peterdog

This plugin is not intended for sites with registration. Adding users is inherently insecure.

Thank you for your review!

I would, too, to stop the support tickets, but you can stay at 3.0 for now. It’s not WP 3.6 friendly, though, so if your session times out, you’ll be redirected. That’s why I did 4.0 this way. I’m working on 4.1

That’s some of the best feedback to date. Thank you. That would certainly be an interesting way to approach this problem.

I’m not quite sure how to do that, but I am looking further into options to enable/disable the URL filtering for those situations/plugins so if someone has a member site, those still work (along with something up my sleeve that I want to explore).

Essentially, I’m going to have to bring back the URL stealth for people, allow them to additionally add another code if they so choose, and have THAT URL and form appear when Heartbeat API times out because it currently attempts to bring up wp-login.php, which I’ve been able to unhook, so I need only filter it to use the stealth login since it would appear for those already in the dashboard.

dvascheta is correct, nootkan. This is for people who want a secure site and having open registrations is inherently insecure because you must have an open login form, however there are additional options coming.

Like I said, the enable checkbox must be working for the e-mail to work and it’s not in place at the moment. The e-mail action is tied to the enable check and the checkbox isn’t being checked by the system. “Checked” as in “looked at.”

It would appear that my enable checkbox isn’t doing anything – I need to track that bug down and fix it. It’s always enabled regardless of the checkbox.

I deleted the plugin folder and re-gained access, re-installed it, and went to settings.