Commit Graph

291 Commits

Author SHA1 Message Date
nacin
69112517ed Refresh nonces in the customizer. props koopersmith. see #20876.
git-svn-id: http://core.svn.wordpress.org/trunk@21135 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-06-26 18:48:18 +00:00
ryan
9115435213 Customizer: Gravefully handle cookie expipration. Prompt for log in in the preview. Props ocean90, koopersmith, nacin. fixes #20876
git-svn-id: http://core.svn.wordpress.org/trunk@21031 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-06-08 19:22:11 +00:00
nacin
9f97ddf45c When auth_redirect() detects a logged out user and the target
page was about.php?updated, then issue a message welcoming them.

This is to prevent it from being so jolting if you are taken to
the login screen after an update.

In WordPress 3.4, the changes to wp_salt() provide for extra
security, but will cause a log-out for any installs without 8
unique keys and salts in wp-config.php (with some exceptions).
Properly re-issuing cookies, even for the logged in user, is
not easily doable via admin/includes/update-core.php, as that
file is included long after the headers are sent.

see #19599.



git-svn-id: http://core.svn.wordpress.org/trunk@20887 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-05-24 21:22:09 +00:00
azaozz
000b7a9313 Move mobile devices CSS from wp-login.php to wp-admin.css, props SergeyBiryukov, fixes #19673
git-svn-id: http://svn.automattic.com/wordpress/trunk@20430 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-11 01:45:01 +00:00
azaozz
1d12cd07b0 Introduce wp_is_mobile() and use it instead of $is_iphone global, see #20014
git-svn-id: http://svn.automattic.com/wordpress/trunk@20417 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-04-10 01:19:30 +00:00
ryan
0dfe24e69b Set post password cookies via an action in wp-login.php. Retire wp-pass.php (one less root file). Obey login ssl preferences for post password form submission. Props SergeyBiryukov. fixes #19798
git-svn-id: http://svn.automattic.com/wordpress/trunk@19925 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-02-14 18:29:22 +00:00
nacin
e41d7ad161 Translate http://wordpress.org/ for the wp-login.php header image URL. Clean up. props zeo, fixes #19364.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19783 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-29 18:47:41 +00:00
ryan
e3b46b25d3 Lose EOF ?>. Clean up EOF newlines. fixes #12307
git-svn-id: http://svn.automattic.com/wordpress/trunk@19712 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-08 17:01:11 +00:00
nacin
ed9d705b83 Use home URL, not siteurl, in the password reset email. fixes #19767.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19705 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-07 18:54:08 +00:00
duck_
65b840b565 Fix mistakes in parameter documentation and add some missing param docs. See #19756.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19702 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-06 18:31:43 +00:00
ryan
83b131f8e3 User lowercase true, false, null instead of uppercase. Props c3mdigital, mfields. fixes #16302
git-svn-id: http://svn.automattic.com/wordpress/trunk@19687 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2012-01-05 20:50:54 +00:00
ryan
07ff8b216b Use one space, not two, after trailing punctuation. fixes #19537
git-svn-id: http://svn.automattic.com/wordpress/trunk@19593 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-12-13 23:45:31 +00:00
azaozz
4cd52de33b Align login box, messages, navigation links and header image on the login screen, props SergeyBiryukov and helenyhou, fixes #19331
git-svn-id: http://svn.automattic.com/wordpress/trunk@19414 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-11-23 07:03:00 +00:00
ryan
45ddf08e07 Introduce wp_no_robots(). Call it for pages that should never be indexed, regardless of blog privacy settings. Props nacin. fixes #19251
git-svn-id: http://svn.automattic.com/wordpress/trunk@19304 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-11-15 20:44:48 +00:00
nacin
065e4cba61 Use wp_login_url() where possible in wp-login.php. props ramiy for initial patch. Escape with a tin foil hat. fixes #19199.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19281 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-11-14 21:08:33 +00:00
nacin
b6a2aab635 Add 'for' attributes to labels in wp-login.php for extra accessibility. props ppaire, fixes #19178.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19189 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-11-06 20:03:30 +00:00
nacin
13fc52f98f Remove CSS for interim-login. see #19120.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19124 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-11-02 22:47:21 +00:00
ryan
b75f3e8f07 Avoid warning when user_login not in POST. Props ampt. fixes #18755
git-svn-id: http://svn.automattic.com/wordpress/trunk@19056 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-10-24 21:31:30 +00:00
nacin
43eae59235 Translated strings in attributes require esc_attr(). s/_e/esc_attr_e/g
git-svn-id: http://svn.automattic.com/wordpress/trunk@19028 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-10-20 15:04:46 +00:00
nacin
92ba22e537 Use wp_lostpassword_url() instead of site_url(wp-login...). Update wp_lostpassword_url() to use network_site_url(). props markoheijnen, fixes #18808.
git-svn-id: http://svn.automattic.com/wordpress/trunk@19027 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-10-20 14:40:11 +00:00
nacin
3ff82a3786 Use input type=email on wp-login registration. props scottconnerly, fixes #18761.
git-svn-id: http://svn.automattic.com/wordpress/trunk@18763 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-09-23 22:48:45 +00:00
azaozz
1cdec6ff6e Merge most admin css files, first run, see #18314
git-svn-id: http://svn.automattic.com/wordpress/trunk@18577 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-21 03:46:43 +00:00
ryan
ec4ccf2900 Deprecate get_userdatabylogin() and get_user_by_email(). Props scribu. fixes #18333
git-svn-id: http://svn.automattic.com/wordpress/trunk@18513 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-05 16:57:31 +00:00
ryan
6c81d023bb Add magic get/set/isset methods to WP_User to avoid data duplication. Standardize on WP_User::ID. Props scribu. see #15458
git-svn-id: http://svn.automattic.com/wordpress/trunk@18504 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-08-04 03:09:27 +00:00
azaozz
5256d7951f <!DOCTYPE html> for all, fixes #18202
git-svn-id: http://svn.automattic.com/wordpress/trunk@18460 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-07-22 00:25:41 +00:00
ryan
4fa8ee19e4 Fix handing of super admins that don't have a blog in get_dashboard_url() and login. Props nacin. fixes #17829
git-svn-id: http://svn.automattic.com/wordpress/trunk@18328 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-06-22 19:45:28 +00:00
koopersmith
bc7d8a9dca Refresh login form styles to match admin style refresh. Props iammattthomas. see #17324.
git-svn-id: http://svn.automattic.com/wordpress/trunk@18223 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-06-10 02:37:37 +00:00
nacin
e7739ff5f6 Move charset declaration to just inside <head>. props niallkennedy, fixes #17148.
git-svn-id: http://svn.automattic.com/wordpress/trunk@18206 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-06-08 22:22:07 +00:00
nacin
8bb7dfd228 Fix typo in docs.
git-svn-id: http://svn.automattic.com/wordpress/trunk@17976 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-05-20 06:00:45 +00:00
ryan
d4abef7def s/login_form/login_init/. Props sorich87. fixes #17411
git-svn-id: http://svn.automattic.com/wordpress/trunk@17918 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-05-13 18:33:20 +00:00
ryan
b58636e914 Send X-Frame-Options: SAMEORIGIN for admin and login pages. see #12293
git-svn-id: http://svn.automattic.com/wordpress/trunk@17826 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-05-06 21:28:53 +00:00
markjaquith
6e1fc710d9 Do not attach wp_enqueue_scripts to login_head. New login_enqueue_scripts hook. props nacin. fixes #16586 for trunk
git-svn-id: http://svn.automattic.com/wordpress/trunk@17465 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-02-18 05:10:58 +00:00
ryan
186e70bcca Use get_dashboard_url() to redirect to the active blog if the user doesn't have access to the current blog. fixes #16297
git-svn-id: http://svn.automattic.com/wordpress/trunk@17367 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-01-26 16:35:04 +00:00
ryan
8249212f7d Don't try to redirect to user admin for unpriv users unless a site admin redirect was requested. fixes #16297
git-svn-id: http://svn.automattic.com/wordpress/trunk@17351 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-01-22 18:29:43 +00:00
nacin
405e7dfa4f Correct user admin redirection checks, and deny access to the user admin when not running multisite. fixes #16297.
git-svn-id: http://svn.automattic.com/wordpress/trunk@17332 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2011-01-20 03:04:20 +00:00
ryan
587ea006b5 Translations in title attributes require esc_attr().
git-svn-id: http://svn.automattic.com/wordpress/trunk@17102 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-21 17:17:58 +00:00
nacin
8a52e23479 Add login_footer action to the default case, which doesn't use login_footer(). fixes #15880.
git-svn-id: http://svn.automattic.com/wordpress/trunk@17043 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-18 17:53:29 +00:00
ryan
3949ce12d0 Pink trailing whites.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16900 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-13 21:21:50 +00:00
nacin
c7ce2852c2 Don't clear saved username in wp_attempt_focus. props JohnPBloch, wojtek.szkutnik. fixes #14031.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16870 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-12-11 04:59:49 +00:00
westi
cab19ed4aa Wrap the reset link in <> so as to protect it when it goes over multiple lines in an email client. Fixes #14140 props demetris.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16285 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-10 23:38:15 +00:00
westi
ae213c99ca Generate Human Readable passwords as they are much more userfriendly. Fixes #13324 props Otto42.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16284 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-11-10 23:31:54 +00:00
nacin
0552424317 Revert submit_button() for wp-includes, setup-config, install, login, signup. see [16061], see #15064, fixes #15247.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16066 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-29 00:31:27 +00:00
markjaquith
fc6e89da45 Expand submit_button() capabilities. Replace all (or almost all) manual HTML instances in WP. props sbressler. see #15064
git-svn-id: http://svn.automattic.com/wordpress/trunk@16061 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-28 21:56:43 +00:00
nacin
05fde90357 Move registration.php functions to user.php. Deprecate registration.php, everything is now included by default. fixes #13761.
git-svn-id: http://svn.automattic.com/wordpress/trunk@16009 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-27 10:46:24 +00:00
dd32
4f3b9f7b7f Use Absolute URL's & API's in header redirects in more locations. See #14062
git-svn-id: http://svn.automattic.com/wordpress/trunk@16008 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-27 10:43:43 +00:00
westi
afc867fe64 Remove the ghetto code and use the script loader properly on the login page.
Ensure that we actually have convertEntities available on the login page.
Introduce a login_footer action.
Hook in the script loader to the login_header and login_footer actions.
See #5919, #15124.

git-svn-id: http://svn.automattic.com/wordpress/trunk@16000 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-27 06:57:10 +00:00
nacin
b23df1e46b Make a string accurate. props jane, see #5919.
git-svn-id: http://svn.automattic.com/wordpress/trunk@15999 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-27 06:48:01 +00:00
westi
7186208818 Bring back a seperate js file for the password strength meter and correctly mark it as a dependancy of the user profile code. See #5919.
git-svn-id: http://svn.automattic.com/wordpress/trunk@15998 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-27 06:39:20 +00:00
nacin
14ccdbec33 Pruning shears.
git-svn-id: http://svn.automattic.com/wordpress/trunk@15904 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-21 19:55:28 +00:00
nacin
5e1184aa57 Pinking shears.
git-svn-id: http://svn.automattic.com/wordpress/trunk@15843 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2010-10-19 07:48:22 +00:00