Version Description
- Add post password handling
- Don't block admin when DOING_AJAX
- Add WordPress updated message
- Replace deprecated get_userdatabylogin with get_user_by
Download this release
Release Info
| Developer | jfarthing84 |
| Plugin |  Theme My Login |
| Version | 6.2.1 |
| Comparing to | |
| See all releases | |
Code changes from version 6.2 to 6.2.1
- includes/class-theme-my-login.php +19 -1
- modules/themed-profiles/themed-profiles.php +5 -3
- readme.txt +7 -1
- theme-my-login.php +2 -2
includes/class-theme-my-login.php
CHANGED
|
@@ -217,6 +217,22 @@ class Theme_My_Login {
|
|
| 217 |
} else {
|
| 218 |
$http_post = ( 'POST' == $_SERVER['REQUEST_METHOD'] );
|
| 219 |
switch ( $action ) {
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 220 |
case 'logout' :
|
| 221 |
check_admin_referer( 'log-out' );
|
| 222 |
|
|
@@ -303,7 +319,7 @@ class Theme_My_Login {
|
|
| 303 |
// If the user wants ssl but the session is not ssl, force a secure cookie.
|
| 304 |
if ( !empty( $_POST['log'] ) && !force_ssl_admin() ) {
|
| 305 |
$user_name = sanitize_user( $_POST['log'] );
|
| 306 |
-
if ( $user =
|
| 307 |
if ( get_user_option( 'use_ssl', $user->ID ) ) {
|
| 308 |
$secure_cookie = true;
|
| 309 |
force_ssl_admin( true );
|
|
@@ -379,6 +395,8 @@ class Theme_My_Login {
|
|
| 379 |
$errors->add( 'registered', __( 'Registration complete. Please check your e-mail.', 'theme-my-login' ), 'message' );
|
| 380 |
elseif ( $interim_login )
|
| 381 |
$errors->add( 'expired', __( 'Your session has expired. Please log-in again.', 'theme-my-login' ), 'message' );
|
|
|
|
|
|
|
| 382 |
elseif ( $reauth )
|
| 383 |
$errors->add( 'reauth', __( 'Please log in to continue.', 'theme-my-login' ), 'message' );
|
| 384 |
|
| 217 |
} else {
|
| 218 |
$http_post = ( 'POST' == $_SERVER['REQUEST_METHOD'] );
|
| 219 |
switch ( $action ) {
|
| 220 |
+
case 'postpass' :
|
| 221 |
+
global $wp_hasher;
|
| 222 |
+
|
| 223 |
+
if ( empty( $wp_hasher ) ) {
|
| 224 |
+
require_once( ABSPATH . 'wp-includes/class-phpass.php' );
|
| 225 |
+
// By default, use the portable hash from phpass
|
| 226 |
+
$wp_hasher = new PasswordHash( 8, true );
|
| 227 |
+
}
|
| 228 |
+
|
| 229 |
+
// 10 days
|
| 230 |
+
setcookie( 'wp-postpass_' . COOKIEHASH, $wp_hasher->HashPassword( stripslashes( $_POST['post_password'] ) ), time() + 864000, COOKIEPATH );
|
| 231 |
+
|
| 232 |
+
wp_safe_redirect( wp_get_referer() );
|
| 233 |
+
exit;
|
| 234 |
+
|
| 235 |
+
break;
|
| 236 |
case 'logout' :
|
| 237 |
check_admin_referer( 'log-out' );
|
| 238 |
|
| 319 |
// If the user wants ssl but the session is not ssl, force a secure cookie.
|
| 320 |
if ( !empty( $_POST['log'] ) && !force_ssl_admin() ) {
|
| 321 |
$user_name = sanitize_user( $_POST['log'] );
|
| 322 |
+
if ( $user = get_user_by( 'login', $user_name ) ) {
|
| 323 |
if ( get_user_option( 'use_ssl', $user->ID ) ) {
|
| 324 |
$secure_cookie = true;
|
| 325 |
force_ssl_admin( true );
|
| 395 |
$errors->add( 'registered', __( 'Registration complete. Please check your e-mail.', 'theme-my-login' ), 'message' );
|
| 396 |
elseif ( $interim_login )
|
| 397 |
$errors->add( 'expired', __( 'Your session has expired. Please log-in again.', 'theme-my-login' ), 'message' );
|
| 398 |
+
elseif ( strpos( $redirect_to, 'about.php?updated' ) )
|
| 399 |
+
$errors->add('updated', __( '<strong>You have successfully updated WordPress!</strong> Please log back in to experience the awesomeness.' ), 'message' );
|
| 400 |
elseif ( $reauth )
|
| 401 |
$errors->add( 'reauth', __( 'Please log in to continue.', 'theme-my-login' ), 'message' );
|
| 402 |
|
modules/themed-profiles/themed-profiles.php
CHANGED
|
@@ -30,7 +30,7 @@ class Theme_My_Login_Themed_Profiles extends Theme_My_Login_Module {
|
|
| 30 |
if ( is_multisite() && empty( $user_role ) ) {
|
| 31 |
$user_role = 'subscriber';
|
| 32 |
}
|
| 33 |
-
if ( 'profile.php' == $pagenow && !isset( $_REQUEST['page'] ) ) {
|
| 34 |
if ( $theme_my_login->options->get_option( array( 'themed_profiles', $user_role, 'theme_profile' ) ) ) {
|
| 35 |
if ( !empty( $_GET ) )
|
| 36 |
$redirect_to = add_query_arg( (array) $_GET, $redirect_to );
|
|
@@ -39,8 +39,10 @@ class Theme_My_Login_Themed_Profiles extends Theme_My_Login_Module {
|
|
| 39 |
}
|
| 40 |
} else {
|
| 41 |
if ( $theme_my_login->options->get_option( array( 'themed_profiles', $user_role, 'restrict_admin' ) ) ) {
|
| 42 |
-
|
| 43 |
-
|
|
|
|
|
|
|
| 44 |
}
|
| 45 |
}
|
| 46 |
}
|
| 30 |
if ( is_multisite() && empty( $user_role ) ) {
|
| 31 |
$user_role = 'subscriber';
|
| 32 |
}
|
| 33 |
+
if ( 'profile.php' == $pagenow && ! isset( $_REQUEST['page'] ) ) {
|
| 34 |
if ( $theme_my_login->options->get_option( array( 'themed_profiles', $user_role, 'theme_profile' ) ) ) {
|
| 35 |
if ( !empty( $_GET ) )
|
| 36 |
$redirect_to = add_query_arg( (array) $_GET, $redirect_to );
|
| 39 |
}
|
| 40 |
} else {
|
| 41 |
if ( $theme_my_login->options->get_option( array( 'themed_profiles', $user_role, 'restrict_admin' ) ) ) {
|
| 42 |
+
if ( ! defined( 'DOING_AJAX' ) ) {
|
| 43 |
+
wp_redirect( $redirect_to );
|
| 44 |
+
exit;
|
| 45 |
+
}
|
| 46 |
}
|
| 47 |
}
|
| 48 |
}
|
readme.txt
CHANGED
|
@@ -3,7 +3,7 @@ Contributors: jfarthing84
|
|
| 3 |
Tags: widget, login, registration, theme, custom, log in, register, sidebar, gravatar, redirection, e-mail
|
| 4 |
Requires at least: 3.1
|
| 5 |
Tested up to: 3.4
|
| 6 |
-
Stable tag: 6.2
|
| 7 |
|
| 8 |
Themes the WordPress login pages according to your theme.
|
| 9 |
|
|
@@ -41,6 +41,12 @@ Please visit http://www.jfarthing.com/docs/category/theme-my-login first and the
|
|
| 41 |
|
| 42 |
== Changelog ==
|
| 43 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 44 |
= 6.2 =
|
| 45 |
* Fix FORCE_SSL_ADMIN logic
|
| 46 |
* Add tabindex to password fields
|
| 3 |
Tags: widget, login, registration, theme, custom, log in, register, sidebar, gravatar, redirection, e-mail
|
| 4 |
Requires at least: 3.1
|
| 5 |
Tested up to: 3.4
|
| 6 |
+
Stable tag: 6.2.1
|
| 7 |
|
| 8 |
Themes the WordPress login pages according to your theme.
|
| 9 |
|
| 41 |
|
| 42 |
== Changelog ==
|
| 43 |
|
| 44 |
+
= 6.2.1 =
|
| 45 |
+
* Add post password handling
|
| 46 |
+
* Don't block admin when DOING_AJAX
|
| 47 |
+
* Add WordPress updated message
|
| 48 |
+
* Replace deprecated get_userdatabylogin with get_user_by
|
| 49 |
+
|
| 50 |
= 6.2 =
|
| 51 |
* Fix FORCE_SSL_ADMIN logic
|
| 52 |
* Add tabindex to password fields
|
theme-my-login.php
CHANGED
|
@@ -1,9 +1,9 @@
|
|
| 1 |
<?php
|
| 2 |
/*
|
| 3 |
Plugin Name: Theme My Login
|
| 4 |
-
Plugin URI: http://www.jfarthing.com/
|
| 5 |
Description: Themes the WordPress login, registration and forgot password pages according to your theme.
|
| 6 |
-
Version: 6.2
|
| 7 |
Author: Jeff Farthing
|
| 8 |
Author URI: http://www.jfarthing.com
|
| 9 |
Text Domain: theme-my-login
|
| 1 |
<?php
|
| 2 |
/*
|
| 3 |
Plugin Name: Theme My Login
|
| 4 |
+
Plugin URI: http://www.jfarthing.com/development/theme-my-login/
|
| 5 |
Description: Themes the WordPress login, registration and forgot password pages according to your theme.
|
| 6 |
+
Version: 6.2.1
|
| 7 |
Author: Jeff Farthing
|
| 8 |
Author URI: http://www.jfarthing.com
|
| 9 |
Text Domain: theme-my-login
|
