I’m about to include the login into the theme’s index.php (so in other words, the login will be present on the homepage–a simple and handy thing to have for the 1 or 2 sympathy visitors I get). Ha.
Anyway, I’m curious about how the passed URL variables that normally get thrown at the login file will be handled if I begin passing them to the index instead. Since the login is included into the index file, would there be any security concerns with doing this or am I going about this completely wrong to begin with?
Out of everything I have seen, I wouldn’t believe that this would be a problem as long as everything is still handled with the code that the login file has.
Any insight into this is appreciated.
Can’t you just put your own form in the index page whose action parameter points to wp-login.php, rather than merge the two files?
I could, but I want the login processing to remain on the homepage and not that of the actual login file / page. I guess an example of what I’m trying to explain here is how SitePoint handles its login process. You go up there to the top-right, login, and voila–you’re in. It’s not like Wordpress, however, where you have to be transferred over to the actual login file. I want it all to happen on the homepage.
Thanks for the heads-up, Ben. I think I’ll just chop some stuff up with the file because I wasn’t wanting to use a plugin for this. By the way, I saw your post on your website about TV and not using it–been doing that since 2002. The internet will take care of ya. 