can be anything from 1-4 weeks of work.

fyi @mattab

Anyone having this issue it is safe to simply select "Show unsafe content" by clicking on the next next to the URL:

We also recommend everyone to first click on the "Report as safe" button hoping MicroSoft will adjust it's Smart Defender.

• [ ] When this issue is fixed we need to remove https://matomo.org/faq/wordpress/how-do-i-fix-the-godaddy-403-error-when-using-matomo-for-wordpress/

[tsteur]

I have added a check to the system report when MS Edge 85+ is used. It's not super visible though and ideally we would have other ways to detect it more easily. This is not easily doable though since we usually don't have Matomo bootstrapped in many places and the message is obsolete once the warning has been ignored so we also don't want to falsely show this information. We would need to use JS or so in order to maybe detect if the page is blocked.

[mattmary]

A user told us than removing the query string "?module=CoreHome&action=index&idSite=1&period=range&date=last30" in the link from the wordpress menu still lead to a warning but it is not blocking anymore.