function pippin_login_member() { if (isset($_POST['pippin_user_login']) && wp_verify_nonce($_POST['pippin_login_nonce'], 'pippin-login-nonce')) { // this returns the user ID and other info from the user name $user = get_userdatabylogin($_POST['pippin_user_login']); if (!$user) { // if the user name doesn't exist pippin_errors()->add('empty_username', __('Invalid username')); } if (!isset($_POST['pippin_user_pass']) || $_POST['pippin_user_pass'] == '') { // if no password was entered pippin_errors()->add('empty_password', __('Please enter a password')); } // check the user's login with their password if (!wp_check_password($_POST['pippin_user_pass'], $user->user_pass, $user->ID)) { // if the password is incorrect for the specified user pippin_errors()->add('empty_password', __('Incorrect password')); } // retrieve all error messages $errors = pippin_errors()->get_error_messages(); // only log the user in if there are no errors if (empty($errors)) { wp_setcookie($_POST['pippin_user_login'], $_POST['pippin_user_pass'], true); wp_set_current_user($user->ID, $_POST['pippin_user_login']); do_action('wp_login', $_POST['pippin_user_login']); wp_redirect(home_url()); exit; } } }
function update_new_password(){ global $wpdb; if(isset($_POST['pippin_reset_pass'])){ global $current_user; $old_pass = $_POST["pippin_reset_pass"]; $new_pass = $_POST["pippin_reset_new_pass"]; $new_pass_confirm= $_POST["pippin_reset_new_pass_confirm"]; if($old_pass == '') { // passwords do not match pippin_errors()->add('password_empty', __('Please enter old password')); } if($new_pass == '') { //passwords do not match pippin_errors()->add('password_empty', __('Please enter new password')); } if($new_pass != $new_pass_confirm) { //passwords do not match pippin_errors()->add('password_mismatch', __('Passwords do not match')); } $errors = pippin_errors()->get_error_messages(); if(empty($errors)){ $username = $current_user->user_login; $table_name = $wpdb->prefix . "users"; $results = $wpdb->get_results("SELECT * FROM $table_name WHERE user_login = '******'"); $old_pass_word = $results[0]->user_pass; //echo $old_pass_word = wp_hash_password($old_pass); if (wp_check_password( $old_pass, $old_pass_word, $results[0]->ID) ){ $updated = wp_set_password( $new_pass, $results[0]->ID ); echo "Password updated"; } else echo "Your old password is not matched"; } } }