Can’t set password for new users

same here @scalarent
firefox was the culprit
used Brave browser and bingo!

Having the same issue. I cannot add new users because of this error nor can I update a password because of this error:

“Error: passwords don’t match. Please enter the same password in both password fields.”

Firefox

• Not working
• Hide button does nothing
• Generate password fixes nothing
• Just 1 password field
• Password field comes filled ( probably catching some login saved )
• Error both password should match

My guess,
the second field is hidden and should not be.
Tried

Same problem for me. Using Safari on macOS Big Sur.

I own several sites in different environments (WP versions, plugins, themes). Everywhere the same problem since this afternoon. I also tried on a Windows 10 with Edge. Even in a site I have not updated for months it’s not possible to add a user.

Adding a new user does not show the second password field. Also when you sent an email to reset the password the change-password window does not show you the second password box.

Search the internet for solutions. But not found so far.

So please help…..

Eef

Hi WRIP,

Thanks for your information. Most of my sites are WP 5.8.
I opened in Safari the ‘Show console’.
When I add a new user I see:
JQMIGRATE: Migrate is installed, version 3.3.2

jQuery.Deferred exception: undefined is not an object (evaluating 'r.data') (2)
f — user-profile.min.js:2:195
v — user-profile.min.js:2:1187
(anonieme functie) — user-profile.min.js:2:5071
e — load-scripts.php:2:30044
(anonieme functie) — load-scripts.php:2:30342

I did the same with one of my sites with WP 5.7. It does not show the error there.
So my conclusion is it has something to do with the WP 5.8 version.

For clearness maybe: I tested this on several machines: macOS Big Sur and High Sierra, Windows 10

I have solved this matter deactivating Wordfence.

Hello:

I’m having a similar issue, but more widespread, and I’m wondering if anyone could help.

I had some problems logging in a while ago, and I think I tried the wrong password too many times. After that, none of my WordPress accounts would allow me to log in. I couldn’t log in, change my password, nothing. It didn’t matter which browser I used, or if I changed my password from the web host admnin backdoor access.

Insanely enough, the tech support guys from my web host can log in with my credentials without problems!

Now, today, a colleague sent me a registration site for an account on his wordpress blog in a different host and site. It wouldn’t let me create a new password, or log in with the password set by my colleague.

Has WordPress or their spam blocker somehow blacklisted my IP address? And if so how do I fix it?

I have a great solution for you folks. Thanks to all for the previous comments in this thread which gave me plenty of ideas.

I also have the same problem here under WordPress 5.8.1 on 2021-10-08 with no second password field showing when making a new User as Admin role. I have no Wordfence or LastPass or anything like that installed.

In short, the problem manifests in two ways:

(1) the second password field does not show up unless I hack the CSS and JS (see below for steps)

(2) after making the second password field show, it doesn’t work right anyway (anything you type in the Pass2 field gets copied letter-by-letter into the Pass1 field and password validation doesn’t work)

Number two (2) above is the result of a “fix” in a JavaScript file (user-profile.js) for LastPass. The comment for the fix code is as follows: “Fix a LastPass mismatch issue, LastPass only changes pass2. This fixes the issue by copying any changes from the hidden pass2 field to the pass1 field, then running check_pass_strength”. So much for that.

All of the following occurs in the wp-admin folder. If you don’t know what that is or where it is, you probably shouldn’t try to hack things in the way I explain below. Disclaimer: YMMV and don’t blame me if you screw up your install because you made a mistake. Also if you do use LastPass, I am not sure what my hack is going to do to your new user page. OK with that said, here’s what to do:

– go find user-profile.js and user-profile.min.js. I recommend making a copy of both files first and renaming them user-profile-ORIG.js and user-profile-ORIG.min.js so you can always roll back if you need to.
– in user-profile.js, comment out the 8 lines of code for the “LastPass fix” which I mentioned above, starting around line 190. Comment them out and save your work.
– still in user-profile.js, find the function named bindPasswordForm(). There is a comment which says “Hide the confirm password field when JavaScript support is enabled” and the code is $('.user-pass2-wrap').hide(); You need to change “hide” to “show” and then save your work. This will stop the infuriating addition of “style=display:none” to the end of the table row containing the Pass2 form field (also see “Line 577 fix” below).
– finally *VERY IMPORTANT* REPLACE user-profile.min.js with a copy of your hacked user-profile.js file. Just duplicate your hacked user-profile.js file and rename it user-profile.min.js (even though it’s not minified, it doesn’t matter; you just want WordPress to use your hacked version of the file and not the original min.js file which is also broken).

Now, to fix issue #1 (pass2 field not showing up), you need to do the following:

– make a copy of user-new.php and save it as user-new-ORIG.php like we did with the js file so you can roll back if needs be.
– edit line 577 in user-new.php – remove the class *hide-if-js* in <tr class="form-field form-required user-pass2-wrap hide-if-js"> This must be a mistake; I don’t understand why it should be hidden if you have JS running. Anyway, save your changes.

You’re done. So now go to add a new user in your WordPress admin area and refresh your browser, clearing the cache before doing anything else. (In Safari for example, with Web Inspector open, hit Command-Option-R). You need to clear the cache in your browser so the js file gets updated. You now should be able to create a new user without any problems.

This solves the problem for me and I am able to create new users without issue. The only thing that doesn’t work is the show/hide password field for Pass1, but I can live with that for now. I think my fix will work at least until WP admin core is updated and put back to its broken state. I am saving this info for myself in case the next version of WP doesn’t fix this. It’s been a problem for so many versions, I am not holding out much hope.

One more thing: maybe make some comments in user-profile.js and user-new.php so you can find where you made changes in the future, and also save a local copy somewhere so you can refer back to it if/when your hacked files get overwritten by a WordPress core update. I usually put my name in the comments so I can easily find where I made changes in other people’s code.

I hope this helps. It took me many many hours to figure this out and also to write this up, so please be kind if you have feedback or better ways to do things.
Aloha. Kaliko.