As per the Plugin FAQ use, wp_loginout($_SERVER[‘REQUEST_URI’]); Sorry that’s entirely incorrect, that function prints out the login/out url which you do not need/want for the purpose of using within a filter, instead use, wp_redirect( $_SERVER[‘REQUEST_URI’] ); …to return the user to the page they were on. If that does not allow you to preserve the … Read more
WordPress uses cookie based authentication. When you log into wordpress using curl, wordpress is authenticating the server(which ran the curl script) & not your client. so when you visit wordpress using your browser(client), it’s not authenticated. For the solution, you could use wordpress hooks to automatically authenticate the user to your site just after they … Read more
Here is the solution I’ve made that it’s now working properly: function getCurrentUserRole() { if (isset($this->data) && isset($this->data->{$this->cap_key}) && is_object($this->data) && is_array($this->data->{$this->cap_key}) ) { $result = array_keys($this->data->{$this->cap_key}); } else { $result = array(); } return $result; }
There are pro’s and con’s for either pw or key-based authentication. In some cases, for example, key-based authentication is less secure than password authentication. In other cases, its pw-based that’s less secure. In some cases, one is more convenient, in others, less. It all boils down to this: When you do key-based authentication, you must … Read more
function redirect_user() { if ( is_user_logged_in() ) { wp_redirect( ‘http://yoursite.com/page/’ ); exit; } } add_action( ‘init’, ‘redirect_user’ ); This will redirect the user to the page of your choice if they are logged in. It might be necessary to add a conditional that checks to make sure the user isn’t already on that page, to … Read more
Best thing is to learn as much as you can from the available plugins even if they are not a perfect match to your requirements. This will help you identify areas of functionality which you will need to handle. As for coding itself, for the authentication part you will most likely need to override the … Read more
Try using the filter hook: function user1462_login_redirect( $redirect_to, $request, $user ) { global $user; if ( isset( $user->roles ) && is_array( $user->roles ) ) { if ( in_array( ‘administrator’, $user->roles ) ) { return $redirect_to . ‘?message=hiadmin’; } else { return home_url(); } } else { return $redirect_to; } } add_filter( ‘login_redirect’, ‘user1462_login_redirect’, 10, 3 … Read more
Your code has some problems: You are using deprecated function get_user_by_email You are using wrong hook wp_authenticate You can this plugin https://wordpress.org/plugins/wp-email-login/ or Your can use this code function wpsc_authenticate_user_by_email( $user, $username, $password ) { // Bailout if( ! is_frontend_login_form() ){ return $user; } $login_page = strtok( $_SERVER[“HTTP_REFERER”], ‘?’ ); //check for valid inputs if( … Read more
I can think of a few possibilities, though there certainly could be more. On successful login there is a redirect to the dashboard meaning that if you expect to see something output by that function, you won’t. Try this: add_filter(‘authenticate’, ‘my_authenticate’, 1000, 2); function my_authenticate($user, $username){ var_dump($user, $username); die; // We never arrive in this … Read more
In WP REST API v2 use the permission_callback found in the Adding Custom Endpoints Docs. <?php add_action( ‘rest_api_init’, function () { register_rest_route( ‘myplugin/v2’, ‘/author/(?P<id>\d+)’, array( ‘methods’ => ‘GET’, ‘callback’ => ‘my_awesome_func’, ‘args’ => array( ‘id’ => array( ‘validate_callback’ => ‘is_numeric’ ), ), ‘permission_callback’ => function (WP_REST_Request $request) { if ( current_user_can( ‘edit_others_posts’ ) ) { … Read more