[wp-trac] [WordPress Trac] #12682: Multiple password reset emails can be annoying
WordPress Trac
noreply at wordpress.org
Tue Mar 4 07:13:23 UTC 2014
#12682: Multiple password reset emails can be annoying
----------------------------+-----------------------
Reporter: SergeyBiryukov | Owner:
Type: enhancement | Status: assigned
Priority: normal | Milestone: 3.9
Component: Users | Version: 2.9.2
Severity: normal | Resolution:
Keywords: has-patch | Focuses:
----------------------------+-----------------------
Comment (by saas):
I think there is nothing to do with core regarding this issue, core
already provides several actions and filters to handle such situations,
like @nacin mentioned **allow_password_reset** which allows you to do your
own logic.
Also you would utilize **retrieve_password** and kill the request if you
find it should not be allowed in first place, you could also use
**lostpassword_post** but I think its too early, but its still there if
you would like to use it.
I personally would like to see it as separate plugin for handling such
situation, I already use "Login Limit Attempts" plugin for reducing login
attempts, and its been working quite well, I have it set to maximum limits
(like 12 retries and small time for lockouts), as @nacin mentioned it
happens a lot to normal users as well, so its not fair to limit it to 5 or
such numbers.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/12682#comment:17>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list