* added security condition to check that one logged-in user cannot activate another one user via email activation link;

* fixed double handler of email activation link (wp_die doesn't stop the script for some reason);
* added redirects to login page with error notices instead of wp_die text;
This commit is contained in:
Mykyta Synelnikov
2024-10-11 18:47:40 +03:00
parent 62cc39e2ef
commit 1cbbb70a03
4 changed files with 20 additions and 12 deletions
+1 -1
View File
@@ -1362,7 +1362,7 @@ if ( ! class_exists( 'um\core\User' ) ) {
<?php UM()->user()->auto_login( 10, true ); ?>
*
*/
function auto_login( $user_id, $rememberme = 0 ) {
public function auto_login( $user_id, $rememberme = 0 ) {
wp_set_current_user( $user_id );