[Plugin: Login Lock] Self-Service Password Reset Fails with Plug-in Enabled | WordPress.org

Sarah1853
(@sarah1853)

12 years, 1 month ago

In general, I like this plugin except that in my environment at least, if I activate the plugin, when users use the “forgot your password” tool–or when I use the emergency lockout feature to reset all users passwords–users are unable to enter a new password that will allow them to login to WordPress again. No matter what password a user enters in the reset password screen, they get a login failed response. This is true even if I disable password policy features in the plugin. The only way to get password reset functioning again was to deactivate the plugin.

I’m using WordPress 3.3.1 and Login Lock 2.2.7, both of which are the latest versions as of this writing.

I submitted a request for assistance at wpsecurity.net, but have not received a response.

http://wordpress.org/extend/plugins/login-lock/

Viewing 2 replies - 1 through 2 (of 2 total)

bobbyt65
(@bobbyt65)

12 years ago

Sounds like part of my issue too. Only all of my accounts are broken and user cannot reset the password.

ianroberts
(@ianroberts)

11 years, 8 months ago

I had the same problem, and I think it’s a bug in the plugin. I was able to fix it by changing line 448 in loginlock.php, at the top of the function ll_test_new_psw from

if ( 'yes' != $this->ll_options['psw_reuse'] ) return;

to

if ( 'yes' != $this->ll_options['psw_reuse'] ) return true;

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘[Plugin: Login Lock] Self-Service Password Reset Fails with Plug-in Enabled’ is closed to new replies.

In: Plugins
2 replies
3 participants
Last reply from: ianroberts
Last activity: 11 years, 8 months ago
Status: not resolved