Password recovery reveals hidden url

  • Resolved fohteh

    (@fohteh)


    1 year, 7 months ago

    Hi there

    We are using TAGDIV optin builder. Password recovery received by subscribers reveals the hidden login url.

    I have added the code below to functions.php.

    add_filter( ‘td_login_password_reset_link’, function($password_reset_link) { return str_replace( ‘wp-login.php’, ‘en/tds-login-register/’, $password_reset_link ); });

    However, your plugin doesnt allow us to apply this change and still the hidden login url is revealed in passoword recovery e*mails.

    Can you suggest any work around?

    Thanks

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support MaximeWPS

    (@seinomedia)

    Hello,

    Thanks for using WPS Hide Login.

    Your suscriber can connect and request a new password ? Then, they already know the secret slug to log in, isn’t it ?

    WPS Hide Login isn’t built to be used with a public access.

    Thread Starter fohteh

    (@fohteh)

    Hi Maxim

    No; actually the plugin optin builder has its own url for subscribers. But request a new password or activation mails contains the urls created in WPS hide login plugin.

    Btw, your plugin is great and causes no issue at all. Only thing your plugin does is blocking the custome code when active when we try to modify url used by subscribers with a specific code saved in the functions.php for password recovery and activation.

    Plugin Support MaximeWPS

    (@seinomedia)

    Hello,

    Then, you have a public access from this optin builder.

    WPS Hide Login isn’t built to work with a public access somewhere on the website but to keep any access secret.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Password recovery reveals hidden url’ is closed to new replies.