The reset password functionality in the frontend plugin is not working consistently. The following issues have been observed:

1. After entering the email on the “Forgot Password” page, users sometimes do not receive a confirmation message that the reset password link has been sent.
2. When clicking on the reset password link from the email, users are often redirected back to the “Forgot Password” page instead of the “Reset Password” page. This disrupts the flow and creates confusion for users.

There are currently some errors on my website. When users try to reset their passwords, the emails are not being delivered to their inboxes. Upon further investigation, I found from my admin email that I received the following email. Can you determine what the issue is and advise me on how to resolve it? I will censor the exact emails.

his is the mail system at host relay.mailchannels.net.

I’m sorry to have to inform you that your message could not
be delivered to one or more recipients. It’s attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

              The mail system

[email protected]: host gmail-smtp-in.l.google.com[74.125.199.27] said:
550-5.7.26 Your email has been blocked because the sender is
unauthenticated. 550-5.7.26 Gmail requires all senders to authenticate with
either SPF or DKIM. 550-5.7.26 550-5.7.26 Authentication results:
550-5.7.26 DKIM = did not pass 550-5.7.26 SPF [passionfuelsambition.com]
with ip: [23.83.223.38] = did not 550-5.7.26 pass 550-5.7.26 550-5.7.26
For instructions on setting up authentication, go to 550 5.7.26
https://support.google.com/mail/answer/81126#authentication
98e67ed59e1d1-2e9a5f84005si1949432a91.76 – gsmtp (in reply to end of DATA
command)
Reporting-MTA: dns; relay.mailchannels.net
X-Postfix-Queue-ID: E2FCA2C43EC
X-Postfix-Sender: rfc822; [email protected]
Arrival-Date: Thu, 7 Nov 2024 13:06:16 +0000 (UTC)

Final-Recipient: rfc822; [email protected]
Original-Recipient: rfc822;[email protected]
Action: failed
Status: 5.7.26
Remote-MTA: dns; gmail-smtp-in.l.google.com
Diagnostic-Code: smtp; 550-5.7.26 Your email has been blocked because the
sender is unauthenticated. 550-5.7.26 Gmail requires all senders to
authenticate with either SPF or DKIM. 550-5.7.26 550-5.7.26
Authentication results: 550-5.7.26 DKIM = did not pass 550-5.7.26 SPF
[passionfuelsambition.com] with ip: [23.83.223.38] = did not 550-5.7.26
pass 550-5.7.26 550-5.7.26 For instructions on setting up authentication,
go to 550 5.7.26
https://support.google.com/mail/answer/81126#authentication
98e67ed59e1d1-2e9a5f84005si1949432a91.76 – gsmtp

Hello,

I thought it would be interesting to display a confirmation message that the password has been reset successfully. I have the plugin configured to go to the login page after changing the password and I would like to add that password changed successfully confirmation message. How can I do this?

Hello,

Two questions:

1° / The French translation of the plugin is pending. Is it possible to help you validate it?

2/ I’m publishing a site in two languages (English and French) with the POLYLANG plugin. How do I specify a URL for the password recovery page according to language?

Best regards.

• This topic was modified 2 months, 1 week ago by zebullon.

Hi there,

In combination with the WordPress plugin “WP 2FA” there is an error. I found out that it is due to the “Frontend Reset Password” plugin.
In the file includes/somfrp-functions.php, the action is called with too few parameters on line 344.
I was able to fix it for myself as follows:

$errors = new WP_Error();
do_action( 'lostpassword_post', $errors, $user_data );

Hi,

For the custom email – I would like to embed {reset_link} into a <a> html tag as the raw URL is not a good user-experience. I have coded the following <a href=”{reset_link}”>Reset your password now</a> and it is not rendering correctly.

Please help me build the correct html so that the {reset_link} can be embedded in text.

Thanks!

Hello, i want to add custom redirection, when reset password link is no longer valid. Currently it shows the error message and reset password form, a want to redirect to specific url or page is there any way to do this?

Hi,

For some reason, when users ask for their password to be reset, the email is sent to their spam inbox. Is there a way around this or do I simply have to put a disclaimer that they should also check their spam?

Thanks

Hi,

For some reason, when I attempt change the address that the reset email will be sent from in your plugin settings, it says ’email could not be sent’. The email sends fine when there is nothing in the settings box and the default wordpress email is applied.

However, I think this looks unprofessional and I would want the email to come from ‘[email protected]’. This is also registered with the website and so I can’t see why there is an issue.

How can I get this to work?

Thanks

Thank you for a nice plugin seems to work well as designed but just thinking would be even better(!) if it could also handle the following –

1. When an email is generated from the admin dashboard by clicking “Send password reset” to a user.
2. When a new user is added from the dashboard and an email is sent to the user advising them to set their password for the first time before logging in.
   
   In both cases, at least unless I’m missing something, the link provided in the emails is to the standard WordPress password reset form which isn’t ideal when using the plugin specifically to try and avoid this.
   
   I don’t know if there’s any easy way to hook into the password reset link in each case, but if so, maybe something worth considering for the future?
   
   With many thanks for your consideration.

I’ve a couple of sites that uses only email addresses for login/usernames so the “email address or username” is invalid for that use.

Is there any chance that on a future release we could have a couple of extra settings that allows us to set the text/modify the text shown to users on line 135 of somfrp-functions.php. i.e. to allow the user to specify the ’email address or username’ part or even that whole part of the message “Please enter your email address or username”.

$lost_text = esc_html__( 'Please enter your email address. You will receive a link to create a new password via email.', 'frontend-reset-password' );

and changes to line 46 and 47 of frontend-reset-password/templates/lost_password_form.php to give:

<label for="somfrp_user_info"><?php _e( 'Registered Email Address', 'frontend-reset-password' ); ?></label>
<input type="text" name="somfrp_user_info" id="somfrp_user_info" required autocomplete="email">

The line 47 change just changes the “autocomplete” from “username” to “email”.

Not a major issue, just a nicety if they could also be set from the settings page. (I’ve modified the code locally, but obviously not ideal if you update).

Many thanks in advance, and not a problem if it requires too much testing time/etc…

• This topic was modified 7 months, 1 week ago by shinerweb.

Hello,

Is there anything I can do to require special characters and numbers when changing passwords?

Currently, when creating an account, a special character and a number are required.

Thank you in advance

Hi,

I am translating your great plugin. I see it is already done in Dutch 100%. Great! But after I try to go to the reset password page and the link is not valid no more I see this “That key is no longer valid. Please reset your password again. Code: invalid_key”. I can’t find where this is coming from. It is not theme Avada, not plugins Avada, not your plugin, not toolset plugin. Where can I translate this string?

Cheers

Marco

‘m facing an issue with the password reset redirection in WordPress when the Easy WP SMTP plugin is activated. After installing this plugin, I managed to resolve the problem with email sending, but the redirection to a specific page I set up no longer works correctly. Instead, users are not redirected to any page after submitting a password reset request, and the message ‘The e-mail could not be sent.’ is displayed. Is there any solution to this problem? Thanks in advance for your assistance!

I changed the email address that the password reset emails come from but the emails still come from a different email address, presumably the first one I saved when using the plugin. Any ideas?

Is this plugin still active?

If yes, I’m gonna need your help. Please help me regarding this issue.
All the error messages displays after submitting an invalid email address EXCEPT a success message which is after submitting a valid email address and when I successfully reset my password.

Thanks in advanced!

If you need this, this my link.
https://painimdoc.com.pg/reset-password/

• This topic was modified 8 months, 3 weeks ago by angelica000.

What function should I use for a success alert after entering an email?

“An email has been sent. Please check your inbox.” is not working

• This topic was modified 9 months ago by angelica000.

Good day!

Scenario: Entered the current password used during the password change

Expected result: Get an error message saying that I cannot use the same existing password

Actual result: The Change password still went through even though I used the current password

Suggestion: If possible, Is there a logic wherein it doesn’t allow the user to use the existing password? This way, there’s no need for them to change the password.

Thank you.

• This topic was modified 9 months, 2 weeks ago by roreymp.

I need to be able to customize the text that shows up when a user tries to reset their password. It’s a pretty significant security issue that the message says something like “That username is not recognised.” or “An email has been sent. Please check your inbox.” since it allows potential attackers to enumerate accounts.

Can we either get the ability to edit the text that shows up, or it would also work if y’all could update it to something like “An email has been sent to the account if one exists.”

How you doing today Sir,

Now, in a Password Reset flow, there are two(2) Stages:

One in which we enter our Email to request a Password Reset.

The second stage is when we receive an Email with a Password Reset link, then click on the link sent in the Email.

Now, you didn’t tell us how to create a Custom Page that our users will land on, if they click the link sent in the Email.

Nor, did you provide the Shortcode that will create that Page.

You see, if they click the link, we expect them to land on a Page with actions, hooks and triggers preconfigured to execute a Change Password request.

In essence, I am saying that we need Two(2) Shortcodes from You:
1.) Password Request Page Shortcode— where we enter our Email to request for a Password Reset link. See example– https://prnt.sc/EWP3sasF2BxI

2.) The second Shortcode should be Password Reset Page where we actually do enter our New Password. See example— https://prnt.sc/taxpUEZ8OGXJ

Would you work on this soon?

Regards.

I am wondering that– Why don’t you just create a full Custom Frontend Login Form plugin?

Now, I have a BuddyPress website, but it’s been difficult getting users not to see the WP-Login.Php Page.

As a Community and Social Network website, it means that hundreds of people will be Logging in to Register and create Accounts on the website.

Now, we don’t want these people to ever see the WP-Admin and the WP-Login.Php Pages.

In short, we don’t want these our users to even know that a WP-Admin and WP-Login.Php Page even exist.

The flow should follow that, even if people deliberately type “ mydomain.com/wp-admin ” or they deliberately type “ mydomain.com/wp-login.php ” , it should immediately and instantly redirect them to a Custom Frontend Login Page that we have created– and they should never see the “ wp-admin ” and “ wp-login.php ” Pages.

I have this plugin for the Custom Login Form — https://essential-addons.com/login-register-form

What the plugin has not been able to do, is to bypass the WP-Login.Php Page during Password Reset.

Although, I’m in talks with the Developer, and they are looking into it.

But on your part, I feel that you should create a Full Fronted Login Form plugin, if you can actually bypass the Wp-Login.Php Page, during Password Reset.

Regards.

Hi,

When I try to reset the password, the plugin is working with the password reset, but it’s making confusion, because it is changing the user username into the user email.

Is there any way to stay the username and not be changed?

Hi there,
Thanks for supplying your good plugin.

When we use your plugins, we have one problems in the process in this plugin.

at: frontend-reset-password/include/somfrp-functions.php:L343

do_action( 'lostpassword_post' );

In this tag’s document, this tag assumed to have two arguments.
https://developer.www.ads-software.com/reference/hooks/lostpassword_post/

We would appreciate it if you could check.

The from email isn’t picking up the custom email I put in. It’s sending from [email protected].

Hi,

Your plugin doesn’t work when the plugin “GeneratePress Premium” (a plugin of the theme Generate Press) is activated.

If you want to reproduce the issue these are the steps:

• Click on “forget your password?” link.
• Click on the email link to create a new password.
• Fill the new one in the password field and the verification field.
• When user clicks on “Save new password” the forms resets and the user is not redirected to the new page.

After that the password is not changed and the user is blocked because he doesn’t remember the old one and can not create a new one.

I’ve tried old version of GeneratePress Premium plugins and the same issue happens in all versions so I guess the problem is in your side.

I couldn’t check it with older version of your plugins because they are not available in the repository.

Please check as soon as possible because this is a really big blocker for users that uses generate press.

Thanks.

Hello, I translated the phrases I needed from the pot file of this plugin into Georgian. via the loco translate plugin. But the changes are not visible

The same as some in this forum.
All my plugin are desactivated and I’m running with the french version of WP (updated).
Some ideas ?

Thanks !
Nico.

I’m using the plugin to send a custom password reset email.
however when using {reset_link} the output is:

?somresetpass=true&somfrp_action=rp&key=30Sf8lPR8kbSfulvO67l&uid=17

It looks like the base URL is not added to the code.

I’m getting the message ‘The e-mail could not be sent.’

I’m using Post SMTP and all other emails are being sent. I’ve disabled Hubspot All-in-One Marketing plugin as the tracking might have been causing a problem, but no joy.

Hi guys,

I’ve recently updated to WordPress 6.3 and my reset-password page is now throwing a critical error:

[Tue Aug 15 11:46:02.042284 2023] [proxy_fcgi:error] [pid 24917:tid 139965987739392] [client 213.120.206.251:0] AH01071: Got error 'PHP message: PHP Fatal error:  Uncaught ArgumentCountError: Too few arguments to function pw_new_user_approve::lost_password(), 1 passed in /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-includes/class-wp-hook.php on line 310 and exactly 2 expected in /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-content/plugins/new-user-approve/new-user-approve.php:811\nStack trace:\n#0 /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-includes/class-wp-hook.php(310): pw_new_user_approve->lost_password()\n#1 /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-includes/class-wp-hook.php(334): WP_Hook->apply_filters()\n#2 /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-includes/plugin.php(517): WP_Hook->do_action()\n#3 /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-content/plugins/frontend-reset-password/includes/somfrp-functions.php(343): do_action()\n#4 /home/xxxx.cloudwaysapps.com/xxxx/public_html/wp-includes/class-wp-hook.php(310): somfrp_lost_pass_callback(...', referer: https://www.findlaypark.com/reset-password/