It is indeed security related as we need to ensure customers details are not visible – thats why it needs login.
> Additionally, from my understanding the message should request them to log in and not say ‘invalid’ or ‘error’. This makes them think something went wrong with the site or their end, especially when they have not had issues in the past.
This is a good suggestion and one I’ve logged: https://github.com/woocommerce/woocommerce/issues/14385
The code which prevents access looks like this:
if ( ! current_user_can( 'pay_for_order', $order_id ) ) {
echo '<div class="woocommerce-error">' . __( 'Invalid order. If you have an account please log in and try again.', 'woocommerce' ) . ' <a href="' . wc_get_page_permalink( 'myaccount' ) . '" class="wc-forward">' . __( 'My account', 'woocommerce' ) . '</a>' . '</div>';
return;
}
Just to note, you don’t need to hack core to get around this. WordPress has a filter called user_has_cap
which can be used to give anyone this capability. Just use it responsibly.
https://codex.www.ads-software.com/Plugin_API/Filter_Reference/user_has_cap
The other use case I’m reading here is about taking payment over the phone and paying as a user. This is the case that is definitely not supported. You need to remember; when you checkout it updates user meta, stores data to the current account, even stores credit card tokens if you’re using a gateway like Stripe. This should not be assigned to your account.
Someone linked to a thread from a year ago about this where I suggested user a ‘user switching’ plugin if this was needed. That still stands, but the best way IMO would be to use your Payment gateways virtual terminal (if it has one) to take the actual payment and keep things secure. You can create an order still, just take the payment off-site.