[wp-trac] [WordPress Trac] #58911: Destroy logged in sessions after successfully password reset
WordPress Trac
noreply at wordpress.org
Wed Jul 26 11:45:11 UTC 2023
#58911: Destroy logged in sessions after successfully password reset
------------------------------------+-----------------------------
Reporter: nsinelnikov | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Login and Registration | Version: trunk
Severity: normal | Keywords:
Focuses: |
------------------------------------+-----------------------------
There is wp-login.php form popup if the session is expired in wp-admin.
But for the frontend part there can be this enhancement:
1. Go to `Browser A` and log in with your credentials.
2. Go to `Browser B` (it can be a public device) and log in with your
credentials again.
3. Go back to `Browser A` and change or reset your password.
4. After a successful reset/change of a password in `Browser A`, the
session in `Browser B` should be destroyed and the user should
automatically be logged out.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/58911>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list