You can use the has_password parameter of WP_Query. Here’s an example how you can hide it, for non administrators, on the edit.php screen for the post post type: /** * Hide password protected posts, for non-admins, in the case of ‘edit-post’ screen id * * @link http://wordpress.stackexchange.com/a/200426/26350 */ add_action( ‘pre_get_posts’, function( \WP_Query $q ) { … Read more
It’s tempting to unhide the pass2 input but that’s not enough. In the file /wp-admin/js/user-profile.js the bindPass1() binds it to pass1 that makes writing to it not possible. The pass2 input is then hidden in bindPasswordForm() with $(‘.user-pass2-wrap’).hide(); We can instead add our own input field to validate the password. First we add it via … Read more
I found the solution in WP forum. Here it is: To remove the WooCommerce redirect for the “Lost Password” link, you’ll want to remove the “Lost Password” endpoint setting as found under **WooCommerce > Settings > Advanced > Account endpoints**. By simply leaving that blank, the user will be forced to use the default WordPress … Read more
I believe the Theme My Login plugin does this. You may want to dig into the source and figure out how they do it.
Here is the library: http://www.zer7.com/software/cryptsharp And this is “howtouse”: public override bool ValidateUser(string name, string password) { if (string.IsNullOrWhiteSpace(name)) return false; if (string.IsNullOrWhiteSpace(password)) return false; // this is just fetching the hash from the WP-database using BLToolkit. You can use any other way to get the hash from db 😉 UserData ud = null; using … Read more
Maybe this helps you? https://stackoverflow.com/questions/4267285/redirect-user-after-first-login-in-wordpress He seems to had a similar problem and solved it a year ago. What he does different to your approach is redirecting 48hrs after registration. Maybe this is enough? If not – I’m looking to do it your way. — EDIT Okay I just made a plugin what does exactly … Read more
If wp_generate_password() was called with the third parameter $extra_special_chars = true a space might be part of the password: function wp_generate_password( $length = 12, $special_chars = true, $extra_special_chars = false ) { $chars=”abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789″; if ( $special_chars ) $chars .= ‘!@#$%^&*()’; if ( $extra_special_chars ) $chars .= ‘-_ []{}<>~`+=,.;:/?|’; $password = ”; for ( $i = … Read more
What about considering a specific template that tests to see if the user is logged in using something like: if ( is_user_logged_in() ) { // your code for logged in user } else { // your code for logged out user (e.g. a “you must be logged in” message) } You could go so far … Read more
WordPress sends an email to the admin’s email when a user resets their password. To get a notification when a user changes their password you could hook into the profile_update action which is fired when a user’s profile is updated. When the action is fired WordPress has already validated and updated the user’s details we … Read more
As of WordPress 4.4, the action lostpassword_post passes the $errors object: function wpse_185243_lastpassword_post( $errors ) { if ( ! $captcha_valid /* The result of your captcha */ ) { $errors->add( ‘invalid_captcha’, ‘<strong>ERROR:</strong> Try again sonny.’ ); } } add_action( ‘lostpassword_post’, ‘wpse_185243_lastpassword_post’ ); Pre 4.4 legacy answer Here’s the relevant code you’re referring to (retrieve_password() in … Read more