Have to comment out sanitization to login. | WordPress.org

lady_minx
(@lady_minx)

10 years, 5 months ago
In order to get login to work for existing users (this wasn’t installed on a new wordpress site) I had to comment out the following code. Any ideas on why the sanitization is failing? The user ID in wordpress is klandon. It was being passed KLandon.

//if ($username != substr(sanitize_user($username, TRUE), 0, 60)) {
//$error = sprintf(__(‘<p>ERROR

//We got back the following identifier from the login process:
```
%s
```
//Unfortunately that is not suitable as a username.
//Please contact the blog administrator and ask to reconfigure the
//simpleSAMLphp plugin!</p>’), $username, get_option(‘admin_email’));
//$errors[‘registerfail’] = $error;
//print($error);
//exit();
//}

http://wordpress.org/plugins/simplesamlphp-authentication/

Viewing 3 replies - 1 through 3 (of 3 total)

Thread Starter lady_minx
(@lady_minx)

10 years, 5 months ago

Thought I figured out the problem… it works, but it only works for pre-created users and it shouldn’t work at all. Making certain username is all lower case before doing the sanitized compare, when there aren’t any special characters in it in the first place shouldn’t Fix it.

Thread Starter lady_minx
(@lady_minx)

10 years, 5 months ago

Fixed it. Posted the fix in http://wordpress.org/support/topic/mu-support?replies=9

Thread Starter lady_minx
(@lady_minx)

10 years, 5 months ago

Here it is:
if (strtolower($username) != substr(sanitize_user(strtolower($username), TRUE), 0, 60)) {

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Have to comment out sanitization to login.’ is closed to new replies.

In: Plugins
3 replies
1 participant
Last reply from: lady_minx
Last activity: 10 years, 5 months ago
Status: not resolved