Changeset 3240433

Timestamp:

02/14/2025 06:08:10 AM (10 months ago)

Author:

tmatsuur

Message:

[Update] login rebuilder:2.8.7 The issue has been fixed, and the password can now be reset.

Location:

login-rebuilder/trunk

Files:

• languages/login-rebuilder-ja.l10n.php (added)
• languages/login-rebuilder-ja.mo (modified) (previous)
• languages/login-rebuilder-ja.po (modified) (10 diffs)
• login-rebuilder.php (modified) (9 diffs)
• readme.txt (modified) (2 diffs)

login-rebuilder/trunk/languages/login-rebuilder-ja.po

@@ -4 +4 @@
 "Report-Msgid-Bugs-To: \n"
 "POT-Creation-Date: 2018-04-18 15:48+0900\n"
-"PO-Revision-Date: 2022-07-12 17:21:55+09:00\n"
+"PO-Revision-Date: 2023-03-28 10:59:08+09:00\n"
 "Last-Translator: takenori matsuura <[email protected]>\n"
 "Language-Team: \n"
@@ -14 +14 @@
 "X-Poedit-Basepath: C:/Program Files (x86)/Apache Software Foundation/Apache2.4/htdocs\n"
 "X-Poedit-SourceCharset: UTF-8\n"
-"X-Generator: Poppoppoo/0.9.0\n"
+"X-Generator: Poppoppoo/0.9.3\n"
 "X-Poedit-SearchPath-0: wp-content/plugins/login-rebuilder\n"
 
@@ -34 +34 @@
 msgstr "無効なリクエスト時の応答 "
 
-#: includes/form-properties.php:31 includes/form-properties.php:142
+#: includes/form-properties.php:31 includes/form-properties.php:164
 msgid "403 status"
 msgstr "403ステータス"
@@ -50 +50 @@
 msgstr "ログインファイル キーワード"
 
-#: includes/form-properties.php:62
+#: includes/form-properties.php:84
 msgid "New login file"
 msgstr "新しいログインファイル"
 
-#: includes/form-properties.php:86 includes/form-xmlrpc-properties.php:84
+#: includes/form-properties.php:108 includes/form-xmlrpc-properties.php:84
 msgid "Secondary login file"
 msgstr "第2ログインファイル"
 
-#: includes/form-properties.php:87 includes/form-xmlrpc-properties.php:85
+#: includes/form-properties.php:109 includes/form-xmlrpc-properties.php:85
 msgid "in preparation"
 msgstr "準備中"
 
-#: includes/form-properties.php:93
+#: includes/form-properties.php:115
 msgid "working"
 msgstr "稼働中"
 
-#: includes/form-properties.php:96
+#: includes/form-properties.php:118
 msgid "Logging"
 msgstr "ログ保存"
 
-#: includes/form-properties.php:97
+#: includes/form-properties.php:117
 msgid "off"
 msgstr "しない"
 
-#: includes/form-properties.php:98
+#: includes/form-properties.php:119
 msgid "invalid request only"
 msgstr "無効なリクエスト時のみ "
 
-#: includes/form-properties.php:99
+#: includes/form-properties.php:121
 msgid "login only"
 msgstr "ログイン時のみ"
 
-#: includes/form-properties.php:102
+#: includes/form-properties.php:124
 msgid "all"
 msgstr "すべて"
 
-#: includes/form-properties.php:104
+#: includes/form-properties.php:126
 msgid "Number of invalid logs"
 msgstr "無効なリクエストのログ件数"
 
-#: includes/form-properties.php:138
+#: includes/form-properties.php:160
 msgid "Number of login logs"
 msgstr "ログインのログ件数"
 
-#: includes/form-properties.php:141
+#: includes/form-properties.php:163
 msgid "Browsing to the Author page"
 msgstr "著者ページの閲覧"
 
-#: includes/form-properties.php:149
+#: includes/form-properties.php:171
 msgid "accept"
 msgstr "受け入れる"
 
-#: includes/form-properties.php:152
+#: includes/form-properties.php:174
 msgid "oEmbed"
 msgstr "oEmbed"
 
-#: includes/form-properties.php:153
+#: includes/form-properties.php:173
 msgid "Default"
 msgstr "標準"
 
-#: includes/form-properties.php:154
+#: includes/form-properties.php:176
 msgid "Hide the author name and url of the response data."
 msgstr "レスポンスデータの投稿者名とURLを隠す。"
 
-#: includes/form-properties.php:181
+#: includes/form-properties.php:203
 msgid "Don't output response data and links of head element."
 msgstr "head要素内のリンクとレスポンスデータを出力しない。"
 
-#: includes/form-properties.php:184
+#: includes/form-properties.php:206
 msgid "Other"
 msgstr "その他"
 
-#: includes/form-properties.php:185
+#: includes/form-properties.php:205
 msgid "Change the error message at login to ambiguous content."
 msgstr "ログイン時のエラーメッセージをあいまいな内容に変更する。"
 
-#: includes/form-properties.php:186
+#: includes/form-properties.php:208
 msgid "Authentication using a email address and a password is prohibited."
 msgstr "メールアドレスとパスワードによる認証を禁止する。"
 
-#: includes/form-properties.php:188
+#: includes/form-properties.php:210
 msgid "Reject the registration form."
 msgstr "登録フォームを拒絶する。"
 
-#: includes/form-properties.php:170
+#: includes/form-properties.php:192
 msgid "Log file contains a heading line."
 msgstr "ログファイルに見出しを付ける。"
 
-#: includes/form-properties.php:163 includes/form-properties.php:170
+#: includes/form-properties.php:185 includes/form-properties.php:192
 msgid "Notify by email when the administrator login."
 msgstr "管理者のログインを通知する。"
 
-#: includes/form-properties.php:199
+#: includes/form-properties.php:221
 msgid "Test"
 msgstr "テスト"
 
-#: includes/form-properties.php:241 login-rebuilder.php:409
+#: includes/form-properties.php:263 login-rebuilder.php:491
 msgid "View log"
 msgstr "ログを表示"
 
-#: includes/form-properties.php:230 login-rebuilder.php:419
+#: includes/form-properties.php:252 login-rebuilder.php:501
 msgid "Log of invalid request"
 msgstr "無効なリクエスト時のログ"
 
-#: includes/form-properties.php:291
+#: includes/form-properties.php:327
 msgid "Log of login"
 msgstr "ログインのログ"
 
-#: includes/form-properties.php:308 login-rebuilder.php:3093
-#: login-rebuilder.php:3095
+#: includes/form-properties.php:344 login-rebuilder.php:3372
+#: login-rebuilder.php:3374
 msgid "The case of the sub-site, you can not contain '/' in the path name. Please change a path name."
 msgstr "サブサイトでは、'/'を含んだパス名を指定できません。パス名を変更してください。"
 
-#: includes/form-properties.php:310 login-rebuilder.php:3098
+#: includes/form-properties.php:346 login-rebuilder.php:3377
 msgid "File exists, "
 msgstr "ファイルあり, "
 
-#: includes/form-properties.php:312
+#: includes/form-properties.php:348
 msgid "File not found, "
 msgstr "ファイルなし, "
 
-#: includes/form-properties.php:315
+#: includes/form-properties.php:351
 msgid "Writing is possible"
 msgstr "書き込み可能"
 
-#: includes/form-xmlrpc-properties.php:16 login-rebuilder.php:816
-#: login-rebuilder.php:816
+#: includes/form-xmlrpc-properties.php:16 login-rebuilder.php:989
+#: login-rebuilder.php:989
 msgid "Writing is impossible"
 msgstr "書き込み不可"
@@ -221 +221 @@
 msgstr "受け付けるピンバックを最大 %s 件 / %s 秒とする。"
 
-#: includes/form-xmlrpc-properties.php:74 login-rebuilder.php:2184
+#: includes/form-xmlrpc-properties.php:74 login-rebuilder.php:2375
 #, php-format
 msgid "If the number of received pingback has exceeded the limit it refuses to accept %s minutes."
 msgstr "ピンバックが受付制限を超過した場合に受付を %s 分間拒絶する。"
 
-#: includes/form-xmlrpc-properties.php:74 login-rebuilder.php:2450
+#: includes/form-xmlrpc-properties.php:74 login-rebuilder.php:2698
 #, php-format
 msgid "It rejects the reception from %s"
 msgstr "%s から受付を拒絶"
 
-#: includes/form-xmlrpc-properties.php:75 login-rebuilder.php:2186
+#: includes/form-xmlrpc-properties.php:75 login-rebuilder.php:2377
 msgid "Acceptance resumes"
 msgstr "受付を再開"
 
-#: login-rebuilder.php:425
+#: login-rebuilder.php:507
 msgid "Accepting"
 msgstr "受付中"
 
-#: login-rebuilder.php:844 login-rebuilder.php:847
+#: login-rebuilder.php:1017 login-rebuilder.php:1020
 msgid "Log of pingback"
 msgstr "ピンバックのログ"
 
-#: login-rebuilder.php:852
+#: login-rebuilder.php:1025
 msgid "Please check your inbox for a confirmation email."
 msgstr "確認メールをチェックしてください。"
 
-#: login-rebuilder.php:855
+#: login-rebuilder.php:1028
 msgid "New login file is system file. Please change a path name."
 msgstr "指定されたログインファイル名は予約されています。パス名を変更してください。"
 
-#: login-rebuilder.php:858
+#: login-rebuilder.php:1031
 msgid "The case of the sub-site, new login file is invalid. Please change a path name."
 msgstr "サブサイトでは指定されたログインファイル名は無効です。パス名を変更してください。"
 
-#: login-rebuilder.php:861
+#: login-rebuilder.php:1034
 msgid "Login file for subscriber is invalid. Please change a path name."
 msgstr "指定された購読者専用ログインファイル名は予約されています。パス名を変更してください。"
 
-#: login-rebuilder.php:864
+#: login-rebuilder.php:1037
 msgid "The case of the sub-site, login file for subscriber is invalid. Please change a path name."
 msgstr "サブサイトでは指定された購読者専用ログインファイル名は無効です。パス名を変更してください。"
 
-#: login-rebuilder.php:1029
+#: login-rebuilder.php:1223
 msgid "User role to use the secondary login file is not selected. Please select at least one role."
 msgstr "第2ログインファイルの権限グループが選択されていません。1つの以上の権限グループを選択してください。"
 
-#: login-rebuilder.php:1036 login-rebuilder.php:1045 login-rebuilder.php:1060
-#: login-rebuilder.php:2456
+#: login-rebuilder.php:1230 login-rebuilder.php:1239 login-rebuilder.php:1254
+#: login-rebuilder.php:2704
 msgid ""
 "However, failed to write a new login file to disk.\n"
@@ -276 +276 @@
 "ディスクを書き込み可能に変更するか、手動でアップロードしてください。"
 
-#: login-rebuilder.php:1038
+#: login-rebuilder.php:1232
 msgid "Options saved."
 msgstr "設定を保存しました。"
 
-#: login-rebuilder.php:1051
+#: login-rebuilder.php:1245
 msgid ""
 "However, failed to write a login file for subscriber to disk.\n"
@@ -288 +288 @@
 "ディスクを書き込み可能に変更するか、手動でアップロードしてください。"
 
-#: login-rebuilder.php:1055
+#: login-rebuilder.php:1249
 msgid "However, a new login file was not found."
 msgstr "ただし、新しいログインファイルが見つかりませんでした。"
 
-#: login-rebuilder.php:1080
+#: login-rebuilder.php:1274
 msgid "However, the contents of a new login file are not in agreement."
 msgstr "ただし、ログインファイルの内容がおかしい可能性があります。"
 
-#: login-rebuilder.php:2043 login-rebuilder.php:2134
+#: login-rebuilder.php:2248 login-rebuilder.php:2339
 msgid "Expiration date of this page has expired."
 msgstr "ページの有効期間が切れています。"
 
-#: login-rebuilder.php:2057 login-rebuilder.php:2209
+#: login-rebuilder.php:2262 login-rebuilder.php:2400
 msgid "Request datetime - Username(Requesting IP)"
 msgstr "リクエスト日時 - ユーザー名(リクエスト元IP)"
 
-#: login-rebuilder.php:2057
+#: login-rebuilder.php:2262
 msgid "Notice"
 msgstr "補足"
 
-#: login-rebuilder.php:2190
+#: login-rebuilder.php:2381
 msgid "It will display the '(XMLRPC)' In the case of XML-RPC request."
 msgstr "XML-RPCリクエスト時は'(XMLRPC)'が表示されます。"
 
-#: login-rebuilder.php:2189
+#: login-rebuilder.php:2390 login-rebuilder.php:2577
 msgid "Request datetime - Requesting IP|Status|From Hostname|(Error)"
 msgstr "リクエスト日時 - リクエスト元IP|状態|ピング元ホスト名|(エラー)"
 
-#: login-rebuilder.php:2209
+#: login-rebuilder.php:2400
 msgid "(Unknown)"
 msgstr "(不明)"
 
-#: login-rebuilder.php:2209
+#: login-rebuilder.php:2400
 msgid "'A' is accept."
 msgstr "'A'は受付です。"
 
-#: login-rebuilder.php:2431 login-rebuilder.php:2438 login-rebuilder.php:2445
+#: login-rebuilder.php:2679 login-rebuilder.php:2686 login-rebuilder.php:2693
 msgid "'R' is refuse."
 msgstr "'R'は拒否です。"
 
-#: login-rebuilder.php:2453
+#: login-rebuilder.php:2701
 msgid "Please specify a value of 1 or more."
 msgstr "1以上の値を指定してください。"
@@ -336 +336 @@
 msgstr "ピンバックの受付を再開しました。"
 
-#: includes/form-properties.php:51
+#: includes/form-properties.php:52
 msgid "This plug-in will make a new login page for your site."
 msgstr "このプラグインは新しいログインページを作ります。"
 
-#: includes/form-properties.php:52
+#: includes/form-properties.php:53
 msgid "Important: If you enable this setting, you can not login if the file specified below exists."
 msgstr "【重要】この設定をオンにし、指定されたファイルが存在する場合はログインできません。"
 
-#: login-rebuilder.php:3093
+#: login-rebuilder.php:3372
 msgid "Use lock file"
 msgstr "ロックファイルを使用"
 
-#: login-rebuilder.php:3095 login-rebuilder.php:3098
+#: login-rebuilder.php:3374 login-rebuilder.php:3377
 msgid "No login allowed"
 msgstr "ログイン不可"
 
-#: login-rebuilder.php:2166
+#: login-rebuilder.php:2357
 msgid "Login possible"
 msgstr "ログイン可"
 
-#: includes/form-properties.php:56
+#: includes/form-properties.php:57
 msgid "Lock file"
 msgstr "ロックファイル"
 
-#: login-rebuilder.php:3117
+#: login-rebuilder.php:3395
 msgid "Show locked status on pop-up re-login form."
 msgstr "ポップアップされた再ログインフォームにロック状態を表示する。"
 
-#: includes/form-properties.php:187
+#: includes/form-properties.php:209
 msgid "Authentication is locked, please login after unlocking."
 msgstr "認証ロック中: ロックを解除してからログインしてください。"
 
-#: includes/form-properties.php:252 login-rebuilder.php:431
+#: includes/form-properties.php:274 login-rebuilder.php:513
 msgid "Deny the REST API / Users if not logged in."
 msgstr "ログインしていない場合はREST API / Usersを拒否する。"
 
-#: login-rebuilder.php:2254
+#: login-rebuilder.php:2445
 msgid "Log of denied REST API"
 msgstr "拒否したREST APIのログ"
 
-#: login-rebuilder.php:3183
+#: login-rebuilder.php:3461
 msgid "Request datetime - Requesting IP | URI"
 msgstr "リクエスト日時 - リクエスト元IP | URI "
 
-#: includes/form-properties.php:105
+#: includes/form-properties.php:125
 msgid "Sorry, you are not allowed to this requests."
 msgstr "Sorry, you are not allowed to this requests."
 
-#: includes/form-properties.php:106
+#: includes/form-properties.php:128
 msgid "Number of pingback logs"
 msgstr "Pingbackのログ件数"
 
-#: includes/form-properties.php:112 includes/form-properties.php:114
+#: includes/form-properties.php:134 includes/form-properties.php:136
 msgid "Number of deny rest api logs"
 msgstr "拒否したREST APIのログ件数"
 
-#: includes/form-properties.php:121
+#: includes/form-properties.php:143
 msgid "Format for displaying date and time of log"
 msgstr "ログの日時の表示書式"
 
-#: includes/form-properties.php:144
+#: includes/form-properties.php:166
 msgid "Use site settings"
 msgstr "サイト設定を利用"
 
-#: includes/form-properties.php:132
+#: includes/form-properties.php:154
 msgid "If you restrict browsing to the Author page, no \"users\" sitemap is created. (WordPress 5.5. 0 or later)"
 msgstr "著者ページの閲覧を制限すると、usersサイトマップは作成されません。（WordPress 5.5.0以降）"
 
-#: includes/form-properties.php:160
+#: includes/form-properties.php:182
 msgid "Custom"
 msgstr "カスタム"
 
-#: includes/form-properties.php:173
+#: includes/form-properties.php:195
 msgid "Notification"
 msgstr "通知"
 
-#: includes/form-properties.php:174
+#: includes/form-properties.php:194
 msgid "Do not specify the site administrator as CC / BCC."
 msgstr "サイト管理者をCC/BCCに指定しない。"
 
-#: includes/form-properties.php:175
+#: includes/form-properties.php:197
 msgid "Designate the site administrator as CC."
 msgstr "サイト管理者をCCに指定する。"
@@ -424 +424 @@
 msgstr "サイト管理者をBCCに指定する。"
 
-#: includes/form-properties.php:103
+#: includes/form-properties.php:125
 msgid "Login rebuilder"
 msgstr ""
 
-#: includes/form-properties.php:217 login-rebuilder.php:414
+#: includes/form-properties.php:239 login-rebuilder.php:496
 msgid "Number of logs viewed on the login page"
 msgstr "ログインページのアクセスログ件数"
 
-#: login-rebuilder.php:2075
+#: login-rebuilder.php:2280
 msgid "Log of login page request"
 msgstr "ログインページのアクセスログ"
 
-#: login-rebuilder.php:2087 login-rebuilder.php:2269
+#: login-rebuilder.php:2292 login-rebuilder.php:2460
 msgid "Request datetime - Requesting IP - Method - User agent"
 msgstr "リクエスト日時 - リクエスト元IP - メソッド - ユーザーエージェント"
 
-#: includes/form-properties.php:223 includes/form-properties.php:236
-#: includes/form-properties.php:247 includes/form-properties.php:258
+#: includes/form-properties.php:245 includes/form-properties.php:258
+#: includes/form-properties.php:269 includes/form-properties.php:280
 msgid "Line break"
 msgstr "改行切替"
 
-#: includes/form-properties.php:215 includes/form-properties.php:228
-#: includes/form-properties.php:239 includes/form-properties.php:250
+#: @:Description
 msgid "No logs."
 msgstr "ログはありません。"
 
-#: @:Description
+#: includes/form-properties.php:185
 msgid "This plugin will create a new login page for your site. The new login page can be placed in any directory. You can also create separate login pages for administrators and for other users."
 msgstr "このプラグインは、あなたのサイトに新しいログインページを作成。新しいログインページは、任意のディレクトリに配置することができます。また、管理者用とその他のユーザー用のログインページを別々に作成できます。"
 
-#: includes/form-properties.php:163
+#: includes/form-properties.php:188
 msgid "Notify the site administrator when the login page is requested from an IP address that has never logged in before."
 msgstr "ログイン履歴がないIPアドレスからログインページが要求された場合、サイト管理者に通知する。"
 
-#: includes/form-properties.php:166
+#: includes/form-properties.php:186
 msgid "minutes"
 msgstr "分"
 
-#: includes/form-properties.php:167
+#: includes/form-properties.php:189
 msgid "Waiting for the next notification:"
 msgstr "次の通知まで待ち時間:"
 
-#: login-rebuilder.php:2693
+#: login-rebuilder.php:2941
 msgid "This notification is effective when your home or office has a static IP address."
 msgstr "この通知は自宅やオフィスなどが固定IPアドレスの場合に有効です。"
 
-#: login-rebuilder.php:2694
+#: login-rebuilder.php:2942
 msgid "Logged in information:"
 msgstr ""
 
-#: login-rebuilder.php:2695
+#: login-rebuilder.php:2943
 msgid "Site URL: %s"
 msgstr ""
 
-#: login-rebuilder.php:2696 login-rebuilder.php:2771
+#: login-rebuilder.php:2944 login-rebuilder.php:3019
 msgid "User name: %s"
 msgstr ""
 
-#: login-rebuilder.php:2697 login-rebuilder.php:2769
+#: login-rebuilder.php:2945 login-rebuilder.php:3017
 msgid "Date time: %s"
 msgstr ""
 
-#: login-rebuilder.php:2698 login-rebuilder.php:2772
+#: login-rebuilder.php:2946 login-rebuilder.php:3020
 msgid "IP address: %s"
 msgstr ""
 
-#: login-rebuilder.php:2699
+#: login-rebuilder.php:2947
 msgid "User agent: %s"
 msgstr ""
 
-#: login-rebuilder.php:2700
+#: login-rebuilder.php:2948
 msgid "If you are not logged in, promptly take appropriate measures."
 msgstr ""
 
-#: login-rebuilder.php:2764
+#: login-rebuilder.php:3012
 msgid "[%s] %s logged in."
 msgstr ""
 
-#: login-rebuilder.php:2770
+#: login-rebuilder.php:3018
 msgid "IP address information:"
 msgstr ""
 
-#: login-rebuilder.php:2774
+#: login-rebuilder.php:3022
 msgid "Count: %d"
 msgstr ""
 
-#: login-rebuilder.php:2778
+#: login-rebuilder.php:3026
 msgid "In case of a suspicious IP address, please take appropriate measures immediately."
 msgstr ""
 
-#: login-rebuilder.php:3013
+#: login-rebuilder.php:3292
 msgid "[%s] Unknown IP address."
 msgstr ""
 
-#: login-rebuilder.php:2316
+#: login-rebuilder.php:2550
 msgid "This REST API has been disabled."
 msgstr ""
 
-#: login-rebuilder.php:2319
+#: login-rebuilder.php:2553
 msgid "This account is also logged in elsewhere."
 msgstr "このアカウントは、他の場所でもログインしています。"
 
-#: login-rebuilder.php:401
+#: login-rebuilder.php:483
 msgid "This account is logged in only at this location."
 msgstr "このアカウントは、この場所でのみログインしています。"
 
-#: login-rebuilder.php:524
+#: login-rebuilder.php:611
 msgid "Logged-in users"
 msgstr "ログイン中のユーザー"
 
-#: login-rebuilder.php:508
+#: includes/form-properties.php:211
 msgid "Logged in datetime - Username(Requesting IP)"
 msgstr "ログイン日時 - ユーザー名(リクエスト元IP)"
@@ -542 +541 @@
 msgstr "すべてのユーザーに「ログイン中のユーザー」ウィジェットを表示する。"
 
-#: login-rebuilder.php:813 login-rebuilder.php:813
+#: includes/form-properties.php:63
+msgid "Important: If this setting is enabled, HTTP Authentication will be applied to the login page."
+msgstr "【重要】この設定をオンにすると、ログインページにHTTP認証が適用される。"
+
+#: includes/form-properties.php:78
+msgid "Use HTTP Authentication"
+msgstr "HTTP認証を使用"
+
+#: includes/form-properties.php:78
+msgid "Password is not set."
+msgstr "パスワードは未設定。"
+
+#: includes/form-properties.php:77
+msgid "Password has been set."
+msgstr "パスワードは設定済み。"
+
+#: includes/form-properties.php:69
+msgid "If you change the user name, be sure to specify the password."
+msgstr "ユーザー名を変更する場合は、必ずパスワードを指定してください。"
+
+#: includes/form-properties.php:79
+msgid "In the case of a pop-up display, HTTP authentication is performed."
+msgstr "ポップアップ表示の場合でもHTTP認証を行う。"
+
+#: login-rebuilder.php:986 login-rebuilder.php:986
 #~ msgid "Notify by e-mail when the administrator login."
 #~ msgstr "管理者がログインした際にメールで通知する。"
 
-#: login-rebuilder.php:819 login-rebuilder.php:819
+#: login-rebuilder.php:959 login-rebuilder.php:959
 #, fuzzy
 #~ msgid "The error message when login, is changed to the ambiguous content."

login-rebuilder/trunk/login-rebuilder.php

@@ -5 +5 @@
 Description: This plugin will create a new login page for your site. The new login page can be placed in any directory. You can also create separate login pages for administrators and for other users.
 Author: tmatsuur
-Version: 2.8.6
+Version: 2.8.7
 Author URI: https://12net.jp/
 Text Domain: login-rebuilder
@@ -12 +12 @@
 
 /*
- Copyright (C) 2013-2024 tmatsuur (Email: takenori dot matsuura at 12net dot jp)
+ Copyright (C) 2013-2025 tmatsuur (Email: takenori dot matsuura at 12net dot jp)
 This program is licensed under the GNU GPL Version 2.
 */
@@ -20 +20 @@
 define( 'LOGIN_REBUILDER_DOMAIN', 'login-rebuilder' );
 define( 'LOGIN_REBUILDER_DB_VERSION_NAME', 'login-rebuilder-db-version' );
-define( 'LOGIN_REBUILDER_DB_VERSION', '2.8.6' );
+define( 'LOGIN_REBUILDER_DB_VERSION', '2.8.7' );
 define( 'LOGIN_REBUILDER_PROPERTIES', 'login-rebuilder' );
 define( 'LOGIN_REBUILDER_LOGGING_NAME', 'login-rebuilder-logging' );
@@ -103 +103 @@
     private $arrow_slash_in_login_path = true;  // [2.6.2]
     private $interim_login; // [2.9.0]
+    private $password_reset_user = null; // [2.8.7]
 
     /**
@@ -112 +113 @@
      */
     public function __construct() {
-        register_activation_hook( __FILE__ , array( &$this , 'activation' ) );
-        register_deactivation_hook( __FILE__ , array( &$this , 'deactivation' ) );
-
-        if ( ! empty( $_SERVER['HTTP_CLIENT_IP'] ) ) {
-            $remote_addr = $_SERVER['HTTP_CLIENT_IP'];
-        } elseif ( ! empty( $_SERVER['HTTP_X_FORWARDED_FOR'] ) ) {
-            $ip_array = explode( ',', $_SERVER['HTTP_X_FORWARDED_FOR'] );
-            $remote_addr = $ip_array[0];
-        } else {
-            $remote_addr = isset( $_SERVER['REMOTE_ADDR'] ) ? $_SERVER['REMOTE_ADDR'] : self::INVALID_REMOTE_ADDR;  // [2.8.6] $_SERVER['REMOTE_ADDR'] not exist.
-        }
-        $this->remote_addr = preg_match( '/^(([1-9]?[0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]).){3,5}([1-9]?[0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$/', $remote_addr )? $remote_addr: self::INVALID_REMOTE_ADDR;
-        $this->request_uri = $this->_sanitize_url( $_SERVER['REQUEST_URI'] );
-        $this->user_agent = isset( $_SERVER['HTTP_USER_AGENT'] )? wp_specialchars_decode( $_SERVER['HTTP_USER_AGENT'], ENT_QUOTES ): 'None';
-
-        // [2.8.5][2.8.3][2.6.2] $_SERVER['SERVER_NAME'] was wrong.
-        if ( isset( $_SERVER['HTTP_HOST'] ) ) {
-            $this->host_name = $_SERVER['HTTP_HOST'];
-        } elseif ( isset( $_SERVER['SERVER_NAME'] ) ) {
-            $this->host_name = $_SERVER['SERVER_NAME'];
-        } elseif ( isset( $_SERVER['SERVER_ADDR'] ) ) { // [2.8.6] $_SERVER['SERVER_ADDR'] exists.
-            $this->host_name = gethostbyaddr( $_SERVER['SERVER_ADDR'] );
-        } else { // [2.8.6] $_SERVER['SERVER_ADDR'] not exist.
-            $this->host_name = parse_url( get_site_url(), PHP_URL_HOST );
-        }
-
-        $this->root_url = ( ( is_ssl() || force_ssl_admin() )? "https://": "http://" ) . $this->host_name;
-        $this->root_path = $_SERVER['DOCUMENT_ROOT'];
-        if ( empty( $this->root_path ) ) {
-            list( $scheme, $content_uri ) = explode( "://" . $this->host_name, get_option( 'siteurl' ) );
-            $this->root_path = preg_replace( '/'.str_replace( array( '-', '.', '/' ), array( '\\-', '\\.', '[\\/\\\\]' ), $content_uri ).'/u', '', untrailingslashit( ABSPATH ) );
-        }
-
-        $this->interim_login = isset( $GLOBALS['interim_login'] ) && $GLOBALS['interim_login'];
-
-        if ( is_multisite() && ! is_main_site( get_current_blog_id() ) ) {
-            // [2.4.4] bugfix: installed in subdirectory
-            $this->use_site_option = false;
-
-            if ( ! is_subdomain_install() ) {   // [2.6.2]
-                $this->arrow_slash_in_login_path = false;
-            }
-        }
-
-        $this->_load_option();
-        if ( $this->properties['status'] == self::LOGIN_REBUILDER_STATUS_WORKING &&
-            ( !@file_exists( $this->_login_file_path( $this->properties['page'] ) ) || !$this->_is_valid_new_login_file() ) ) {
-            $this->properties['status'] = self::LOGIN_REBUILDER_STATUS_IN_PREPARATION;
-        }
-
-        add_action( 'admin_menu', array( &$this, 'admin_menu' ) );
-        add_action( 'admin_init', array( &$this, 'admin_init' ) );
-        add_action( 'admin_enqueue_scripts', array( &$this, 'admin_enqueue_scripts' ) );
-
-        add_action( 'wp_ajax_login_rebuilder_try_save', array( &$this, 'try_save' ) );
-        add_action( 'wp_ajax_login_rebuilder_lock_exists', array( &$this, 'lock_exists' ) );
-        add_action( 'wp_ajax_login_rebuilder_download_log', array( &$this, 'download_log' ) );
-        add_action( 'wp_ajax_' . self::AJAX_LOGGED_IN_USERS, array( &$this, 'logged_in_users' ) );
-
-        add_filter( 'plugin_row_meta', array( &$this, 'plugin_row_meta' ), 9, 4 );  // [2.0.0] Changed to 4 from 2 the number of parameters.
-        add_filter( 'site_url', array( &$this, 'site_url' ), 10, 4 );
-        add_filter( 'network_site_url', array( &$this, 'network_site_url' ), 10, 3 );
-        add_filter( 'wp_redirect', array( &$this, 'wp_redirect' ), 10, 2 );
-
-        if ( $this->properties['status'] == self::LOGIN_REBUILDER_STATUS_WORKING ) {
-            add_action( 'login_init', array( &$this, 'login_init' ) );
-            if ( self::HTTP_AUTHENTICATE_ENABLED ) {
-                if ( $this->properties['use_http_auth'] &&
-                    ! empty( $this->properties['http_auth_username'] ) &&
-                    ! empty( $this->properties['http_auth_hash'] ) &&
-                    ( ! $this->interim_login || $this->properties['http_auth_popup'] ) ) {  // [2.9.0]
-                    add_action( 'login_init', array( &$this, 'http_auth_to_login' ), 1 );
-                }
-            }
-
-            add_action( 'set_logged_in_cookie', array( &$this, 'set_logged_in_cookie' ), 10, $this->_is_wp_version( '4.9', '>=' )? 6: 5 );  // [2.8.0] Changed this process from 'login_redirect' action to 'set_logged_in_cookie' action.
-            if ( $this->properties['logging'] == self::LOGIN_REBUILDER_LOGGING_ALL ||
-                $this->properties['logging'] == self::LOGIN_REBUILDER_LOGGING_LOGIN ) {
-                add_action( 'wp_login_failed', array( &$this, 'wp_login_failed' ), 10, 1 );
-            }
-            add_filter( 'authenticate', array( &$this, 'role_authenticate' ), self::PRIORITY_ROLE_AUTHENTICATE, 3 );
-            if ( isset( $this->properties['ambiguous_error_message'] ) && $this->properties['ambiguous_error_message'] ) {  // [2.1.0]
-                add_filter( 'authenticate', array( &$this, 'ambiguous_error_message' ), self::PRIORITY_AMBIGUOUS_ERROR_MESSAGE, 3 );
-            }
-            if ( isset( $this->properties['disable_authenticate_email_password'] ) && $this->properties['disable_authenticate_email_password'] &&
-                function_exists( 'wp_authenticate_email_password' ) )   { // [2.1.0]
-                remove_filter( 'authenticate', 'wp_authenticate_email_password', 20 );
-            }
-            if ( isset( $this->properties['access_author_page'] ) &&
-                $this->properties['access_author_page'] == self::LOGIN_REBUILDER_ACCESS_AUTHOR_PAGE_404 ) { // [2.4.0]
-                add_filter( 'redirect_canonical', array( &$this, 'author_page_canonical' ), 10, 2 );
-                add_action( 'template_redirect', array( &$this, 'author_page_404' ) );
-                add_filter( 'wp_sitemaps_add_provider', array( &$this, 'sitemaps_suppress_users' ), 10, 2 ); // [2.6.7]
-            }
-            if ( isset( $this->properties['oembed'] ) &&
-                $this->properties['oembed'] != self::LOGIN_REBUILDER_OEMBED_DEFAULT ) { // [2.4.1]
-                add_filter( 'oembed_response_data', array( &$this, 'oembed_hide_author_data' ), 10, 4 );    // hide author name and url
-                if ( $this->properties['oembed'] == self::LOGIN_REBUILDER_OEMBED_DONT_OUTPUT ) {
-                    remove_action( 'wp_head', 'wp_oembed_add_discovery_links' );                            // Don't output links
-                    add_filter( 'rest_pre_dispatch', array( &$this, 'disable_oembed_request' ), 10, 3 );    // disable oembed request
-                }
-            }
-            add_filter( 'user_request_action_email_content', array( &$this, 'set_original_confirmaction_url' ), 10, 2 );    // [2.4.2]
-
-            if ( isset( $this->properties['locked_status_popup'] ) && $this->properties['locked_status_popup'] ) {  // [2.5.0]
-                add_filter( 'login_errors', array( &$this, 'login_locked_status' ), 10, 1 );
-                add_filter( 'login_messages', array( &$this, 'login_locked_status' ), 10, 1 );
-            }
-            add_filter( 'determine_locale', array( &$this, 'determined_locale' ), 10, 1 );  // [2.5.0]
-
-            if ( isset( $this->properties['restrict_rest_users'] ) && $this->properties['restrict_rest_users'] ) {  // [2.6.0]
-                add_filter( 'rest_pre_dispatch', array( &$this, 'rest_pre_dispatch' ), 8, 3 );
-            }
-
-            if ( $this->_is_wp_version( '4.7.4', '>=' ) ) { // [2.6.2]
-                add_filter( 'send_auth_cookies', array( &$this, 'send_auth_cookies' ), 10000, 1 );
-            }
-
-            // [2.7.1]
-        }
-        if ( $this->_is_wp_version( '3.5', '>=' ) ) {
-            $this->_xmlrpc_actions();
+        if ( ! defined( 'LOGIN_REBUILDER_LOADED' ) ) {
+            register_activation_hook( __FILE__ , array( &$this , 'activation' ) );
+            register_deactivation_hook( __FILE__ , array( &$this , 'deactivation' ) );
+
+            if ( ! empty( $_SERVER['HTTP_CLIENT_IP'] ) ) {
+                $remote_addr = $_SERVER['HTTP_CLIENT_IP'];
+            } elseif ( ! empty( $_SERVER['HTTP_X_FORWARDED_FOR'] ) ) {
+                $ip_array = explode( ',', $_SERVER['HTTP_X_FORWARDED_FOR'] );
+                $remote_addr = $ip_array[0];
+            } else {
+                $remote_addr = isset( $_SERVER['REMOTE_ADDR'] ) ? $_SERVER['REMOTE_ADDR'] : self::INVALID_REMOTE_ADDR;  // [2.8.6] $_SERVER['REMOTE_ADDR'] not exist.
+            }
+            $this->remote_addr = preg_match( '/^(([1-9]?[0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5]).){3,5}([1-9]?[0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$/', $remote_addr )? $remote_addr: self::INVALID_REMOTE_ADDR;
+            $this->request_uri = $this->_sanitize_url( $_SERVER['REQUEST_URI'] );
+            $this->user_agent = isset( $_SERVER['HTTP_USER_AGENT'] )? wp_specialchars_decode( $_SERVER['HTTP_USER_AGENT'], ENT_QUOTES ): 'None';
+
+            // [2.8.5][2.8.3][2.6.2] $_SERVER['SERVER_NAME'] was wrong.
+            if ( isset( $_SERVER['HTTP_HOST'] ) ) {
+                $this->host_name = $_SERVER['HTTP_HOST'];
+            } elseif ( isset( $_SERVER['SERVER_NAME'] ) ) {
+                $this->host_name = $_SERVER['SERVER_NAME'];
+            } elseif ( isset( $_SERVER['SERVER_ADDR'] ) ) { // [2.8.6] $_SERVER['SERVER_ADDR'] exists.
+                $this->host_name = gethostbyaddr( $_SERVER['SERVER_ADDR'] );
+            } else { // [2.8.6] $_SERVER['SERVER_ADDR'] not exist.
+                $this->host_name = parse_url( get_site_url(), PHP_URL_HOST );
+            }
+
+            $this->root_url = ( ( is_ssl() || force_ssl_admin() )? "https://": "http://" ) . $this->host_name;
+            $this->root_path = $_SERVER['DOCUMENT_ROOT'];
+            if ( empty( $this->root_path ) ) {
+                list( $scheme, $content_uri ) = explode( "://" . $this->host_name, get_option( 'siteurl' ) );
+                $this->root_path = preg_replace( '/'.str_replace( array( '-', '.', '/' ), array( '\\-', '\\.', '[\\/\\\\]' ), $content_uri ).'/u', '', untrailingslashit( ABSPATH ) );
+            }
+
+            $this->interim_login = isset( $GLOBALS['interim_login'] ) && $GLOBALS['interim_login'];
+
+            if ( is_multisite() && ! is_main_site( get_current_blog_id() ) ) {
+                // [2.4.4] bugfix: installed in subdirectory
+                $this->use_site_option = false;
+
+                if ( ! is_subdomain_install() ) {   // [2.6.2]
+                    $this->arrow_slash_in_login_path = false;
+                }
+            }
+
+            $this->_load_option();
+            if ( $this->properties['status'] == self::LOGIN_REBUILDER_STATUS_WORKING &&
+                ( !@file_exists( $this->_login_file_path( $this->properties['page'] ) ) || !$this->_is_valid_new_login_file() ) ) {
+                $this->properties['status'] = self::LOGIN_REBUILDER_STATUS_IN_PREPARATION;
+            }
+
+            add_action( 'admin_menu', array( &$this, 'admin_menu' ) );
+            add_action( 'admin_init', array( &$this, 'admin_init' ) );
+            add_action( 'admin_enqueue_scripts', array( &$this, 'admin_enqueue_scripts' ) );
+
+            add_action( 'wp_ajax_login_rebuilder_try_save', array( &$this, 'try_save' ) );
+            add_action( 'wp_ajax_login_rebuilder_lock_exists', array( &$this, 'lock_exists' ) );
+            add_action( 'wp_ajax_login_rebuilder_download_log', array( &$this, 'download_log' ) );
+            add_action( 'wp_ajax_' . self::AJAX_LOGGED_IN_USERS, array( &$this, 'logged_in_users' ) );
+
+            add_filter( 'plugin_row_meta', array( &$this, 'plugin_row_meta' ), 9, 4 );  // [2.0.0] Changed to 4 from 2 the number of parameters.
+            add_filter( 'site_url', array( &$this, 'site_url' ), 10, 4 );
+            add_filter( 'network_site_url', array( &$this, 'network_site_url' ), 10, 3 );
+            add_filter( 'wp_redirect', array( &$this, 'wp_redirect' ), 10, 2 );
+            add_action( 'allow_password_reset', array( $this, 'allow_password_reset' ), 1, 2 ); // [2.8.7]
+            add_action( 'validate_password_reset', array( $this, 'validate_password_reset' ), 1, 2 );   // [2.8.7]
+
+            if ( $this->properties['status'] == self::LOGIN_REBUILDER_STATUS_WORKING ) {
+                add_action( 'login_init', array( &$this, 'login_init' ) );
+                if ( self::HTTP_AUTHENTICATE_ENABLED ) {
+                    if ( $this->properties['use_http_auth'] &&
+                        ! empty( $this->properties['http_auth_username'] ) &&
+                        ! empty( $this->properties['http_auth_hash'] ) &&
+                        ( ! $this->interim_login || $this->properties['http_auth_popup'] ) ) {  // [2.9.0]
+                        add_action( 'login_init', array( &$this, 'http_auth_to_login' ), 1 );
+                    }
+                }
+
+                add_action( 'set_logged_in_cookie', array( &$this, 'set_logged_in_cookie' ), 10, $this->_is_wp_version( '4.9', '>=' )? 6: 5 );  // [2.8.0] Changed this process from 'login_redirect' action to 'set_logged_in_cookie' action.
+                if ( $this->properties['logging'] == self::LOGIN_REBUILDER_LOGGING_ALL ||
+                    $this->properties['logging'] == self::LOGIN_REBUILDER_LOGGING_LOGIN ) {
+                    add_action( 'wp_login_failed', array( &$this, 'wp_login_failed' ), 10, 1 );
+                }
+                add_filter( 'authenticate', array( &$this, 'role_authenticate' ), self::PRIORITY_ROLE_AUTHENTICATE, 3 );
+                if ( isset( $this->properties['ambiguous_error_message'] ) && $this->properties['ambiguous_error_message'] ) {  // [2.1.0]
+                    add_filter( 'authenticate', array( &$this, 'ambiguous_error_message' ), self::PRIORITY_AMBIGUOUS_ERROR_MESSAGE, 3 );
+                }
+                if ( isset( $this->properties['disable_authenticate_email_password'] ) && $this->properties['disable_authenticate_email_password'] &&
+                    function_exists( 'wp_authenticate_email_password' ) )   { // [2.1.0]
+                    remove_filter( 'authenticate', 'wp_authenticate_email_password', 20 );
+                }
+                if ( isset( $this->properties['access_author_page'] ) &&
+                    $this->properties['access_author_page'] == self::LOGIN_REBUILDER_ACCESS_AUTHOR_PAGE_404 ) { // [2.4.0]
+                    add_filter( 'redirect_canonical', array( &$this, 'author_page_canonical' ), 10, 2 );
+                    add_action( 'template_redirect', array( &$this, 'author_page_404' ) );
+                    add_filter( 'wp_sitemaps_add_provider', array( &$this, 'sitemaps_suppress_users' ), 10, 2 ); // [2.6.7]
+                }
+                if ( isset( $this->properties['oembed'] ) &&
+                    $this->properties['oembed'] != self::LOGIN_REBUILDER_OEMBED_DEFAULT ) { // [2.4.1]
+                    add_filter( 'oembed_response_data', array( &$this, 'oembed_hide_author_data' ), 10, 4 );    // hide author name and url
+                    if ( $this->properties['oembed'] == self::LOGIN_REBUILDER_OEMBED_DONT_OUTPUT ) {
+                        remove_action( 'wp_head', 'wp_oembed_add_discovery_links' );                            // Don't output links
+                        add_filter( 'rest_pre_dispatch', array( &$this, 'disable_oembed_request' ), 10, 3 );    // disable oembed request
+                    }
+                }
+                add_filter( 'user_request_action_email_content', array( &$this, 'set_original_confirmaction_url' ), 10, 2 );    // [2.4.2]
+
+                if ( isset( $this->properties['locked_status_popup'] ) && $this->properties['locked_status_popup'] ) {  // [2.5.0]
+                    add_filter( 'login_errors', array( &$this, 'login_locked_status' ), 10, 1 );
+                    add_filter( 'login_messages', array( &$this, 'login_locked_status' ), 10, 1 );
+                }
+                add_filter( 'determine_locale', array( &$this, 'determined_locale' ), 10, 1 );  // [2.5.0]
+
+                if ( isset( $this->properties['restrict_rest_users'] ) && $this->properties['restrict_rest_users'] ) {  // [2.6.0]
+                    add_filter( 'rest_pre_dispatch', array( &$this, 'rest_pre_dispatch' ), 8, 3 );
+                }
+
+                if ( $this->_is_wp_version( '4.7.4', '>=' ) ) { // [2.6.2]
+                    add_filter( 'send_auth_cookies', array( &$this, 'send_auth_cookies' ), 10000, 1 );
+                }
+
+                // [2.7.1]
+            }
+            if ( $this->_is_wp_version( '3.5', '>=' ) ) {
+                $this->_xmlrpc_actions();
+            }
+
+            define( 'LOGIN_REBUILDER_LOADED', time() ); // [2.8.7]
         }
     }
@@ -282 +289 @@
     public function login_init() {
         if ( $this->_is_wp_version( '4.9.6', '>=' ) && isset( $_GET['action'] ) && $_GET['action'] == 'confirmaction' ) return;     // [2.4.2] User request confirm
-        if ( isset( $_GET['action'] ) && $_GET['action'] == 'postpass' ) return;                // Password reset
+        if ( isset( $_GET['action'] ) && in_array( $_GET['action'], array( 'postpass', 'resetpass', 'rp' ) ) ) return;              // Password reset [2.8.7] Added 'resetpass' and 'rp'
         if ( get_option( 'users_can_register' ) && !$this->properties['reject_user_register'] &&
             ( ( isset( $_GET['action'] ) && $_GET['action'] == 'register' ) ||
@@ -753 +760 @@
      */
     public function site_url( $url, $path, $orig_scheme, $blog_id ) {
+        if ( 'site_url' !== current_filter() ) {
+            return $url;
+        }
         if ( $this->properties['status'] == self::LOGIN_REBUILDER_STATUS_WORKING ) {
             $my_login_page = $this->properties['page'];
-            if ( function_exists( 'wp_get_current_user' ) )
+            if ( function_exists( 'wp_get_current_user' ) ) {
                 $user = wp_get_current_user();
-            else
+            } else { 
                 $user = (object)array( 'data'=>null );
+            }
             if ( isset( $this->properties['page_subscriber'] ) && $this->properties['page_subscriber'] != '' &&
-                ( $this->_in_url( $this->request_uri, $this->properties['page_subscriber'] ) || ( isset( $user->data ) && $this->_is_secondary_login_user( $user ) ) ) )
+                ( $this->_in_url( $this->request_uri, $this->properties['page_subscriber'] ) || ( isset( $user->data ) && $this->_is_secondary_login_user( $user ) ) ) ) {
                 $my_login_page = $this->properties['page_subscriber'];
-
-            if ( $this->_is_login_path( $path ) &&
-                ( $this->_is_user_logged_in() || $this->_in_url( $this->request_uri, $my_login_page ) ) ) {
-                $url = $this->_rewrite_login_url( 'wp-login.php', $my_login_page, $url );
+            }
+
+            if ( $this->_is_login_path( $path ) ) {
+                if ( $this->_is_user_logged_in() || $this->_in_url( $this->request_uri, $my_login_page ) ) {
+                    $url = $this->_rewrite_login_url( 'wp-login.php', $my_login_page, $url );
+                } elseif ( $this->_is_requested_password_reset() && $this->password_reset_user ) {  // [2.8.7]
+                    if ( ! isset( $this->properties['page_subscriber'] ) || empty( $this->properties['page_subscriber'] ) ||
+                        $this->_is_not_secondary_login_user( $this->password_reset_user ) ) {
+                        $url = $this->_rewrite_login_url( 'wp-login.php', $this->properties['page'], $url );
+                    } elseif ( isset( $this->properties['page_subscriber'] ) && ! empty( $this->properties['page_subscriber'] ) &&
+                        $this->_is_secondary_login_user( $this->password_reset_user ) ) {
+                        $url = $this->_rewrite_login_url( 'wp-login.php', $this->properties['page_subscriber'], $url );
+                    }
+                }
             }
         }
         return $url;
+    }
+
+    /**
+     * Check if the requested URL is a password reset.
+     * 
+     * @since 2.8.7
+     */
+    private function _is_requested_password_reset() {
+        return preg_match( '/\/wp\-login\.php/u', $this->request_uri ) &&
+            ( did_action( 'login_form_rp' ) || did_action( 'login_form_resetpass' ) ) &&
+            1 === did_filter( 'password_reset_expiration' );
+    }
+
+    /**
+     * Check whether the user corresponds to the URL for password reset.
+     * 
+     * @since 2.8.7
+     * 
+     * @see allow_password_reset filter. 
+     * 
+     * @param bool $allow   Whether to allow the password to be reset. Default true.
+     * @param int  $user_id The ID of the user attempting to reset a password.
+     * @return bool
+     */
+    public function allow_password_reset( $allow, $user_id ) {
+        if ( 'allow_password_reset' === current_filter() && $allow && $user_id ) {
+            $allow = false;
+            $user = get_user_by( 'id', $user_id );
+            if ( isset( $this->properties['page_subscriber'] ) &&
+                ! empty( $this->properties['page_subscriber'] ) &&
+                $this->_in_url( $this->request_uri, $this->properties['page_subscriber'] ) &&
+                $this->_is_secondary_login_user( $user ) ) {
+                $this->password_reset_user = $user;
+                $allow = true;
+            } elseif ( $this->_in_url( $this->request_uri, $this->properties['page'] ) &&
+                $this->_is_not_secondary_login_user( $user ) ) {
+                $this->password_reset_user = $user;
+                $allow = true;
+            }
+        }
+        return $allow;
+    }
+
+    /**
+     * Retain user with reset password.
+     * 
+     * @since 2.8.7
+     * 
+     * @see validate_password_reset action.
+     * 
+     * @param WP_Error $errors
+     * @param WP_User|WP_Error $user
+     */
+    public function validate_password_reset( $errors, $user ) {
+        if ( 'validate_password_reset' === current_action() &&
+            ! $errors->has_errors() &&
+            isset( $_POST['pass1'] ) && ! empty( $_POST['pass1'] ) &&
+            $user && ! is_wp_error( $user ) ) {
+            $this->password_reset_user = $user;
+        }
     }
 
@@ -3373 +3454 @@
     public function disable_oembed_request( $response, $server, $request ) {
         if ( 0 === strpos( $request->get_route(), '/oembed/' ) ) {
-            return new WP_Error( 'oembed request has disabled', __( 'This REST API has been disabled.', LOGIN_REBUILDER_DOMAIN ) );
+            return new \WP_Error( 'oembed request has disabled', __( 'This REST API has been disabled.', LOGIN_REBUILDER_DOMAIN ) );
         }
         return $response;
@@ -3540 +3621 @@
                 );
             }
-            return new WP_Error(
+            return new \WP_Error(
                 'rest_forbidden',
                 __( 'Sorry, you are not allowed to this requests.', LOGIN_REBUILDER_DOMAIN ),

login-rebuilder/trunk/readme.txt

@@ -5 +5 @@
 Requires at least: 3.2.0
 Requires PHP: 5.6
-Tested up to: 6.7.0
-Stable tag: 2.8.6
+Tested up to: 6.7.2
+Stable tag: 2.8.7
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
@@ -95 +95 @@
 == Changelog ==
 
+= 2.8.7 =
+* Bug fix: The issue has been fixed, and the password can now be reset.
+
 = 2.8.6 =
 * Bug fix: Adjusted what is applied to internally stored hostnames when SERVER['SERVER_ADDR'] does not exist.