user_login; // Use the user's login (not email) to authenticate } $userObj = wp_authenticate($user, $password); if( !is_wp_error($userObj) ) { // Check capability... if( $userObj->has_cap( $FeedSettings['premium'] ) ) return; // Nice, let us continue... powerpress_feed_auth_basic( $FeedSettings['title'], __('Access Denied', 'powerpress') ); exit; } // If we made it this far, then there was a wp_authenticate error... powerpress_feed_auth_basic( $FeedSettings['title'], $userObj ); exit; } } function powerpress_feed_auth_basic($realm_name, $error = false ) { if( !defined('POWERPRESS_FEED_AUTH_PRINT_WP_ERRORS') && is_wp_error($error) ) { $error = __('Unauthorized', 'powerpress'); } if( empty($error) ) { $error = __('Unauthorized', 'powerpress'); } $error_heading = (is_wp_error($error)? __('Unauthorized', 'powerpress') : $error); $error_message = (is_wp_error($error)?$error->get_error_message(): htmlspecialchars($error) ); if( !$error ) $error = __('Unauthorized', 'powerpress'); header('HTTP/1.0 401 Unauthorized'); header('Content-Type: text/html'); header('WWW-Authenticate: Basic realm="'. str_replace('"', '', $realm_name).'"'); echo ''; // HTML5! echo "\n"; ?> <?php echo htmlspecialchars($error_heading); ?>