While the answer to your question could be long and complex, but since you are developing another website using ASP, I assume you know how to integrate with database too. I’m going to add some useful information for your case. WordPress Salts WordPress uses different salts for different purposes, as asked here. These salts are … Read more
A.) By default WordPress allows short passwords but “Confirm use of weak password” must be checked. B.) Disable security plugins or change their settings if possible as they can and do override whatever WordPress implements by default. C.) The latest consensus about passwords suggests the strongest passwords are extra long easy to remember phrases like: … Read more
I had the same issue with this, I assume you’re working from this guide – https://code.tutsplus.com/tutorials/build-a-custom-wordpress-user-flow-part-3-password-reset–cms-23811 Have a look at the actual reset password form where it shows pass1 and pass2. The hidden fields values are automatically set to $attribute[‘key’] and $attribute[‘login’]. Changing this to $_REQUEST[‘key’] and $_REQUEST[‘login’] should solve the issue. Hope this helps.
This is one way add_action(‘login_head’, ‘my_remove_eye’); function my_remove_eye() { echo ‘<style> span.dashicons-visibility:before { content: “”; } </style>’; }
You would be better suited by allowing members to sign up on your site, then giving each uses level permissions to read different posts. A plugin like Members might work for this. But, if you really want to do what you asked, you’re going to have to do some javascript hacking or completely remove the … Read more
Having done some research into WordPress logins in the past, this is one of the few (possibly only?) tuts I could find where the author actually created a new login/register form. http://digwp.com/2010/12/login-register-password-code/ Even so, he still uses the generic WordPress wp-login.php code. Re-coding the entire process is a big task. If you dig into theme-my-login … Read more
There’s an action hook in /wp-admin/includes/user.php to check if both password fields match: add_action( ‘check_passwords’, function( $user, $pass1, $pass2 ) { var_dump($pass1); die(); }, 10, 3 );
Before WordPress 2.5 passwords were simply hashed with md5. WP 2.5 introduced phpass, where a password gets hashed and salted several times, in order to be safe against rainbow tables. A littel Googling on phpass and dotnet revealed this post http://davebeer.com/posts/migrating-wordpress-users-to-dotnet/ briefly describing a how to migrating WP users to dotnet.
Use a hook that fires later and add the $bp global to the function. Try this: function bp_password_beefing() { global $bp; if ( !empty( $_POST[‘signup_password’] ) ) if ( strlen( $_POST[‘signup_password’] ) < 6 ) $bp->signup->errors[‘signup_password’] = __( ‘Your password needs to be at least 6 characters’, ‘buddypress’ ); } add_action( ‘bp_signup_validate’, ‘bp_password_beefing’);
Password field (and confirmation) showing up twice on registration