Is the invalid link error normal every time we visit the Reset Password page?

  • Resolved kengr

    (@kengr)


    6 years, 11 months ago

    I activated TML and turned on only Redirection. Now, with the custom pages for logging in, etc., whenever I visit the Reset Password page, I immediately see the red error message “Your password reset link appears to be invalid. Please request a new link below.” I see in the URL we have been redirected to lostpassword/?error=invalidkey, but should the user who wants to deal with a lost password get this error message the very first time they visit this page? Shouldn’t they just get the nice instructions for requesting a link (i.e., what they would get if ?error=invalidkey were not present in the URL)?

    Is there some way to configure this so that the red error message doesn’t show up when the user tries to go to resetpass (i.e., so that we don’t redirect to lostpassword/?error=invalidkey, but instead redirect to lostpassword?

Viewing 9 replies - 1 through 9 (of 9 total)
  • Plugin Author Jeff Farthing

    (@jfarthing84)

    The “Reset Password” page is used for actually resetting the password. The page you want is “Lost Password”.

    Thread Starter kengr

    (@kengr)

    Thanks for your reply. Yes, I understand that. But your plugin adds a menu item named “Reset Password”. If a user clicks this menu item, they are sent to the page resetpass which is redirected immediately to the page lostpassword/?error=invalidkey, and they get the red error message “Your password reset link appears to be invalid. Please request a new link below” before they have even had a chance to reset their password. This happens whether they’re logged in or not.

    Is there any way to configure this so that, when the user clicks on Reset Password, they don’t get the red error message, but instead are given a chance to just reset their password? In other words, is there any way to get the Reset Password menu item to land on the resetpass page and start the reset password process, rather than landing on the lostpassword page with a red error message?

    Having the same issue, WordPress sends out new user link to create their password but goes to /lostpassword/?error=invalidkey so all of the new users are locked out.

    Plugin Author Jeff Farthing

    (@jfarthing84)

    @kengr, TML doesn’t add a menu item. It adds a page. You likely have your nav menu set up to auto-add top-level pages. You should remove the Reset Password page from your menu.

    Plugin Author Jeff Farthing

    (@jfarthing84)

    @webmediafx, you are having a completely different issue.

    I was having a problem where all my users who were trying to reset their passwords got the message “Your password reset link seems to be invalid. Please request a new link below.” It turns out this was caused by the plugin WP Fastest Cache. When I disable that, all worked fine.

    solved – https://prnt.sc/jcxh1f

    @jfarthing84, do you have any insight into @webmediafx’s issue? I am having the same problem.

    Plugin Author Jeff Farthing

    (@jfarthing84)

    This is usually caused by server-side caching. Ask you web host to exclude TML pages from the cache.

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Is the invalid link error normal every time we visit the Reset Password page?’ is closed to new replies.