diff --git a/core/um-actions-password.php b/core/um-actions-password.php index c0434708..f2cf8723 100644 --- a/core/um-actions-password.php +++ b/core/um-actions-password.php @@ -1,5 +1,5 @@ user_email; @@ -19,15 +19,15 @@ $ultimatemember->password->reset_request['user_id'] = $data->ID; $ultimatemember->password->reset_request['user_email'] = $user_email; - + um_fetch_user( $data->ID ); - + $ultimatemember->user->password_reset(); um_reset_user(); - + } - + /*** *** @process a change request ***/ @@ -37,32 +37,32 @@ extract( $args ); wp_set_password( $args['user_password'], $args['user_id'] ); - + delete_user_meta( $args['user_id'], 'reset_pass_hash'); delete_user_meta( $args['user_id'], 'reset_pass_hash_token'); delete_user_meta( $args['user_id'], 'password_rst_attempts'); do_action('um_after_changing_user_password', $args['user_id'] ); - - + + if ( is_user_logged_in() ) { wp_logout(); } - + exit( wp_redirect( um_get_core_page('login', 'password_changed') ) ); - + } - + /** * Overrides password changed notification - * + * */ function um_send_password_change_email( $args ){ global $ultimatemember; um_fetch_user( $user_id ); - + $ultimatemember->user->password_changed(); um_reset_user(); @@ -70,7 +70,7 @@ return false; } - + /*** *** @This is executed after changing password ***/ @@ -79,20 +79,20 @@ global $ultimatemember; } - + /*** *** @Error handler: reset password ***/ add_action('um_reset_password_errors_hook','um_reset_password_errors_hook'); function um_reset_password_errors_hook( $args ) { global $ultimatemember; - + if ( $_POST[ $ultimatemember->honeypot ] != '' ) wp_die('Hello, spam bot!'); $form_timestamp = trim($_POST['timestamp']); $live_timestamp = current_time( 'timestamp' ); - + if ( $form_timestamp == '' && um_get_option('enable_timebot') == 1 ) wp_die( __('Hello, spam bot!') ); @@ -102,9 +102,9 @@ if ( strlen(trim( $_POST['username_b'] ) ) == 0 ) { $ultimatemember->form->add_error('username_b', __('Please provide your username or email','ultimatemember') ); } - + $user = $_POST['username_b']; - + if ( ( !is_email( $user ) && !username_exists( $user ) ) || ( is_email( $user ) && !email_exists( $user ) ) ) { $ultimatemember->form->add_error('username_b', __('We can\'t find an account registered with that address or username','ultimatemember') ); } else { @@ -120,38 +120,38 @@ update_user_meta( $user_id, 'password_rst_attempts', $attempts + 1 ); } } - + } - + /*** *** @Error handler: changing password ***/ add_action('um_change_password_errors_hook','um_change_password_errors_hook'); function um_change_password_errors_hook( $args ) { global $ultimatemember; - + if ( $_POST[ $ultimatemember->honeypot ] != '' ) wp_die('Hello, spam bot!'); $form_timestamp = trim($_POST['timestamp']); $live_timestamp = current_time( 'timestamp' ); - + if ( $form_timestamp == '' && um_get_option('enable_timebot') == 1 ) wp_die( __('Hello, spam bot!') ); if ( $live_timestamp - $form_timestamp < 3 && um_get_option('enable_timebot') == 1 ) wp_die( __('Whoa, slow down! You\'re seeing this message because you tried to submit a form too fast and we think you might be a spam bot. If you are a real human being please wait a few seconds before submitting the form. Thanks!') ); - + if ( !$args['user_password'] ) { $ultimatemember->form->add_error('user_password', __('You must enter a new password','ultimatemember') ); } if ( um_get_option('reset_require_strongpass') ) { - + if ( strlen( utf8_decode( $args['user_password'] ) ) < 8 ) { $ultimatemember->form->add_error('user_password', __('Your password must contain at least 8 characters','ultimatemember') ); } - + if ( strlen( utf8_decode( $args['user_password'] ) ) > 30 ) { $ultimatemember->form->add_error('user_password', __('Your password must contain less than 30 characters','ultimatemember') ); } @@ -159,99 +159,101 @@ if ( !$ultimatemember->validation->strong_pass( $args['user_password'] ) ) { $ultimatemember->form->add_error('user_password', __('Your password must contain at least one lowercase letter, one capital letter and one number','ultimatemember') ); } - + } if ( !$args['confirm_user_password'] ) { $ultimatemember->form->add_error('confirm_user_password', __('You must confirm your new password','ultimatemember') ); } - + if ( $args['user_password'] != $args['confirm_user_password'] ) { $ultimatemember->form->add_error('confirm_user_password', __('Your passwords do not match','ultimatemember') ); } } - + /*** *** @hidden fields ***/ add_action('um_change_password_page_hidden_fields','um_change_password_page_hidden_fields'); function um_change_password_page_hidden_fields( $args ) { - + ?> - + - + - + - + - + builtin->get_specific_fields('password_reset_text,username_b'); ?> - + $data ) { $output .= $ultimatemember->fields->edit_field( $key, $data ); }echo $output; ?> - + + +