WordPress.org

1. Nyhm
   Member
   Posted 1 year ago #
   

   I like your Secure Invites plugin, but the "registration security" behavior could be improved. When registration is denied, you call wp_die() to stop the processing. This (by default) issues an HTTP 500 Internal Server Error. Anyone monitoring logs will get false-positives that something is broken.

   This is not an error condition, but a policy decision. At least, use the optional wp_die() response argument to signal a non-error code (maybe 403 Forbidden).

   In addition, consider including the backlink argument to allow users to browse back to the site homepage.

   Also, I'd really like to be able to style the failure page, but this is difficult with the current approach.

   Thanks for this nice plugin.

   http://wordpress.org/extend/plugins/wordpress-mu-secure-invites/

2. Chris Taylor
   Member
   Plugin Author
   Posted 1 year ago #
   

   Thanks for these suggestions. I've just released a version which responds with a 403 code if the user cannot sign up, and the back link is now there.

   A future version of the plugin may allow you to style the failure page, but I can't say if or when that will happen.

3. Nyhm
   Member
   Posted 1 year ago #
   

   Thanks for your responsiveness to this. I think 403 will be much "friendlier."

Topic Closed

This topic has been closed to new replies.