Big Question. So, first, to keep the galleries separate, it would be good to give them their own custom post type. We’ll be checking for this later… <?php add_action( ‘init’, ‘wpse32840_register_post_type’ ); function wpse32840_register_post_type() { register_post_type( ‘client_gallery’, array( ‘label’ => __( ‘Client Galleries’ ), // probably needs better lables ‘public’ => true, // allow people … Read more
When a user logs into a protected page, WordPress sets a cookie. We can check for the existence of that cookie with this conditional: if ( isset( $_COOKIE[‘wp-postpass_’ . COOKIEHASH] ) ) { // Do stuff. } Also, you should be aware that only one password is stored in cookies at a time, to the … Read more
To answer your other question, about the two types of passwords stored in the database: Up until version 2.5, WordPress stored passwords encrypted with the MD5 hashing algorhythm. MD5 is nowadays considered to be poor security – with moderately-priced off-the-shelf GPUs, it takes less than a hour for a program to brute-force all possible combinations … Read more
If you have a custom login page already, you may not want to introduce a whole new plugin. You can change ‘from’ name and email with these simple functions in your theme or plugin. To change the name add_filter( ‘wp_mail_from_name’, ‘custom_wpse_mail_from_name’ ); function custom_wpse_mail_from_name( $original_email_from ) { return ‘Yours Truly’; } To change the email … Read more
Stop what you’re doing – it’s so much simpler! function wpse_191369_post_password_expires() { return time() + 10; // Expire in 10 seconds } add_filter( ‘post_password_expires’, ‘wpse_191369_post_password_expires’ ); That’s all you need.
I’ve found the generated text in the wp-includes\user.php file so removed it there and done what I was looking for.
If a post password is applied and the user is not logged in, the post will not show up in search results. This is the expected behavior of WP_Query: // If a search pattern is specified, load the posts that match if ( !empty($q[‘s’]) ) { // added slashes screw with quote grouping when done … Read more
There is a filter called login_redirect which you can use. The third parameter passed to this filter is the user object, so you have all kinds of possibilities to redirect. Like this: add_filter (‘login_redirect’, ‘wpse63660_redirect’, 10, 3); function wpse63660_redirect ($redirect_to, $request, $user) { //is there a user to check? if ( isset( $user->roles ) && … Read more
Like to store multiple passwords in db table wp_posts field post_password?
password recovery key is invalid on custom reset