This is the technical support forum for Toolset - a suite of plugins for developing WordPress sites without writing PHP.
Everyone can read this forum, but only Toolset clients can post in it. Toolset support works 6 days per week, 19 hours per day.
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| - | 9:00 – 13:00 | 9:00 – 13:00 | 9:00 – 13:00 | 9:00 – 13:00 | 9:00 – 13:00 | - |
| - | 14:00 – 18:00 | 14:00 – 18:00 | 14:00 – 18:00 | 14:00 – 18:00 | 14:00 – 18:00 | - |
Supporter timezone: Asia/Karachi (GMT+05:00)
This topic contains 2 replies, has 2 voices.
Last updated by 2 years, 11 months ago.
Assisted by: Waqar.
Hello (its me again)
I am trying to:
i've been using the follow toolset shortcodes: user login, recovery password and password reset.
My problem is that the password reset form is not validating the minimum characters imposed through the wordpress "validate_password_reset" hook. Which means that if a user resets a two-character password, you can do it.
While, if the operation is carried out from wp-login.php, it is validated and the user cannot enter a password of less than 8 characters
I expected to :
user must set a password with a min length of 8 characters
Instead, I got:
no validation.
Thank you for your time.
The hook im using is :
add_action('validate_password_reset','geek_validate_password_reset',10,2);
function geek_validate_password_reset($errors, $user){
$exp = '/^(?=.*[A-Za-z])(?=.*[A-Z])(?=.*[@$!%*#?&])[A-Za-z\d@$!%*#?&]{8,20}$/';
if(strlen($_POST['pass1']) < 8 || !preg_match($exp, $_POST['pass1']) ){
$errors->add( 'error', 'Hint: Password length must be minimum 8 characters and maximum 20, and must contain at least one capital letter, number and punctuation mark.','');
}
}
