WordPress.org

Ready to get started?Download WordPress

Forums

Force Strong Passwords
Strong passwords for ALL users (Subscribers)?? (1 post)

  1. DivaVocals
    Member
    Posted 2 years ago #

    I ask because I have a site which allows visitors who register to enter events on the calendar (events are subject to admin approval to be published to the calendar). We have lots of other measures in place to ensure that we get MINIMAL spam user signups and therefore (hopefully) no spam calendar postings. But I'd really like to step this up a notch by making any registered user subject to the same strong password requirements the admins adhere to..

    if I were to comment out the following in slt-force-strong-passwords.php, would this do the trick for me??

    if ( $user_id ) {
    		// User ID specified - test on basic capabilities that can compromise a site
    		// Doesn't check on higher capabilities - it's assumed the someone who can't publish_posts won't be able to update_core!
    		if (
    			! user_can( $user_id, 'publish_posts' ) &&
    			! user_can( $user_id, 'upload_files' ) &&
    			! user_can( $user_id, 'edit_published_posts' )
    		)
    			$enforce = false;
    	} else {
    		// No ID yet, adding new user - omit check for "weaker" roles
    		if ( in_array( $_POST["role"], array( "subscriber", "contributor" ) ) )
    			$enforce = false;
    	}

    http://wordpress.org/extend/plugins/force-strong-passwords/

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic