Token Mismatch!

  • Resolved pennymachines

    (@pennymachines)


    3 years, 8 months ago

    Hi,
    Testing this plugin on a multisite installation using email verification: when the new user enters the verification URL, it is confirmed that their account is activated, and their user status changes from Pending to Verified. All fine.

    But they cannot login. The error shown is Token Mismatch!

    Also, the email activation ‘link’ is plain text and has to be copied and pasted, even though the email client is configured for html in emails.

    I would be most grateful for any suggestions.

Viewing 5 replies - 1 through 5 (of 5 total)

  • Hi there,
    I use the free version on this plugin since two years and i’m pretty happy, thank you very much.

    I have the same problem of TOKEN MISMATCH! error since today on confirmation emails. I did check in MySQL database and the user token is matching with the email one.

    When i was informed of that problem, i run the last update of the plugin but the problem occurs before. And the upgrade didn’t solve it, unfortunatly..

    I precise that WordPress and the few others plugins used are up-to-date.

    I probably missed something.. If somebody has an idea?

    • This reply was modified 3 years, 8 months ago by raphaelw.
    Thread Starter pennymachines

    (@pennymachines)

    I also just installed the latest update and cleared cache.
    Unfortunately, it still shows Token Mismatch! when a user tries to log in.

    Saroj Shah

    (@wpeverestsupportrep)

    Hi @pennymachines @raphaelw ,

    Sorry for the late response. This issue requires proper testing for which, I request you to contact our developer team. You can contact them here: https://wpeverest.com/contact/ so that they will try to replicate the issue on your site and provide you the fix ASAP.

    Regards!

    Hi Saroj, thanks for your answer, i’m going to try this.

    After further investigation, it looks that the string crypting function (used for decrypt the token) doesn’t work as usual for mysterious reason.

    The script can’t anymore decrypt the token using openssl_decrypt:

    $output = openssl_decrypt( base64_decode( $string ), $encrypt_method, $key, 0, $iv );

    in file includes/class-ur-email-confirmation.php

    This line returns nothing instead of getting the user_id.

    • This reply was modified 3 years, 8 months ago by raphaelw.
    • This reply was modified 3 years, 8 months ago by raphaelw.
    • This reply was modified 3 years, 8 months ago by raphaelw.

    We are also now having this issue. Is anyone able to confirm a fix for this?

    Thank you

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Token Mismatch!’ is closed to new replies.