In short you want to mach your password with real hash code right. $user = get_user_by( ‘login’, $username ); if ( $user && wp_check_password( ‘123456’, $user->data->user_pass, $user->ID) ) echo “password Matched”; else echo “Not matched”;
That is expected behaviour. From the codex on Multisite Network Administration: By design, all users who are added to your network will have subscriber access to all sites on your network. To allocate a different default role for users on individual sites, you must use a plugin, such as Multisite User Management.
Your form action point to the url in which the login form is displayed, and this is many times not the desired behavior when you write your own login form. You should let the login end point handle the login. The result should be something like <form …. action=”<?php echo esc_url( site_url( ‘wp-login.php’, ‘login_post’ ) … Read more
After a lot of searching around, it occurred to me that what I was trying to do was essentially to create a social network. Having search for WordPress Social Network plugins I discovered and am using Buddypress.
Download User Role Editor and uncheck the edit others post
For the dashboard case. if ( !current_user_can(‘manage_options’) ) { function remove_dashboard_widgets() { // remove WooCommerce Dashboard Status remove_meta_box( ‘woocommerce_dashboard_status’, ‘dashboard’, ‘normal’); } add_action(‘wp_user_dashboard_setup’, ‘remove_dashboard_widgets’, 20); add_action(‘wp_dashboard_setup’, ‘remove_dashboard_widgets’, 20); }
What you’re looking for is the theme customizer. This allows you to attach settings to any element of your site you want. Just take a look at one of the WordPress standard themes to see what this looks like. You’ll see that you can change colors, but also upload a new background image. Just follow … Read more
Your core mistake is to let users get to the admin. A proper solution is to create “admin” type of screens for your users in which there will be a more focused UX for what they can and likely to do. As part of creating it you can also optimize the experience to low power … Read more
If this is a medical record, you probably so use a transient download URL for the session when the profile is logged on, and destroy that URL when the users logs off, this ensures that the file is not accessible to others. I used WP Customer Area plugin on a CRM project and found it … Read more
There are a number of issues with the user of update_user_meta() in your function. First, you should never write the value directly from $_POST without sanitizing it first. That’s a good way to open yourself up to exploits. (Note: you didn’t indicate the field types, so I’m going to assume they are text input – … Read more