[wp-trac] [WordPress Trac] #22114: Propagating password on change
WordPress Trac
noreply at wordpress.org
Thu Dec 3 15:55:45 UTC 2015
#22114: Propagating password on change
-----------------------------+------------------------------
Reporter: ChloeD | Owner:
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Users | Version: 3.4.2
Severity: normal | Resolution:
Keywords: needs-patch | Focuses:
-----------------------------+------------------------------
Comment (by chriscct7):
Replying to [comment:9 pento]:
> It would need to be implemented in both `wp_insert_user()` and
`wp_update_user()`, so that we expose the password of new users, too.
>
> I wonder if this would be better as a filter? That way, a plugin (say, a
password strength enforcement plugin) could return a `WP_Error` if the
password is unacceptable, which can be returned to the calling function.
This could be a good idea, but what happens if 2 plugins both intercept
the hook. 1 uses it to update remote site passwords, and the other does
filtering on allowable passwords and returns an error. Then the remote
sites would now be set to a new password which is not allowed, and hasn't
been changed.
Thoughts?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/22114#comment:10>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list