Members losing their password or needing to reset a password for any reason can be common for membership sites. With so many members logging in, some members are bound to forget their password from time to time. It happens to all of us at some point so a smooth password reset process is always ideal. But, what if the WordPress “Lost your password” link stops working correctly?
WishList Member and WordPress use the same functionality to handle lost or forgotten passwords so lets get into how to assess and resolve a lost password link that doesn't seem to cooperate.
WordPress Default “Lost your password” Feature
The default Lost Password page is powered by WordPress and it adds the following to the WordPress login page URL of the site:
?action=lostpassword
So that lost password functionality is handled by WordPress.
For example, the “Lost your password” link on https://wlmtest.com/wp-login.php would direct to the following URL:
—
The /wp-login.php?action=lostpassword portion of the URL is based on the WordPress functionality for resetting a lost/forgotten password.
If you are seeing another URL for the lost password page, it is likely that another plugin is altering that functionality. We recommend checking to see if you have any login plugins or plugins that could effect login installed on your site.
You can hover a mouse over the Lost your password link on the /wp-login.php page to see where the link directs.
—
Potential Reason and Solution – WooCommerce
One potential reason for this issue can sometimes be related to running WooCommerce on the site and its setting for lost password. This is related to how WooCommerce can take over the page for the Lost Password.
In the example screenshot below, the page is on top of the WooCommerce “my account” page which might be set as protected on the site. (The page might be named something else depending on the site).
Please Note: my-account and lost-password are defaults set by WooCommerce but they can be changed in the WooCommerce settings.
—
In this example screenshot, “my-account” and “lost” are used.
—
A possible solution is to either:
- Unprotect the my-account page.
- Do not let WooCommerce handle the lost password page.
One thing to keep in mind is /lost (or lost-password or whatever it might be renamed) is not an actual page so it cannot be unprotected by WishList Member. It is a “virtual page” created by WooCommerce.
—
If the “Lost your password” URL ends in lost-password (or something similar) it is likely powered by WooCommerce.
So if you are running WooCommerce, you can check if that is the case and instead use the WordPress default Lost Password functionality.
You can do that in the WooCommerce > Settings > Advanced > Account endpoints section.
—
—
You can scroll to the bottom of the WooCommerce > Settings > Advanced > Account endpoints section and remove “lost-password” (or whatever is shown) from the Lost password field and click the Save changes button. This will allow WordPress to handle the last password functionality for members on your site.
—
Potential Reason and Solution – Other Plugins
As noted above, an installed plugin may be overriding the default WordPress functionality for the Lost Password link. The easiest way to determine if this might be the case is to hover your mouse over the “Lost your password” link on the WordPress login page to see the URL tied to that link.
—
That URL will usually be your site URL with the following included on the end:
/wp-login.php?action=lostpassword
—
If you see a different end to that URL when viewing the “Lost your password” link, the next step is to check your installed plugins for any plugins that might include login functionality. This includes membership plugins, LMS plugins, community plugins, etc.
You should be able to narrow down the potential cause of the different “Lost your password” link by checking the settings of any plugin(s) on your site that include the option to control user login. That type of plugin will often include an option within its settings to set a different page or redirect for the WordPress “Lost your password” link.
—
Your members will need to reset their passwords at some point and if you run into an issue with the WordPress “Lost your password” link, you can assess and resolve what might be causing it to not function as expected.
