From 54b8501261fbd9d77456a2187a03ec4e897feac1 Mon Sep 17 00:00:00 2001 From: Ryan Boren Date: Mon, 23 Feb 2009 17:33:02 +0000 Subject: [PATCH] Don't trigger wp_login_failed action for empty usernames or passwords. git-svn-id: https://develop.svn.wordpress.org/trunk@10638 602fd350-edb4-49c9-b593-d223f7449a82 --- wp-includes/pluggable.php | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/wp-includes/pluggable.php b/wp-includes/pluggable.php index 57e5cae06c..f4ecd3fb18 100644 --- a/wp-includes/pluggable.php +++ b/wp-includes/pluggable.php @@ -438,7 +438,9 @@ function wp_authenticate($username, $password) { $user = new WP_Error('authentication_failed', __('ERROR: Invalid username or incorrect password.')); } - if (is_wp_error($user)) { + $ignore_codes = array('empty_username', 'empty_password'); + + if (is_wp_error($user) && !in_array($user->get_error_code(), $ignore_codes) ) { do_action('wp_login_failed', $username); }