[wp-trac] [WordPress Trac] #56787: Recovery mode tokens can't be validated successfully if pluggable function wp_check_password is overwritten.
WordPress Trac
noreply at wordpress.org
Tue Oct 11 14:24:45 UTC 2022
#56787: Recovery mode tokens can't be validated successfully if pluggable function
wp_check_password is overwritten.
--------------------------+--------------------------------
Reporter: calvinalkan | Owner: TimothyBlynJacobs
Type: defect (bug) | Status: accepted
Priority: normal | Milestone: 6.2
Component: Site Health | Version: 5.2
Severity: normal | Resolution:
Keywords: | Focuses:
--------------------------+--------------------------------
Changes (by TimothyBlynJacobs):
* owner: (none) => TimothyBlynJacobs
* status: new => accepted
* version: 6.0.2 => 5.2
* component: Login and Registration => Site Health
* milestone: Awaiting Review => 6.2
Comment:
Thanks for the ticket @calvinalkan!
Agreed, this should've been consistent with using or not using a pluggable
API. I'm in favor of using `PasswordHash` directly. Matching how we handle
User Request and Password Reset tokens.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/56787#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list