tomjenx

Hiya

Thanks for the reply. However, that’s my point; after installing and activating the maintenance page plugin, I click on the plug-in settings and appear to be forced to choose a pre built template, either a maintenance page one or a coming soon one. Clicking on either forces the download of the otter plugin, which, as the application cannot have plugins installed, simply errors out. Is there a way to bypass this choice and get directly to the setting of the plugin?

Many thanks
Tom

If that is the case, why does the local environment, which does not use SSL also have the same issue?

Good morning

The production site is on a SSL and all links already get redirected to that. The local site is not on an SSL but both sites suffer the exact same issue.

Update also your live site with https:// references, you have 10 https:// left in the HTML source and many links without https:// in the menu except “Order Online”.

I’m not sure what site / URL you mean or are looking at? I haven’t given you our live site, so not sure how you have seen the source. Looking at the site, which I am happy to supply you, there is no Order Online within the menu?

Firefox and Edge have the same outcome as above; no logged in user and password is not changed.

Yep, all I have literally done is after the wp_signon, on line 221, I have bumped the code at the bottom of that function:

$url = UM()->account()->tab_link( $tab );
$url = add_query_arg( 'updated', 'account', $url );
um_js_redirect($url);
exit();

Adding this in, as per above, still logs the user out but the password is changed. Without it the user is logged out the password does not get changed.

This would imply the wp_signon is not functioning correctly as the user is not getting re-logged in again, after the sessions are all destroyed on line 217.

Investigating further, it appears to be line 221 in /plugins/ultimate-member/includes/core/um-actions-account.php

It’s not doing the wp_signon. If I put an exit(); after it the password is changed in the wp_users table. It still logs me out but the password has at least changed. However, if I don’t put the exit(); there and let it run, the raw encrypted password in the database never changes and the user is logged out.

If I use the um_js_redirect and put it directly after the wp_signon followed by an exit(); the password is changesd. The user is still logged out but at least they can log back in.

This is on Chrome 94.0.4606.71 on Windows 11 by the way but also happens on Chrome on Windows 10.

@missveronicatv

I’ve now setup another complete fresh instance of WP, solely installing UM, create the needed pages from scratch, logged in as admin and visited /account. Tried to change the password and get the exact same results.

We use UM on another live site, and have the same issue there as well.

I have preserved the network log on submit of the new password and its submitting to itself, then going to ?updated=account but then 302 to the login page with a ?redirect_to querystring on it. I’m guessing because it’s logged out at that point. I can replicate it on every single site I install the plugin on.

I have signed up for the demo UM site as tomjenkins … if someone approves that account, I can test it there and then see for myself what it is doing.

You see I’m not getting “Your account was updated successfully.” at all. Upon submission the logged in user gets logged out. I’m assuming they shouldn’t be logged out?

PHP version is 7.4 and WP version is 5.8.1

Debug mode on and no PHP errors

No JavaScript errors

– Require a strong password? OFF
– Password minimum length: 8
– Password maximum length: 30
– Require a strong password? OFF
– Enable the Reset Password Limit? ON
– Reset Password Limit: 3

No blocked email addresses.

If I can get my account on demo.ultimatemember.com approved I can test it on there?

@missveronicatv

As mentioned above, there are no other plugins installed, just UM.

There is no caching on the server and I have replicated this on our live server and also local environment, which again, has no caching.

The reset password works. The password change does not.

No, we’re talking about the frontend user area / account page. This page effectively, with the change password tab:

https://docs.ultimatemember.com/article/1408-ultimate-member-account-page

When you go to change the password, the above happens.

Unfortunately not, as this is literally a blank bare bones install of WordPress, with no other plugins using the default WP theme.

The password reset / forgotten password functionality works fine; this is solely off the ability for a user to change their password, when logged in off their user profile / area page.

I get the same. It seems to still download the title of the images and create a post against each image but not the actual image itself. Seems broken now ??