[Plugin: Theme My Login] Password protected pages broken

Resolved Abbson Studios
(@abbson)

13 years, 11 months ago

With WP 3.4, the system for dealing with password protected pages is now run through the main login function, instead of wp-pass.php. The function in the default wp-login.php (lines 388-401) is
case 'postpass' : if ( empty( $wp_hasher ) ) { require_once( ABSPATH . 'wp-includes/class-phpass.php' ); // By default, use the portable hash from phpass $wp_hasher = new PasswordHash(8, true); }

// 10 days
setcookie( 'wp-postpass_' . COOKIEHASH, $wp_hasher->HashPassword( stripslashes( $_POST['post_password'] ) ), time() + 864000, COOKIEPATH );

wp_safe_redirect( wp_get_referer() );
exit();

break;

This functionality is not in the 6.2 version of Theme My Login, so the submission of the post_password field goes to a script that doesn’t know how to handle it.
In case anyone else was having trouble with their protected pages, just disable the plugin for now, and make sure that your form’s action points to WP-URL/wp-login.php.

http://ww.wp.xz.cn/extend/plugins/theme-my-login/

Viewing 7 replies - 1 through 7 (of 7 total)

Christopher
(@cfulgham)

13 years, 11 months ago

My problem is that with the Theme My Login plugin activated (configured with redirects for logins and logouts), any attempt to submit a password for a password protected post causes the user to redirect to the Login page.

Any idea when this problem might be solved?

Thanks for your efforts (and the plugin).

Thread Starter Abbson Studios
(@abbson)

13 years, 11 months ago

My post was to inform the developer of TML that it breaks this functionality. But, that same problem happened on sites that I manage.

I did not create this plugin, but I use it with many of the websites that I create for my clients.

Thanks should go to the actualy developer, jfarthing84.

Toby
(@tgroenland)

13 years, 11 months ago

Same here, disabled it for now.

suej1
(@suej1)

13 years, 11 months ago

I also am having problems with some password protected pages. Theme My Login takes the visitor to the My Profile page, instead of to the page they wanted to view and for which they’d entered the password – even though I’ve set the configuration to ‘referer’.

These are NOT pages that require user registration on our site. They are either collections of photos from a session with a client organisation, or some specific resources created for one of the workshops we offer. So they’re not for public viewing, but for a specific client. We don’t require users to register on our site, but give the client a simple password to access the page.

However we ARE using Theme My Login to protect our dashboard from prying eyes when users register for our shop – so unable to deactivate it for that reason.

If anyone can help with this issue, that would be great! 🙂

Plugin Author Jeff Farthing
(@jfarthing84)

13 years, 11 months ago

Theme My Login 6.2.1 now handles the post password logic.

stockhopstudio
(@stockhopstudio)

13 years, 10 months ago

I don’t use the Theme My Login plugin, but all my password protect pages don’t work any more. I just use the built in feature that WordPress provides. It seems to have broken after we updated to 3.4. We have a lot of people depending on getting the private info on our password protect page. So I need to get it resolved. Any ideas?

wanderer
(@wanderer)

13 years, 6 months ago

Mine is broken too, the correct password is entered but the page redirects back to the password prompt.