Support » Alpha/Beta/RC » Registration – reset password?

  • Resolved Peter

    (@petercralen)


    Not sure, probably it were designed like that, anyway it looks weird for me.
    If user register, registration email forces him to set a password. After clicking on a link, user is forced to reset his password, not set up!

    Also, admin is emailed that user reset/lost password what is not true, as he just set up his first password.

    Another not so friendly issue is that, link (in email) to reset password is inside <> tags.

    Is it all of this designed like that?

Viewing 12 replies - 1 through 12 (of 12 total)
  • Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    They did reset their passwords actually. There’s an encrypted one that they don’t know, but really it should say the password was ‘set’.

    There isn’t much functional difference between reset and set when it comes to passwords.

    Peter

    (@petercralen)

    What about these “<>” in email? Designed like that?

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    The LINK is between angle brackets, yes. That’s normal for emails with links. It’s an industry standard.

    Peter

    (@petercralen)

    Thanks for your work.

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    We’re trying to make It more obvious what’s going on, though this really isn’t new to 4.4 alpha 🙂

    Maybe “<>” is an indusrtry standard, but unfortunatelly almost 50% of new registered users gets wrong reset password link since this change.
    With lot of e-mail providers generated reset password link is wrong.
    The “>” sign becomes part of url, the result is they cannot reset/set their password 🙁
    http://pokaz.im/di-2NH5.png

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    Why is there a ; at the end of that? That seems … Odd.

    With lot of e-mail providers generated reset password link is wrong.

    A lot or just a lot that your clientele uses? There is a difference, I’m afraid. And we’ve been using the <> for a long time, it was just less noticeable since you didn’t get the reset link on registration before.

    I don’t know why there is “;” at the end of this link. I personally use gmail.com and have no “;” there and also reset password link is good there. I realized this is problem for some e-mail providers just few days ago. I have website in polish, so lot of users uses polish e-mails like: wp.pl, onet.pl, tlen.pl – all of them have problem with setting password, beacause wrong reset password url.

    Looks like many (at last many polish e-mail providers) doesn’t use this standard.

    For now, as a workaround I use “theme my login” plugin, which allows users to set their password during registration.

    <> is not an industry standard, and saying it is won’t make it so. To me it’s just an affectation that has no real value.

    I ran into this same issue with the web mail client of my provider. It has been at least 4 years since people started reporting problems with the use of angle brackets around the url. I know someone must really like the look of them, but honestly can’t we let functionality win for once and just eliminate them from core altogether?

    If the link has to be surrounded by symbols (to deal with the need for a visual queues where the url might wind up continuing across a couple of lines in a word-wrapped message) why not pick something that isn’t actually used in HTML, like square brackets (“[]”) or (almost insufferably ugly, I admit) braces (“{}”)?

    As it stands we’re all going to have to keep hacking that core code to eliminate it ourselves. Is that really what anyone wants?

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Halfelf Rogue & Plugin Review Team Rep

    I’m afraid it is a standard, in order to prevent line wrapping from breaking really long links.

    For anyone else googling this issue (like I was a few minutes ago), try adding this to your themes functions.php file to add another URL to the password reset email (sans angled brackets).

    function fix_password_reset_link($message, $key, $user_login, $user_data) {
    	$message .= "\r\nLink not working? Copy and paste the following into your browser address bar:\r\n\r\n";
    	$message .= network_site_url("wp-login.php?action=rp&key=$key&login=" . rawurlencode($user_login), 'login');
    
    	return $message;
    }
    add_filter( 'retrieve_password_message', 'fix_password_reset_link', 10, 4);

    This is a long term bug and affects many many users.
    It is also hard to spot for website owners with registration enabled. They loose many users because of that bug.
    It is a shame that developers ignore it 🙁

Viewing 12 replies - 1 through 12 (of 12 total)
  • The topic ‘Registration – reset password?’ is closed to new replies.