Replies
- Tosin on June 28, 2019 at 3:20 pm in reply to: Conditional Profile Fields for BuddyPress support for Xprofile Member Type Field #23718
Hello,
I have the following member types created using the member types plugin from buddyboss while using your BuddyPress Xprofile Member Type Field plugin to display the member type field on registration form.
1 Male
2 Female
3 Business
4 Brand
5 OragnizationI want this conditions to work on registration page as follows:
Field of Interest(required)(Member types: Females, Males) [ hide if {Member Type} = Business, Brand, Organization ]
but now the (Field of Interest) profile field is not hiding for the member types Business, Brand, Organization or do I need to purchase the (BuddyPress Member Types Pro) plugin for this to work
Thanks
- Tosin on June 26, 2019 at 1:39 pm in reply to: get notification if someone I follow posts a wordpress blog post. #23689
Hello brajesh I am also interested in this also with email notification
- Tosin on June 17, 2019 at 12:20 pm in reply to: [Resolved] How to disable public and private messages for specific users #23559
OMG your code worked perfectly i’m very grateful. Thank you very very much
Thanks I have changed the errors
Is it possible to make the workflow for lost password to be the user changing his password after clicking the password reset link in the mail instead of auto generated passwords.
I don’t want auto generated passwords sent to the user, but the user actually setting his own password on the login page just like how the default wp-login.php password reset workflow works.
The problem is when a user resets his password and receives a new generated password in his mail, the user will still need to login again to buddypress and change the password again in his settings to something he can remember unlike the complex generated password.
Now changing of password has now become a two stage process instead of a single stage which should occur immediately after clicking the password reset link in the mail.
Thanks
- Tosin on June 14, 2019 at 11:55 am in reply to: [Resolved] How to disable public and private messages for specific users #23508This reply has been marked as private.
AWESOME!!!!
Just one more thing how to change the login error to (Invalid Email or Password!) for both wrong username or email and password input.
Thanks
I would prefer to use email address to login into a buddypress site as communication using @mention reveals other members usernames which can be used for brute force login attempts, but email addresses are unique and more secure except if the user decides to reveal it publicly.
Thanks for the recent update it works. Now for better security I do not use username to login but only email address with custom login error message. When I applied the code below in my functions.php. The login error that shows is (invalid request) instead of (Invalid email or password) as indicated in the code below, also the limit login attempts does not work with the code below. Is there another way to achieve login with email address only without any form of compromise with the bp branded login plugin.
remove_filter('authenticate', 'wp_authenticate_username_password', 20); add_filter('authenticate', function($user, $email, $password){ //Check for empty fields if(empty($email) || empty ($password)){ //create new error object and add errors to it. $error = new WP_Error(); if(empty($email)){ //No email $error->add('empty_username', __('Email field is empty.')); } else if(!filter_var($email, FILTER_VALIDATE_EMAIL)){ //Invalid Email $error->add('invalid_username', __('Invalid email or password.')); } if(empty($password)){ //No password $error->add('empty_password', __('Password field is empty.')); } return $error; } //Check if user exists in WordPress database $user = get_user_by('email', $email); //bad email if(!$user){ $error = new WP_Error(); $error->add('invalid', __('Invalid email or password.')); return $error; } else{ //check password if(!wp_check_password($password, $user->user_pass, $user->ID)){ //bad password $error = new WP_Error(); $error->add('invalid', __('Invalid email or password.')); return $error; }else{ return $user; //passed } } }, 20, 3);
Thanks for your support
Hello sir,
I will be expecting your feedback on the login attempts counter on the bp branded login using
https://wordpress.org/plugins/limit-login-attempts-reloaded/
or
https://wordpress.org/plugins/limit-attempts/I was also wondering if you can enable support for either of this 2 plugins to display limit login attempts counter on the bp branded login page for security reasons.
https://wordpress.org/plugins/limit-login-attempts-reloaded/
or
https://wordpress.org/plugins/limit-attempts/