Menu

Home Forums Plugin Support Invalid Key

Tagged: 

Viewing 10 posts - 1 through 10 (of 10 total)
  • Author
    Posts
  • September 1, 2012 at 6:23 am #1962
    jpmull
    Member

    Hi, I have a blog with approximately 50 users that I’ve imported. I’m instructing users to use the “Forgot Password” link to set their initial password.

    Users are able to complete the form and receive a link to set their passwords. When they do, the are redirected to a page that simply states “Invalid Key”

    It does seem that the password reset is working, but the page with the “Invalid Key” message is confusing to my users and is causing a lot of support calls to me….

    Any ideas?

    Thanks,

    John

    September 2, 2012 at 1:05 pm #1966
    Khaled
    Member

    When any user request for password reset through User Meta, we generate a unique hash key to validate original password reset link. Once link is validated then that generated key will remove. So after validation, if anyone try with password reset url it will show “Invalid Key”.

    In your case, it may be a plugin conflict. Any other plugin may be reloaded the page after validation is completed. Please try with temporarily disable other plugin. If it not help, then please contact with our “Contact Us”

    Thanks.

    March 4, 2013 at 8:18 am #3202
    babelscribe
    Member

    Hi
    We are having this problem as well with a new site we just launched using User Meta Pro 1.1.2 and wordpress 3.41.

    A couple of observations that might help.
    1) Its not all users that have this problem
    2) Its not related to an incomplete link or the link being broken over two lines
    3) The username might have spaces in it
    4) URL encoding of the username results in %20 in place of spaces
    5) The link recieved has the % stripped out

    A url that failed recently looked like this:

    http://www.mydomain.com/member-login/?action=rp&key=fAtRH9MVms9TOEb0sC9x&login=Saint20Estate20Ltd

    Did this fail because the username looks like Saint20Estate20Ltd?

    I hope that helps and that it can be resolved soon as it is quite a problem for us as we need all members 450+ to reset their passwords.

    Many thanks

    Mouli

    March 5, 2013 at 2:40 am #3210
    Support
    Member

    Hello,

    Please upgrade to latest release. We have some fixes with new release then 1.1.2. Make sure you have completely remove existing version while update to new release. And after update, clean your browser cache so that your browser can render new/modified js/css files.

    Thanks.

    March 5, 2013 at 3:38 am #3215
    babelscribe
    Member

    Many thanks for your reply.
    I am already running 1.1.2.
    Are you suggesting that I upgrade to one of your 1.1.3 release candidates?
    If so which one would you recommend?
    I notice that 1.1.3rc2 has an upgrade notice on it.
    Does this mean that this might be the best one for me to try?

    Mouli

    March 5, 2013 at 12:34 pm #3229
    Support
    Member

    Have a try with latest release 1.1.3rc3
    Here is the changelog: http://user-meta.com/changelog/
    Thanks.

    March 15, 2013 at 11:56 pm #3443
    johnc-
    Member

    I think I know what is happening here, but still need a fix. (am running 1.1.3 pro):

    – User clicks “Lost your Password?” enters their username/email
    – User gets forgotten password link in email
    – They click it, and create a new password, and submit
    – They then click login, then are redirected to the referring URI, which was the reset password page with the now expired hash key.

    I need the redirect by referral to stay but not for this page. Whats the work around?

    John

    March 16, 2013 at 1:25 am #3453
    Support
    Member

    Hello John,
    Thank you for your observation. Here is some codes that allow you to change login redirect url based on specific condition. Please make your changes and put those code to functions.php


    add_filter( 'login_redirect', 'ump_login_redirect_function1' );
    function ump_login_redirect_function1( $redirect_to ){echo $redirect_to;
    if( $redirect_to == 'http://example.com/resetpass/' ) // If redirect page is resetpass page
    $redirect_to = get_home_url (); // Redirected to home url, you can use something else
    return $redirect_to;
    }

    add_filter( 'user_meta_filter_list', 'user_meta_filter_list_function' );
    function user_meta_filter_list_function( $list ){
    $list[ 'login_redirect' ] = true;
    return $list;
    }

    April 20, 2013 at 5:03 am #3669
    chirotouch
    Member

    I just want the default WP forgot user link (http://staff.chirotouch.com/wp-login.php?action=lostpassword) because I’m using s2member plugin and it’s locking me out of your “resetpass” page being my all pages are access restricted. Can’t I just disable this feature in your plugin? Really don’t want to do the above function to restore WP default.

    April 23, 2013 at 12:06 am #3674
    Support
    Member

    Hello,
    To disable lost password feature, Go to User Meta >> Settings >> Login Tab
    Then check “Disable lost password feature” checkbox and save your changes.
    Thanks.

  • Author
    Posts
Viewing 10 posts - 1 through 10 (of 10 total)
  • You must be logged in to reply to this topic.