Multi site privacy plugin sets the following url
if you go to https://domain.us you are sent to above url. When you supply credentials it tries to redirect to https://domain.us.
Using Cloudflare CDN this results in redirect loop until defender bans the IP after a few tries.
If any other url say https://domian.us/about is used you are correctly ask for credentials and redirected to the correct page with NO redirect failure.
This happens only at the base url. If I set CF in developer mode it all works correctly. I could understand if ALL redirects failed but they don't only the https://domain.us will fail.
Any ideas why?