开发者 |
boogah
gyrus simonwheatley sparanoid jpry zyphonic |
---|---|
更新时间 | 2017年11月10日 04:25 |
捐献地址: | 去捐款 |
PHP版本: | 3.7 及以上 |
WordPress版本: | 4.9 |
publish_posts
, upload_files
& edit_published_posts
capabilities. Should a user with these capabilities (normally an Author, Editor or Administrator) attempt to change their password, the strong password enforcement will be triggered.
To customize the list of capabilities Force Strong Passwords checks for, use the slt_fsp_caps_check
filter.
IMPORTANT: As of WordPress 3.7, the password strength meter in core is based on the zxcvbn
JavaScript library from Dropbox. Force Strong Passwords simply passes the results of the client-side zxcvbn
check along for the server to decide if an error should be thrown. Be aware that a technically savvy user could disable this check in the browser.
Development code & issue tracking is hosted at GitHub. Pull requests are encouraged!
过滤器
slt_fsp_caps_check
(should return an array)
Modifies the array of capabilities so that strong password enforcement will be triggered for any matching users.
Ex: To make sure users who can update WordPress core require strong passwords:
add_filter( 'slt_fsp_caps_check', 'my_caps_check' );
function my_caps_check( $caps ) {
$caps[] = 'update_core';
return $caps;
}
Ex: To trigger strong password enforcement for all users:
if ( function_exists( 'slt_fsp_init' ) ) {
//plugin is activated
add_filter( 'slt_fsp_caps_check', '__return_empty_array' );
}
slt_fsp_error_message
(should return a string)
Modifies the default error message.
slt_fsp_weak_roles
(should return an array)
Modifies the array of roles that are considered "weak", and for which strong password enforcement is skipped when creating a new user. In this situation, the user object has yet to be created. This means that there are no capabilities to go by. Because of this, Force Strong Passwords has to use the role that has been set on the Add New User form.
The default array includes: subscriber
and contributor
.
force-strong-passwords
directory into the /wp-content/plugins/
directory.SCRIPT_DEBUG
is set to 'true'.FSP_PLUGIN_VERSION
constantwp_enqueue_script
version argumentslt_fsp_error_message
filter to customize error messageSLT_FSP_CAPS_CHECK
constant; added slt_fsp_caps_check
filterslt_fsp_weak_roles
filtervalidate_password_reset
3.5 hook to implement checking on reset password form (thanks simonwheatley!)SLT_FSP_CAPS_CHECK
constant