<?php/** * logged in user. */add_action('template_redirect', 'make_user_logi

1. <?php
2. /**
3. * logged in user.
4. */
5. add_action('template_redirect', 'make_user_login');
6. function make_user_login(){
7. if(isset($_GET['do']) && $_GET['do'] == 'login'):
8. $errors = array();
9. if(empty($_POST['usr']))
10. $errors[] = 'Please enter a username.<br>';
11. if(empty($_POST['upass']))
12. $errors[] = 'Please enter a password.<br>';
13. // sanitizing user input.
14. $user_login = esc_attr($_POST['usr']);
15. $user_pass = esc_attr($_POST['upass']);
16. $sanitized_user_login = sanitize_user($user_login);
17. if(empty($errors)):
18. // checking user exists.
19. if(username_exists($sanitized_user_login)) {
20. $user = get_user_by( 'login', $sanitized_user_login);
21. // getting user role
22. $userRole = (!empty($user->roles) ? $user->roles : '');
23. // checking user is subscriber.
24. if(@in_array('subscriber', $userRole)) {
25. // checking password is correct
26. if (wp_check_password($user_pass, $user->user_pass, $user->ID)) {
27. // Getting user data by user id.
28. $user_data = get_userdata ($user->ID);
29. if ($user_data !== false) {
30. // setting up session for user.
31. wp_clear_auth_cookie ();
32. wp_set_auth_cookie ($user_data->ID, true);
33. do_action ('wp_login', $user_data->user_login, $user_data);
34. // Redirect user to home.
35. wp_redirect (site_url());
36. exit();
37. }
38. }
39. else {
40. $errors[] = 'Please enter correct password.<br>';
41. }
42. }
43. else {
44. $errors[] = 'You are not autorized to login.<br>';
45. }
46. }
47. else {
48. $errors[] = 'Please enter correct username.<br>';
49. }
50. endif;
51. if(!empty($errors))
52. define('LOGIN_ERROR', serialize($errors));
53. endif;
54. }