You may want to use the validate_password_reset hook instead. Try add_action( ‘validate_password_reset’ , ‘se_password_min_length_check’ 10, 2 ); function se_password_min_length_check( $errors, $user){ if(strlen($_POST[‘pass1’]) < 8) $errors->add( ‘password_too_short’, ‘ERROR: password is too short.’ ); }
I fixed it. We need decode url with esc_url_raw. Here is solution. <?php $user_data = get_user_by( ’email’, ‘[email protected]’ ) ); $key = get_password_reset_key( $user_data ); $user_login = $user_data->user_login; $url = esc_url_raw( get_permalink( ‘1’ ) . “?action=rp&key=$key&login=” . rawurlencode($user_login) ) . “\r\n”; $message = $url; wp_mail( $user_email, “Title”, $message ); ?>
Using GET variables for usernames and passwords is never a good idea. But anyway, something like the following should work if(isset($_GET[‘log’]) && isset($_GET[‘pwd’])){ $creds = array(); $creds[‘user_login’] = $_GET[‘log’]; $creds[‘user_login’] = $_GET[‘pwd’]; $creds[‘remember’] = true; //Do you want the log-in details to be remembered? $user = wp_signon( $creds, false ); if ( is_wp_error($user) ) echo … Read more
In your plugin you would first set the redirect URL either to nothing: $redirect=””; or the fully qualified URL of the page you want your user to land on after successfully changing their password. For http://example.com/mypage/ you would use: $redirect=site_url( ‘/mypage/ ‘ ); Then your form would be: <form name=”lostpasswordform” id=”lostpasswordform” action=”<?php echo wp_lostpassword_url(); ?>” … Read more
Finally, I found the solution: form.php <form action=”<?php echo bloginfo(‘template_directory’); ?>/pp-redirect.php” method=”post”> Event: <input name=”event” type=”text” size=”25″ /><br /> Passwort: <input name=”post_password” type=”password” size=”25″ /><br /> <input name=”submit” type=”submit” value=”Los” /> </form> pp-redirect.php <?php /** Make sure that the WordPress bootstrap has run before continuing. */ require( dirname(__FILE__) . ‘./../../../wp-load.php’); global $wp_hasher; if ( empty( … Read more
Theoretically, this could be achieved by saving a user’s password elsewhere, when he or she updates it. Note that this sort of thing is hardly ever recommendable. In almost all cases, there is a better architectural approach that renders having to be able to show plain-text passwords unnecessary. That being said, if you absolutely must … Read more
If you can get to phpMyAdmin (or something equivalent), open the DB and find the wp_users table. Select the appropriate user to edit and change the user_pass field to whatever. Set the function to MD5 and save. You should now be able to log in.
Have a look at Pluggable Functions in /wp-includes/pluggable.php. You can safely replace the password generating/checking functions with your own.
The post/page passwords are stored in the wp_posts table in the post_password field. You can try the following demo plugin to update the post password automatically with help of wp-cron. You might alternatively consider transients or custom post meta. <?php /** * Plugin Name: Auto Post-Password Changer * Description: Schedule a wp-cron password update event … Read more
Here is a picture explaning how to do it be carful and backup the database befoure any changes are done first here is a link to md5 encoder (youll need it): MD5 Encoder . Hope this helps 😉 Cheers, Sagive.