[wp-trac] [WordPress Trac] #24617: Spammed users should not be able to reset their password
WordPress Trac
noreply at wordpress.org
Wed Apr 27 05:49:50 UTC 2016
#24617: Spammed users should not be able to reset their password
--------------------------------------+-------------------------
Reporter: r-a-y | Owner: jeremyfelt
Type: defect (bug) | Status: reviewing
Priority: normal | Milestone: 4.6
Component: Users | Version: 3.0
Severity: normal | Resolution:
Keywords: good-first-bug has-patch | Focuses: multisite
--------------------------------------+-------------------------
Changes (by jeremyfelt):
* keywords: good-first-bug has-patch has-unit-tests => good-first-bug has-
patch
* owner: websupporter => jeremyfelt
* status: assigned => reviewing
Comment:
This is looking good. I'm going to go with the multisite/spammy check here
and leave the changes to the `allow_password_reset` filter for another
ticket/discussion. We haven't needed to pass the full user object before.
If anyone would like to extend that filter, please open another ticket.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/24617#comment:15>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list