When moderating registration and sending admin notification emails, WP-Members has a shortcode in the email that allows you to click through to that particular user’s profile to activate them. But what if you want the link itself to activate the user? This tutorial will show you how to set up a process to make that a single click process. Continue Reading →
Search Results for: short code
WP-Members 2.8.2 beta release now available
Current Release Candidate: RC 4
WP-Members 2.8.2 is both a feature release and a fix release. Continue Reading →
WP-Members 2.8.1 Release
The WP-Members 2.8.1 release is an important security update for the plugin. It is highly recommended that you upgrade as previous versions of the plugin have a possible exploit that may be vulnerable. As soon as I became aware of this, I put all other items on the project list on hold.
While 2.8.1 is primarily a security fix, there are some additional features, as well as a few improvements as well. These are items that were already in the works when the security issue was made apparent.
Here is a list of what is included in the 2.8.1 release:
Security Updates
- The most important fix in this update (and the reason why you should update) is that this closes a potential cross site scripting exploit.
- Updated nonces in the updated admin panels from 2.8.0.
- Added nonces to the front-side form submission.
- Security evaluation and updates to other areas.
Feature Updates
- Added dropdown selector option for the User Profile (members-area) page and Register page location (There is still the option to enter the URL yourself, and for backward compatibility, if you have a custom URL entered in the setting, it will default to that).
- Updated the dropdown field custom field type to accommodate commas in the field values (such as “1,000”). The dropdown example shows how to enclose this with double quotes.
Other Updates
- Updated the TOS shortcode to be case insensitive for the shortcode parameter (TOS/tos). Either will work. The User Guide had previously indicated the incorrect case in the instructions, so I updated this to be case insensitive to allow for backward compatibility.
- The members-area parameter will be prepared to be deprecated and replaced with user-profile. More on this below.
- Separated backend User Profile functions from the wp-members-core.php file to users.php.
- Applied post 2.8.0 patches
Members Area nomenclature change
In previous versions, the front side page that was used to handle user functions such as reset a forgotten password, update registration info, change your password, and (in the PayPal addon) renew a subscription, was called with the shortcode [[wp-members page=”members-area”]].
It has been called that since the beginning of this plugin. Unfortunately, it has been a confusing issue because it has turned out that this is not intuitive. For users that do not necessarily read the plugin documentation and installation instructions (or do not read them thoroughly), the term Members Area gets interpreted as “area of my site that is restricted content” and not “area of my site for members to update their info”.
So beginning in 2.8.1, this is being changed to User Profile. The shortcode will be [[wp-members page=”user-profile”]] but the old shortcode will still work. As you can see in 2.8.0, the name was already changed in the options panel. If you continue to use the old shortcode, that is ok. Future releases will support it (for now). However, all references to the Members Area will be changed to User Profile in the plugin documentation and instructions as the use of the term is deprecated.
Create different styles for “success” and “error” messages
This is an idea that has been floated by a few users, which means there is probably a need for it. As is usually the case, I don’t like to make wholesale changes to the codebase that effects users in a way that requires them to make a change to accommodate an update. So I wouldn’t want to change the plugin to put in different classes, since users with a custom stylesheet would need to be paying attention when they update to accommodate the new classes in their stylesheet. But this is something that we can certainly do on the fly using the wpmem_msg_dialog filter. This article will show you how to do just that. Continue Reading →
wpmem_recaptcha_score
Description
This is a filter hook that allows you to modify the spam score used by reCAPTCHA v3.
reCAPTCHA v3 returns a score (1.0 is very likely a good interaction, 0.0 is very likely a bot). Based on the score, you can take variable action in the context of your site.
The default value used in the WP-Members plugin is 0.5. Use the filter to allow registrations with a lower value, or restrict to registrations with a higher value as needed.
More information from Google’s documentation for reCAPTCHA version 3.
Parameters
$score
(integer)(required) The score required to allow the captcha to pass (0.0 – 1.0). Use a lower value to allow more registrations, higher to restrict more registrations.
Example
add_filter( 'wpmem_recaptcha_score', function( $score ) { /* * Return a score between 1 and 0.1. * A lower score will let through more results. */ return 0.3; });
Changelog
- Introduced in extension version 3.3.9
Source
wpmem_recaptcha_score
is located in /includes/class-wp-members-recaptcha.php