WordPress password reset – why post rp_key?
WordPress password reset – why post rp_key?
password
Locking Down WordPress Application Password Permissions / Capabilities
Locking Down WordPress Application Password Permissions / Capabilities
Password protecting template, secured content not showing if even password is right
I solved issue with suggestion of @TheDeadMedic. Below is the code. As he told added while have post. I added it after header. <?php /** * Template Name: Page * */ global $post; if ( ! post_password_required( $post ) ) { get_header(); while ( have_posts() ) { the_post(); } ?> <div id=”Content”> <div class=”content_wrapper clearfix”> … Read more
Enqueue style for Password Reset page
Your code works fine just the way you have it – I tried it. Maybe you have another plugin that unhooks existing login_enqueue_scripts hooks disabling yours? Otherwise it works provided: The code is in a plugin; style-login.css file is in the same directory as the plugin; Some WP CSS uses !important; such as body{ background … Read more
Frontend Password change
I think you are referring to two different things.. 1) Verifying the request. You should be using WP Nonces to verify the request and protect it against XSS. That should be a practice for all your forms. you could also add additional layer of security by integrating a reCAPTCHA. 2) Data Encryption when you attempt … Read more
add_action for lost_password or modify wp-login.php?action=lostpassword
got a working solution, but wordpress first validate the username or email address then my validation takes place.. I have used allow_password_reset filter instead of lostpassword_post action: add_filter( ‘allow_password_reset’, ‘my_password_reset_helper’ ); function my_password_reset_helper($true) { if (isset($_POST[‘g-recaptcha-response’])) { $array = array(‘response’ => $_POST[‘g-recaptcha-response’], ‘userip’ => $_SERVER[‘REMOTE_ADDR’], ‘secret’ => ‘asddfer345gfdg4veg45y34635345’); $result = gcaptcha($array); if (!$result) { return … Read more
Intercept invalid email during lost_password
Try this: add_action( ‘lost_password’, ‘wpse316932_redirect_wrong_email’ ); function wpse316932_redirect_wrong_email() { global $errors; if ( $error = $errors->get_error_code() ) { wp_safe_redirect( ‘lost-password/?error=” . $error ); } else { wp_safe_redirect( “lost-password/’ ); } } This is utilizing the lost_password action hook that fires right before the lost password form. You were experiencing this because WP will only redirect … Read more
Password Protected Page Not Displaying Content After Entering Password
I’ve also struggled with this. Although I still don’t really understand what causes the problem, I’ve managed to bypass it, by installing a login redirect plugin and changing the standard login URL from www.yourwebsite.com/wp-login.php to www.yourwebsite.com/login. The plugin I used can be downloaded from https://nl.wordpress.org/plugins/rename-wp-login/, but I’m pretty confident that any login redirection plugin would … Read more
Go to / Scroll to Password Field on WordPress Posts After Submit With Message(s)
Not exactly sure what you are trying to do and this doesn’t look like a WordPress issue, but submitting a html form will certainly lead to a new page load. So what you want is redirect not to the same page (which happens when you specify no action, leading the page to scroll to the … Read more
password protect individual pages
You can password protect individual pages and posts. Under the Publish section of the dashboard, look under the link for VISIBILITY. The default setting is PUBLIC, but you can change it to PRIVATE, which only you can see when you’re logged in, or PASSWORD PROTECTED, which requires you to enter a password when you are … Read more