The social media login features provided in the shop section by LoginRadius will result in a user attempting to login via the .onion being redirected back to https://www.bentasker.co.uk
The cookie set on landing will be issued by the www-front so won't be valid if the user then switches back to the onion.
So there are essentially two issues here
- User can get redirected to the clearnet without warning
- Social media login doesn't work on the .onion
As a precaution against the former (my bigger concern) I'm going to temporarily block the shop section (with an appropriate message) for the .onion.