Skip to:

Disable auto-generation of passwords on the registration form

  • Georgio


    Hi everyone,
    is it possible to disable the auto-generation of passwords on the signup form?
    This features comes with the latest version of Buddypress and gives me headaches, given the configuration of my site.

    The context:
    The home page is the signup page and there is a login form on the topbar. Both browsers, Firefox and Chrome, fill the signup form with the username of the login form. The problem is with firefox who sees my username together with the auto-generated password and thinks I want to update my credentials. So everytime I login, Firefox asks me if I want to update my password. It is very annoying and I must stop this.

    Is there any snippet to disable this feature?

    Thanks in advance

Viewing 6 replies - 1 through 6 (of 6 total)
  • Hi,

    I don’t know how you are injecting the login form, into your home page, but FWIW I’ve tested using wp_login_form() in Firefox and wasn’t able to reproduce your issue.

    Now if you want to bring back the old password control, here’s a way to do it:

    Please read the comments at the top of both files code source explaining where to copy/paste them.



    Thank you @imath for your response.
    Yes, I am injecting wp_login_form() from functions.php as a menu item.

    Meanwhile I found a workaround by renaming the /wp-includes/js/zxcvbn.min.js file. This stops the auto-generation of passwords. I noticed though that if someone uses a weak password to login the the signup form shows a warning: “Confirm use of weak password” and if they don’t confirm, they cannot login.This is shown with Chromium, the linuxian version of Google Chrome.
    I finally think that it depends on how browsers manage passwords.

    Thanks for the gist. I will insert it today. Have a nice day! 🙂



    Here is a screenshot (using Chromium browser) to illustrate the situation. Screenshot



    The problem is completely resolved with your solution. Thank you again!



    Imath, thank you for this solution. I’m using it.

    But why are we adapting to the password issue this way? Shouldn’t we be trying to hack the new password method with javascript instead?

    Console warning:
    (The bp-nouveau/js/password-verify.js script is deprecated since 5.0.0 and will be deleted in version 6.0.0.)



    I really appreciate buddypress and all the dedication goin into it..

    but To be honest.. I dont know why that password control stuff is included in the new version.. My site users are complaining bitterly. The old password field was jst fine the way it was. … What i would like to see instead is buddypress allowing registration with phone numbers and SMS instead of email… I really dont know why the wrong thing is always included in updates.. At least there should have been an option where the admin would be able to choose whether or NOT they want the password control..


    I would give @imath suggestion a try nonetheless.

Viewing 6 replies - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.
Skip to toolbar