Paid Memberships Pro — Content Restriction, User Registration, & Paid Subscriptions

Журнал изменений

2.12.4 — 2023-11-16

• SECURITY: Fixed security issue where in some cases users could upload files at checkout with disallowed file types, e.g. .php files that could then be accessed to run arbitrary code on the server. For more information, see https://www.paidmembershipspro.com/pmpro-update-2-12-4/ (Thanks, István Márton and WordFence)
• ENHANCEMENT: New icons for LifterLMS and the GA4 Add On.
• BUG FIX/ENHANCEMENT: Fixed issues with the notifications shown when updating billing details. (Thanks, dwanjuki on GitHub)

2.12.3 — 2023-10-03

• ENHANCEMENT: Updated the PayPal Express integration to save checkout data in order meta instead of sessions to improve compatibility with various Add Ons. #2616 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed performance issue in deprecation code. #2621 (@MaximilianoRicoTabo)
• BUG FIX/ENHANCEMENT: Fixed warning in PHP 8.1 when using the pmpro_member shortcode without a field attribute. #2622 (@MaximilianoRicoTabo)
• BUG FIX/ENHANCEMENT: Updated pmpro_hasMembershipLevel() function to accept a string of comma separated level ids or names. This also fixes issues in The Events Calendar ticketing add ons. #2623 (@MaximilianoRicoTabo)
• BUG FIX: Fixed issue where user fields may not be shown in admin checkout emails. #2613 (@andrewlimaza, @dparker1005)
• BUG FIX: Fixed issue where the incorrect label could be shown for a user field value. #2613 (@dparker1005)
• BUG FIX: Fixed issue where the Visits, Views, and Logins report CSV export may show the user’s «joindate» in the «enddate» column. #2608 (@dparker1005)
• BUG FIX: Now only declaring the recaptcha_get_html() function on the PMPro checkout page. This fixes conflicts with other plugins that declare their own recaptcha_get_html() function. #2607 (@dparker1005)
• BUG FIX: Fixed issue where row action to view a discount code’s orders was not showing for unlimited use codes. #2599 (@kimcoleman)
• REFACTOR: Marking the PMPro Table Pages Add On as deprecated. #2606 (@dwanjuki)

= 2.12.2 — 2023-08-13
* ENHANCEMENT: Improving the LifterLMS Streamline functionality. #2572 (@ideadude)
* ENHANCEMENT: Now also applying the pmpro_checkout_message filter to the bottom message box on the checkout page. #2567 (@ipokkel)
* ENHANCEMENT: Caching the Stripe webhook status checks. #2565 (@dparker1005)
* BUG FIX: Fixed issue where some advanced settings added by Add Ons weren’t applying properly. Resave and try again. #2571 (@ideadude)

2.12.1 — 2023-08-07

• BUG FIX: Fixed issue where password reset attempts may incorrectly show that the user’s password reset key is invalid. #2561 (@dparker1005, @andrewlimaza)

2.12 — 2023-08-04

• FEATURE: Added integration with LifterLMS to streamline setting up that plugin when Paid Memberships Pro is active. #2533 (@ideadude, @MaximilianoRicoTabo)
• ENHANCEMENT: A “no access” message can now be set when restricting Elementor widgets. #2525 (@andrewlimaza)
• ENHANCEMENT: A “no access” message can now be set when restricting content with DIVI. #2526 (@andrewlimaza)
• ENHANCEMENT: Added pmpro_stripe_checkout_session_parameters filter. #2555 (@JarrydLong)
• ENHANCEMENT: Now delaying non-security notification banners for 1 week the first time an admin user visits a PMPro dashboard page. #2552 (@MaximilianoRicoTabo)
• ENHANCEMENT: Now showing a modal with instructions for setting up webhooks after linking an account through Stripe Connect. #2554 (@MaximilianoRicoTabo)
• BUG FIX/ENHANCEMENT: Removed associative array check in the pmpro_get_label_for_user_field_value() function to ensure that user-friendly values are always returned. #2524 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Updating the “Active Members Per Level” to ignore deleted users. #2482 (@JarrydLong)
• BUG FIX/ENHANCEMENT: Added a new capability pmpro_loginscsv for exporting the login report data and a new capability pmpro_reportscsv as a fallback for exporting all report data. #2536 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Fixed issue where subscriptions weren’t cancelling when users deleted their own account using BuddyPress or BuddyBoss. #2559 (@dparker1005, @andrewlimaza)
• BUG FIX/ENHANCEMENT: Use wpautop() for membership confirmation message. This fixes an issue where Elementor and possibly other solutions were not honoring the \n as paragraphs. #2549 (@andrewlimaza)
• BUG FIX: Fixed post restriction logic for posts that are in multiple categories. #2522 (@andrewlimaza)
• BUG FIX: Fixed an issue where extra checkout fields weren’t being displayed correctly in admin checkout emails. #2537 (@andrewlimaza, @MaximilianoRicoTabo)
• BUG FIX: Updated login functions to broken links from potentially being generated. #24722, #2244, #2475, #2476, #2477, #2478 (@JarrydLong)
• BUG FIX: Fixed styling for h2 tags on the Membership Account page. (@kimcoleman)
• BUG FIX: Fixed the ID parameter in the pmpro_manage_discount_code_list_custom_column filter. #2517 (@JarrydLong)
• BUG FIX: Fixed issues where suggested Add Ons would not show in setup wizard if the site type was not specified. #2524 (@andrewlimaza)
• BUG FIX: Fixed the timing of the pmpro_discount_code_used filter when processing a Stripe Checkout payment. #2532 (@dparker1005)
• BUG FIX: Fixed issue where only the first page of orders was showing up when searching orders. #2553 (@JarrydLong)
• BUG FIX: Fixed issue with some DB setups where levels couldn’t be added to the table. #2546 (@dparker1005)
• REFACTOR: Updated enum columns in database to varchar. #2529 (@andrewlimaza)

2.11.2 — 2023-06-14

• BUG FIX: Reverting the application of the required attribute for required fields at checkout. This would break valid checkouts in some cases if required fields were hidden. We need to address this differently. #2516 (@ideadude)

2.11.1 — 2023-06-13

• ENHANCEMENT: Now using HTML5 required field attribute on required fields at membership checkout.#2511 (@kimcoleman)
• ENHANCEMENT: Better wording for the «Disconnect from Stripe» button in the payment settings so folks understand this will disconnect ANY site connected to Stripe through that account. #2514 (@dparker1005)
• BUG FIX/ENHANCEMENT: Removed the «What’s This?» text from the CVV field on Membership Billing page. #2512 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Minor fixes to the Orders List Table. #2509 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed the text domains for the default headings for the account page shortcode. #2508 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed the default page titles when using the account block. #2505 (@dparker1005)

2.11 — 2023-06-07

• FEATURE: Now tracking users that are created at checkout but never complete checkout or otherwise use the site. These users can be found and deleted from the Users Table in the admin dashboard. #2435 (@dparker1005, @ideadude)
• FEATURE: Added compatibility with Oxygen Builder. #2404 (@JarrydLong)
• ENHANCEMENT: Updated the Orders list to use a WP List Table. #2383 (@JarrydLong)
• ENHANCEMENT: Updated the Discount Code list to use a WP List Table. #2370 (@JarrydLong)
• ENHANCEMENT: Now showing a notice when using a page template that is out of date. #2427 (@JarrydLong, dparker1005)
• ENHANCEMENT: Reducing calls made to get_option() from pmpro_getOption(). #2137 (@JJJ)
• ENHANCEMENT: Now allowing account page section titles to be customized. #2459 (@MaximilianoRicoTabo)
• ENHANCEMENT: Adding filters pmpro_stripe_webhook_event_received and pmpro_stripe_webhook_before_exit. #2465 (@dparker1005)
• ENHANCEMENT: Improved Add Ons search to support multiple keywords and phrases. #2444 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Improved accessibility across the entire admin dashboard. Thanks for contributions from Piccia Neri, Alex Stine, and Amber Hinds. #2448 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now making sure that our reCAPTCHA functions are always loaded. #2449 (@mircobabini, @dparker1005)
• BUG FIX/ENHANCEMENT: Improved the chart title wording for some sales and revenue report periods. #2488 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Removing trailing colons after question marks in Advanced Settings. #2467 (@mircobabini)
• BUG FIX/ENHANCEMENT: Removed unused spinner.gif file. #2486 (@ipokkel)
• BUG FIX: Resolved issue where checkouts using Stripe may complete even if reCAPTCHA fails. #2449 (@dparker1005)
• BUG FIX: Resolved issue where «log out» link may not show on the update billing page. #2489 (@dparker1005)
• BUG FIX: Fixed an issue where radio button would always show asterisk even when not required. This now applies the asterisk to each and every radio button individually to support multiple radio buttons at checkout. #2499 (@andrewlimaza)
• REFACTOR: Removed leading slash in all uses of admin_url(). #2429 (@jahidhasan018)
• REFACTOR: Removing unused variable in pmpro_rest_api_recent_memberships(). #2469 (@andrewlimaza)

2.10.7 — 2023-05-23

• ENHANCEMENT: Updated sales and revenue report to compare to previous periods. #2426 (@JarrydLong)
• ENHANCEMENT: Updated sales and revenue report to show orders from a predefined timeframe (ex. last 30 days). #2426 (@JarrydLong)
• ENHANCEMENT: Added «Active Memberships Per Level» report. #2426 (@JarrydLong)
• BUG FIX/ENHANCEMENT: Now preventing multiple clicks on the «submit» button on the cancel page. #2425 (@dparker1005)
• BUG FIX: Fixing incorrect value for PMPRO_VERSION constant.

2.10.6 — 2023-05-19

• SECURITY: Added extra precautions to make sure credit card and password information does not get stored in the checkout_request_vars order meta when using Stripe Checkout. More info here: https://www.paidmembershipspro.com/pmpro-update-2-10-6/ #2468, #2473 (@dparker1005, @ideadude)
• ENHANCEMENT: Added a new filter pmpro_sales_widget_periods to allow filtering the periods for the sales widget. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now including the administrator’s display name in emails that are sent to the admin. #2453 (@MaximilianoRicoTabo)
• BUG FIX/ENHANCEMENT: Now validating license keys in setup wizard. #2464 (@dparker1005)
• BUG FIX: Fixed fatal error on payment gateway settings page when using Stripe with expired API keys. #2455 (@dparker1005)
• BUG FIX: Fixed issue where an error message would not be displayed on the Update Billing page when a credit card number was not entered. #2457 (@MaximilianoRicoTabo)
• BUG FIX: Fixed issue where the orders export date filter may ignore the site’s timzeone. #2460 (@JarrydLong)

2.10.5 — 2023-04-27

• BUG FIX/ENHANCEMENT: Fixed issue where the date/time of orders in the Member History table were sometimes off based on timezone. #2552 (@JarrydLong, @dparker1005)
• BUG FIX: Fixed issue where checkouts for subscriptions with a $0 initial payment were failing with Stripe. #2454 (@dparker1005)
• BUG FIX: Fixed the error that would occur if the AUTH_KEY and SECURE_AUTH_KEY constants were not set (e.g. with Local by Flywheel). #2451 (@JarrydLong)

2.10.4 — 2023-04-26

• ENHANCEMENT: The spam protection setting is now enabled by default for new installs. #2421 (@dparker1005)
• ENHANCEMENT: Now showing a dismissible notice if the spam protection setting is not enabled. #2422 (@dparker1005)
• BUG FIX/ENHANCEMENT: Now trimming the whitespace around values for dropdown/etc fields to ensure consistent results. #2410 (@JarrydLong)
• BUG FIX/ENHANCEMENT: Now setting the Stripe payment method per subscription instead of using the default payment method when using the update billing form. #2412 (@dparker1005)
• BUG FIX/ENHANCEMENT: Marking the Register Helper plugin as deprecated. More info here: https://www.paidmembershipspro.com/register-helper-add-on-deprecated/
• BUG FIX/ENHANCEMENT: Removed the «activate» link from the plugins page for deprecated Add Ons. #2424 (@dparker1005)
• BUG FIX/ENHANCEMENT: No longer links added through incorrect use of the pmpro_membershiplevels_page_action_links filter. #2431 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed warning when updating billing with Stripe. #2420 (@mircobabini)
• BUG FIX: Updated the PayPal IPN handler to cancel memberships when the maximum number of retries have failed for a subscription payment. Previously, some of these subscriptions would get stuck in a «suspended» status, which did not trigger the PMPro membership to cancel. #2407 (@dparker1005)
• BUG FIX: Fixed where file user fields save their files on multisite setups. #2406 (@dparker1005)
• BUG FIX: Fixed PHP8 compatibility issues with our visit tracking cookie. #2414 (@dparker1005, @JarrydLong)
• BUG FIX: Fixed PHP8 compatibility issues in the Braintree library. #2418 (@dparker1005)
• BUG FIX: Fixed issue where taxonomy user fields were not saving correctly in the database. #2423 (@dparker1005)
• BUG FIX: Fixed issue where the views, visits, and logins CSV report would only include the first page of data. #2436 (@dparker1005)
• BUG FIX: Fixed issue where the «Account Information» section of checkout would still show up even if the user was just created. #2437 (@dparker1005)
• BUG FIX: Fixed race condition issue where duplicate refund emails were sometimes sent when using the Stripe gateway. #2438 (@dparker1005)
• BUG FIX: Fixed timezone offset issue when filtering orders by date range. #2440 (@mircobabini)
• BUG FIX: Fixed the «transient error» issues happening with some reports in the dashboard. #2443 (@JarrydLong, @ideadude)

2.10.3 — 2023-03-02

• BUG FIX: Fixed issue with alternative login methods that call the wp_login_failed hook with only 1 parameter.

2.10.2 — 2023-02-28

• BUG FIX: Fixed issue where the «Site URL Changed» message would show up on sites where the site_url wasn’t actually changed. We are now ignoring the scheme (http/https) when checking.
• REFACTOR: Removed the pmpro_is_paused option and deprecated the pmpro_set_pause_mode() function. Now checking specifically for site_url changes in real time during admin_init. We no longer intend to expand on the «pause mode» concept or otherwise try to align with the WP_ENVIRONMENT_TYPE values.

2.10.1 — 2023-02-21

• BUG FIX/ENHANCEMENT: Changed how reports are loaded to avoid fatal errors if PMPro had an incomplete update.
• BUG FIX/ENHANCEMENT: Fixed escaping of the discount code message to allow the strong tag.
• BUG FIX/ENHANCEMENT: Now running the pmpro_tos_content filter AFTER the TOS page content is escaped. This could be used to override that escaping if needed. See: https://gist.github.com/ideadude/2ce102d7fd554172e4e2a98d80e74352

2.10 — 2023-02-20

• FEATURE: Added Setup Wizard
• FEATURE: Stripe Checkout and Stripe Customer Portal integrations are now fully released. Increased Stripe fee to 2% for newly connected sites.
• ENHANCEMENT: Now «pausing» some PMPro functionality when the site URL changes.
• ENHANCEMENT: Categories and tags can now be restricted directly from their respective settings pages.
• ENHANCEMENT: Updated Stripe webhook checker to check each event type separately.
• ENHANCEMENT: Admins will now be given the choice to delete a user’s membership history when deleting a user.
• ENHANCEMENT: Stripe Checkout now creates Invoices for one-time payments.
• ENHANCEMENT: Updated Stripe library to version 10.0.
• ENHANCEMENT: Excluding more dev/staging-related subdomains and TLDs from Wisdom tracking.
• ENHANCEMENT: Added the add class attribute to the «rate us» notice in the footer of PMPro pages. You can use this to hide the notice.
• BUG FIX/ENHANCEMENT: WordPress users will now be created before payments are charged at checkout.
• BUG FIX/ENHANCEMENT: No longer cancelling subscriptions for users with a membership level when the level is deleted.
• BUG FIX/ENHANCEMENT: Removed the «What’s This?» text from the CVV field.
• BUG FIX/ENHANCEMENT: Fixed error thrown if all pmpro_reports were unset.
• BUG FIX/ENHANCEMENT: Fixed localization issues with the Members List table in the dashboard and several other areas.
• BUG FIX/ENHANCEMENT: Fixed issue where usage tracking was disabled, even if you clicked the «allow» button in the notice. Double check that this is set how you’d like at Memberships > Settings > Advanced Settings > Enable Tracking.
• BUG FIX: Fixed issue where «Visits, Views, and Logins» report may not show up on some setups.
• BUG FIX: Fixed issue where invoice emails were not sending due to issues with the pmpro_get_order_json() function.
• BUG FIX: Fix for fatal error on site health check page if login/password is required for ftp account. #2374 (Thanks, @freax on GitHub)
• REFACTOR: Deprecating CyberSource and PayPal Website Payments Pro gateways.
• REFACTOR: Marking «trial ending» cron as deprecated.
• REFACTOR: Removed the ability to direct access the scripts in the /crons/ and /services/ directories. Only the getfile.php script can be accessed this way when activated.

2.9.12 — 2023-02-16

• SECURITY: Updated sanitization, escaping, and other security-related code across the plugin.

= 2.9.11 — 2023-01-27
* BUG FIX: Fixed issue introduced in 2.9.9 where recurring_payment IPN transactions in PayPal were not being processed yet. If you have recurring subscription with PayPal Standard or PayPal Express, you will need to resend those transactions to make sure completed (and in some cases failed) recurring orders were processed on your site. More information here: https://www.paidmembershipspro.com/pmpro-update-2-9-11/

2.9.10 — 2023-01-25

• ENHANCEMENT: Much nicer thumbnail for one of our add ons. #2338 (@kimcoleman)
• ENHANCEMENT: Adding some other missing add on thumbnails. #2339 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Updated the orders and discount code tables in the dashboard to display better on small screens. #2334 (@kimcoleman)
• BUG FIX: Fixed issue with some widgets, e.g. the login widget, introduced in 2.9.9. #2335 (@jarrydlong)
• BUG FIX: Fixed issue where Invoice Emails would fail to send from the orders page of the dashboard. #2340 (@ideadude)

2.9.9 — 2023-01-18

• SECURITY: Updated sanitization, escaping, and other security-related code across the plugin.
• ENHANCEMENT: When using expirations on levels, the default date is now +1 year again. #2328 (@dparker1005)
• ENHANCEMENT: Now showing option labels instead of values when displaying multiselect type fields using the pmpro_member shortcode. #2327 #2314 (@dparker1005, @ideadude)
• ENHANCEMENT: Updated the user fields UI to say «Required at Checkout?», which more accurately describes the behavior. Note: we don’t require these fields on profile updates because it can interfere with core user updates and other plugins. #2320 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Fixed warning in cases where users were deleted or otherwise not found when processing Stripe webhooks. #2331 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed some issues in notifications and messages related to previous escaping updates. #2321 (@dparker1005)
• BUG FIX/ENHANCEMENT: The pmpro_checkout_box-{groupname} class given to divs on the frontend user profile is now sanitized to avoid spaces and special characters there. #2319 (@kimcoleman)
• BUG FIX: Fixed issues with CSV exports when filtered within a date range. #2315 (@jarrydlong)

2.9.8 — 2022-12-27

• SECURITY: Updated many queries to use $wpdb->prepare and esc_sql for better security. In almost all of these cases, the variables uses in the queries were escaped earlier or otherwise trusted, but it’s good practice to escape in the query anyway to be extra safe and avoid issues when code is updated in the future. #2312 (@andrewlimaza, @ideadude)
• BUG FIX/ENHANCEMENT: Fixed some notices in the Authorize.net Gateway class. #2295 (@mircobabini)
• BUG FIX/ENHANCEMENT: Fixed HTML in the nl_NL email templates. #2300 (@mircobabini)
• BUG FIX/ENHANCEMENT: Added the !!membership_level_confirmation_message!! var to admin checkout emails. #2305 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed typo «could» in error message shown when an Add On cannot be installed. #2313 (@kimcoleman)
• ENHANCEMENT: Removed duplicate «display_name» definition in the PMPro Email class. #2297 (@mircobabini)
• ENHANCEMENT: Fixed PMPRO_MIN_PHP_VERSION constant name in a few places. #2298 (@mircobabini)
• ENHANCEMENT: Including the PMPro Akismet and MailPoet icons for use on the Add Ons page. #2307 #2309 (@andrewlimaza)

2.9.7 — 2022-11-30

• BUG FIX/ENHANCEMENT: Added compatibility for the Avada theme. Protected content is now editable. #2285 (@andrewlimaza)
• BUG FIX: Avoiding sprintf issues during cron runs. This caused issues where the expiring soon emails were being sent out multiple times. #2290 (@dparker1005)
• BUG FIX: Adding id parameters to billing address fields to avoid Stripe errors when checking out with the show address fields option set to true. #2284 (@ipokkel)
• BUG FIX: Adding id parameters to billing address fields to avoid Stripe errors when updating billing with the show address fields option set to true. #2289 (@dparker1005)
• BUG FIX: Fixed issue with subscription profile start dates when using Authorize.net and custom code that alters start dates. #2280 (@dparker1005)
• BUG FIX: Fixed warning that happened with some MySQL versions when setting a user’s expiration to ‘No’ from the edit user page. #2291 (@andrewlimaza)

2.9.6 — 2022-11-14

ENHANCEMENT: Added content restriction settings to Elementor «containers». #2254 (Thanks, @Minebomber)
ENHANCEMENT: Added !!levels_url!! to all email templates by default. #2263 (@andrewlimaza)
ENHANCEMENT: Added docblocks to all methods of the PMProEmail class. #2263 (@andrewlimaza)
ENHANCEMENT: Now allowing strong, code, em, br, p, and a tags in field descriptions. #2246 (@andrewlimaza)
BUG FIX/ENHANCEMENT: Fixed message show when editing an existing level. #2245 (@mircobabini)
BUG FIX/ENHANCEMENT: Fixed issue where the billing address wasn’t being sent to Stripe if it was added to checkout via an add on or other custom code. #2271 (@dparker1005)
BUG FIX/ENHANCEMENT: Fixed the $user_id parameter passed to the pmpro_discount_code_used action hook in the Stripe Webhook handler. #2273 (@mircobabini)
BUG FIX/ENHANCEMENT: The required field asterisk now appears correctly if a hint is used on a textarea, select, or other user field. #2274 (@ideadude)
BUG FIX/ENHANCEMENT: Avoiding fatal errors that occurred when trying to use Stripe Connect in countries that don’t allow an application fee. The fee is set to 0% for these users/countries. #2228 (@dparker1005)
BUG FIX/ENHANCEMENT: Fixed CSS in the CVV/CVV popup window. #2224 (@dparker1005)
BUG FIX/ENHANCEMENT: Now pulling the billing address from the Stripe Customer record or a previous order if the billing address isn’t available in the Payment Method object passed to webhook calls. #2272 (@dparker1005)
BUG FIX/ENHANCEMENT: Fixed CSS for the new level popup to no longer rely on selectors that broke when certain translations were used in the WP dashboard. #2276 (@kimcoleman)
BUG FIX/ENHANCEMENT: Fixed trial wording for custom trials where the initial payment was > $0. #2277 (@andrewlimaza)
BUG FIX: Fixed bug where file type fields weren’t uploaded or saved properly when using Stripe Checkout. #2251 (@dparker1005)
BUG FIX: Fixed an issue where the dropdown «What should users without access see?» for the Require Membership Block would reset on each page load. #2243 (@andrewlimaza)
BUG FIX: Fixed issue where user fields were not showing on the profile sometimes when they should have been. #2270 (@dparker1005)
BUG FIX: Fixed the $MemberOrder->get_orders method query so it works when a ‘membership_level_id’ arg is passed in. #2251 (@dparker1005)
BUG FIX: Fixed issue where the billing zipcode was not pulled from user meta correctly when using the $MemberOrder->find_billing_address() method. #2275 (@mircobabini)

2.9.5 — 2022-09-17

• ENHANCEMENT: Added Select2/Autocomplete as a field type in the user field settings. #2237 (@kimcoleman)
• ENHANCEMENT: Improving our in-app notification styling. #2234 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now skipping Secure Customer Authentication (SCA) for Stripe subscriptions at checkout with a $0 initial payment. This fixes issues where SCA failure would orphan active subscriptions. Recurring payments are working fine without this additional check.
• BUG FIX/ENHANCEMENT: Improved CSS for frontend form fields.
• BUG FIX/ENHANCEMENT: Fixed placement of required field asterisks for certain field types. #2231 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Fixed display of the CVV popup. #2224 (@dparker1005)
• BUG FIX: Fixed application fee issue that happened when users in some countries tried to use Stripe Connect. #2228 (@dparker1005)
• BUG FIX: Fixed case where user fields wouldn’t show for users if earlier fields/groups were only for admins. #2233 (@kimcoleman)
• BUG FIX: Fixed fatal error for older versions of WordPress missing the wp_get_environment_type() function. #2236 (@mircobabini)
• BUG FIX: Fixed issue where PMPro memberships were sometimes not cancelled when a subscription was cancelled in Stripe. #2217 (@dparker1005)
• BUG FIX: Fixed fatal error that was preventing the weekly (opt in) data tracking from running. #2242 (@ideadude)

2.9.4 — 2022-08-30

• BUG FIX/ENHANCEMENT: Added MMPU compatibility for some crons. #2211 (@dparker1005)
• BUG FIX/ENHANCEMENT: The default «More Information» group name/label is now translatable. #2214 (@mircobabini)
• BUG FIX/ENHANCEMENT: Added JavaScript code to prevent duplicate clicking of the cancel button. #2216 (@mircobabini)
• BUG FIX/ENHANCEMENT: Fixed PHP notice on the update billing page. #2219 (@mircobabini)
• BUG FIX/ENHANCEMENT: Avoiding line breaks in very long labels for checkbox fields. #2221 (@mircobabini)
• BUG FIX: Fixed issue with processing customer.subscription.deleted webhook events from Stripe with newer versions of PHP. #2217 (@dparker1005)

2.9.3 — 2022-08-25

• ENHANCEMENT: Added pmpro_add_user_field_where( $where, $field ) and pmpro_add_user_field( $field, $where ) filters.
• BUG FIX/ENHANCEMENT: Added MMPU support for some emails so correct level information is shown. #2200 (@dparker1005)
• BUG FIX/ENHANCEMENT: The pmpro_checkout_box-{groupname} id given to checkout box divs is now sanitized to avoid spaces and special characters there. #2209 (@dparker1005)
• BUG FIX/ENHANCEMENT: Trimming underscores off the front/back of suggested group names in the user field settings. #2209 (@dparker1005)
• BUG FIX: Fixed issues with fields showing in some checkout checkbox/group locations. #2204 #2205 (@ipokkel)
• BUG FIX: Fixed issue where discount code uses weren’t being tracked when using the Stripe Checkout beta. #2196 (@dparker1005)

2.9.2 — 2022-08-10

• BUG FIX/ENHANCEMENT: Now correctly deprecating the pmprorh_section_header() function. We accidentally had it reversed and throwing a warning when using the new pmpro_default_field_group_label() function. (@kimcoleman)
• BUG FIX/ENHANCEMENT: When saving user fields, now making sure that the group name is not blank and unique. Blank or duplicate group names could cause other issues, e.g. with required fields or fields being shown multiple times at checkout. #2187 (@ideadude)
• BUG FIX/ENHANCEMENT: Fixed issue where the sales report widget cache was not being updated when new orders came in.
• BUG FIX/ENHANCEMENT: Better error handling in the PayPal IPN handler. #2194 (@mircobabini)
• BUG FIX: Fixed issue where user fields set as «required» weren’t being styled as required on the checkout page. #2180 (@ipokkel)
• BUG FIX: Now showing the new level templates even if you click on the link in the dashboard or on a fresh install’s levels page. #2181 (@kimwhite)
• BUG FIX: Fixed issues where pmprorh_sanitize was being called instead of the new pmpro_sanitize, causing issues with date fields and others at checkout. #2182

2.9.1 — 2022-07-28

• ENHANCEMENT: Enhanced doc blocks for some functions in includes/functions.php.
• BUG FIX/ENHANCEMENT: Fixed localization of a few strings.
• BUG FIX/ENHANCEMENT: Added unset magic method to the MemberOrder class to avoid warnings, e.g. in the REST API endpoints, which remove some data from orders before output. #2177 (@dparker1005)
• BUG FIX/ENHANCEMENT: Removed unused local variable name_parts. #2170 (@mircobabini)
• BUG FIX/ENHANCEMENT: Fixed CSS/UI issues in the mobile view of some dashboard pages. #2174 #2175 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now filtering the confirmation URL when using Stripe Checkout. #2178 (@dparker1005)
• BUG FIX/ENHANCEMENT: Removed some trailing commas that were throwing errors for some users on old versions of PHP. (@ideadude, @andrewlimaza)
• BUG FIX: Fixed fatal error when reactivating the Register Helper plugin. #2173 (@ideadude, @JarrydLong)
• BUG FIX: Fixed fatal error when reactivating the Register Helper plugin. #2173 (@ideadude, @JarrydLong)
• BUG FIX: Fixed issue with saving group levels when you have more than one group.

2.9 — 2022-07-18

• FEATURE: Added a «User Fields» tab to the settings page. You can now add «Register Helper» style fields through the WP admin dashboard without code. (@ideadude, @kimcoleman, @dparker1005)
• FEATURE: The «Add Ons» tab has a new look, with better browsing and searching. (@kimcoleman)
• FEATURE: Added support for level templates to more easily allow admins to create popular types of levels. (@kimcoleman)
• FEATURE: Added a CSV export option to the built-in reports. (@andrewlimaza, @JarryLong)
• ENHANCEMENT: Redesigned the Add/Edit Membership Level screen to focus on the applicable settings for the type of level. (@kimcoleman)
• ENHANCEMENT: Testing PHP sessions in site health now. (@JarrydLong)
• ENHANCEMENT: Fixed doc block for the pmpro_getLevel() function. (@eighty20results)
• ENHANCEMENT: Showing a notice on the PMPro settings pages if the next update for PMPro has an «update notice» section in the readme for that version. (@dparker1005)
• ENHANCEMENT: Removed the odd line break from the «Powered by Paid Memberships Pro» HTML comment. (@mircobabini)
• ENHANCEMENT: Added filter pmpro_membershiplevels_page_action_links to add/modify buttons on the Settings > Membership Levels admin page. (@kimcoleman)
• ENHANCEMENT: Added pmpro_unhandled_webhook action that is thrown when a webhook or IPN handler encounters a webhook that isn’t processed by PMPro. You can use this hook to log these cases for debugging purposes. (@mircobabini)
• ENHANCEMENT: Disabled the credit card options for the Stripe gateway. Instead, it now says «We accept all major credit cards». (@mircobabini)
• ENHANCEMENT: Added a pmpro_order_status_{status} hook that is fired whenever an order’s status changes. Passes the $status, $order, and $original_status as params. (@JarryLong)
• BUG FIX/ENHANCEMENT: Added the pmpro_calculate_profile_start_date() function, which is used in all built-in gateways now. This fixes some issues with inconsistencies for subscriptions with multiple month billing periods. (@dparker1005, @messica)
• BUG FIX/ENHANCEMENT: Now handling the subscr_failed IPN message for PayPal. This message is now sent sometimes instead of the «recurring_payment_skipped» one. (@andrewlimaza)
• BUG FIX/ENHANCEMENT: The PayPal IPN handler is now treating «Voided», «Denied», and «Expired» payment statuses similar to «Failed». (@JarrydLong)
• BUG FIX/ENHANCEMENT: Now requiring a name when adding/editing a level. (@JarrydLong)
• BUG FIX/ENHANCEMENT: Updates to the level save logic to avoid some edge case issues. (@ideadude)
• BUG FIX/ENHANCEMENT: Removed some trailing commas in arrays that were breaking PHP 5.6 users. (@mircobabini)
• BUG FIX: Fixed «No such product» bug that happened sometimes when checking out with Stripe. We catch this now and create the products when they are missing. (@dparker1005)
• REFACTOR: Removed update notice RE Better Login Reports being merged into core PMPro (which happened a few years ago). Now using the general deprecation notices RE old add ons. (@JarrydLong)
• REFACTOR: Refactored the MemberOrder class a bit to avoid PHP 8+ warnings. (@JarrydLong)

2.8.3 — 2022-05-23

• BUG FIX/ENHANCEMENT: Avoiding multiple DB queries related to license key checks when no license key is enabled.
• BUG FIX: Fixed issue where some PayPal subscriptions had an extra 1 year trial when set up.
• BUG FIX: Avoiding warnings about application fees when using Stripe legacy keys.
• REFACTOR: Refactored recent updates to the Divi compatibility code to avoid issues for users who might be running a similar gist.

2.8.2 — 2022-05-20

• ENHANCEMENT: Now noting the chosen PMPro login page on the pages table in the dashboard. #2073 (@mircobabini)
• ENHANCEMENT: Improved help text on the payment settings page when using Stripe legacy keys. Reminder to disconnect from Stripe if also using legacy keys. #2078 (@dparker1005)
• BUG FIX/ENHANCEMENT: Fixed redirect issues that happened if the login page was trashed. #2077 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Tweaked display of long numbers in the sales report widget. #2071 (@mircobabini)
• BUG FIX/ENHANCEMENT: Renamed the hideads field on the advanced settings page so adblockers don’t block it. #2072 (@mircobabini)
• BUG FIX/ENHANCEMENT: Fixed responsive display of various admin pages when viewed on smaller screens. #2079 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Fixed tracking of hideads feature via Wisdom. #2081 (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Adding HTML to our no_access messages when using Divi to avoid display issues. #2080 (@kimcoleman)
• BUG FIX/ENHANCEMENT: Fixed a warning on memberships report when using MMPU. #2104 (@mircobabini)
• BUG FIX: Moved call to pmpro_doing_webhook in the Stripe webhook handler to make sure Stripe libraries are already loaded. #2101 (@mircobabini)
• BUG FIX/ENHANCEMENT: Avoiding duplicate DB calls when pmpro_license_isValid() is called with no key. This was happening on the plugins, update, and add ons pages in the dashboard. (@ideadude)
• BUG FIX: Fixed issues where payment failed events were not being processed correctly in the Stripe webhook handler. #2100 (@andrewlimaza, @dparker1005, @ideadude)
• BUG FIX: Fixed issue where recurring orders were not saving if a payment method could not be found. #2099 #2105 #2104 (@dparker1005, @ideadude)
• BUG FIX: Fixed error on the orders page happening in some versions of PHP. #2075 (@mircobabini)

2.8.1 — 2022-05-10

• BUG FIX/ENHANCEMENT: Fixed typos in some block descriptions. #2064 (@mircobabini)
• BUG FIX: Fixed issue where the digest email cron and some others were running more often than intended. #2070 (@mircobabini)

2.8 — 2022-05-05

• FEATURE: Added refunds buttons for Stripe and Paypal Express orders. #1948 (@JarrydLong)
• FEATURE: Released Beta version of Stripe Checkout. Add define('PMPRO_STRIPE_CHECKOUT_BETA_ENABLED', true); to your wp-config.php to enable this gateway during the beta. #1923 (@dparker1005)
• ENHANCEMENT: Introduced a new set of functions that handle cron-related tasks including: pmpro_get_crons() to get the list of PMPro registered crons. #1999 (@sc0ttkclark)
• ENHANCEMENT: New filter pmpro_registered_crons which you can register new crons to be handled by PMPro. They show up in the PMPro Site Health info and are automatically scheduled when they need to be. #1999 (@sc0ttkclark)
• ENHANCEMENT: Added an opt-in stats collection so we can get better insight on how people use Paid Memberships Pro. (@sc0ttkclark, @ideadude)
• ENHANCEMENT: Added Formal German translation files. #1926
• ENHANCEMENT: Tracking library conflicts in Site Health, e.g. when other plugins are loading gateway libraries at the same time as PMPro. (@dparker1005)
• ENHANCEMENT: UI/UX improvements to the Orders admin area for list and single edit view. #2017 (@kimcoleman)
• ENHANCEMENT: Improved the UI for email template variables reference on the Settings > Email Templates admin page. #2018 (@kimcoleman)
• ENHANCEMENT: Various other UI improvements to the admin area. #2019 (@kimcoleman)
• ENHANCEMENT: Improved block names, descriptions, keywords, and organization for discover and usability. #2011 (@kimcoleman)
• ENHANCEMENT: Added «show_noaccess» as a setting on the Membership Required block for swapping in the appropriate content message. #2011 (@kimcoleman)
• ENHANCEMENT: Added filter ‘pmpro_braintree_transaction_sale_array’ to allow adding or adjusting of the sale transaction method. #2006 (@andrewlimaza)
• ENHANCEMENT: Moved the TOS input inside the label to support multiline i18n. #2002 (#mircobabini)
• ENHANCEMENT: Added new action pmpro_checkout_after_tos to output content after the TOS. #2003 (@mircobabini)
• ENHANCEMENT: Added filters to change gateway ipn/webhook logfile. #1996 (@mircobabini)
• ENHANCEMENT: Added filter to perform actions during PPHttpPost() method of the PayPal gateways. #1992 (@mircobabini)
• ENHANCEMENT: Added untranslated gateway identifiers to Site Health info. #1989 (@JarrydLong)
• BUG FIX/ENHANCEMENT: Fixed escaping and localization for many strings across the codebase. #1976 (@mircobabini)
• BUG FIX/ENHANCEMENT: Resolve admin area conflicts with other plugins using similar class names. #1991 (@sc0ttkclark)
• BUG FIX: Crons are now automatically rescheduled if they disappear form the cron schedule. #1999 (@sc0ttkclark, @mircobabini)
• BUG FIX: Resolved problems with PHP float precision and prevent passing along faulty floats to the gateway APIs. #1929 (@sc0ttkclark)
• BUG FIX: Fixed issue where TOS setting was not saving when using the PayFast gateway. #1990 (@andrewlimaza)
• BUG FIX: Fixed issue where the is_renewal() method didn’t work during the pmpro_added_order hook. (@andrewlimaza)

2.7.5 — 2022-03-01

• ENHANCEMENT: Now sending «name» separate from the «description» when creating customers for Stripe checkouts. (@ideadude)
• ENHANCEMENT: You can now search the members list on specific user table columns or user meta fields by using a colon in your search term. These queries are faster than the default queries. The format is meta_key:meta_value (no backticks). You can also use login, nicename, email, url, or display_name as the meta_key and the users table will be searched against the related column. (@ideadude)
• BUG FIX/ENHANCEMENT: Increased search limit to make sure we reuse Stripe «prices» when members check out for recurring plans with Stripe. (@ideadude)
• BUG FIX: Fixed issue where Stripe application fees were still charged for PMPro Standard and PMPro Builder license holders. From now on, payments and subscriptions will not include the fee. (@ideadude)

2.7.4 — 2022-02-22

• ENHANCEMENT: Adjusting the readme title and description. (@kimcoleman)
• ENHANCEMENT: Improved error handling for Stripe Prices. (@dparker1005)
• ENHANCEMENT: Adjusted the ‘/change_membership_level’ route to support email and create_user parameter to improve our Zapier integration. No parameters are removed, this is to ensure backwards compatibility for any pre-existing applications using this REST route. (@andrewlimaza)
• ENHANCEMENT: Now showing new vs renewal orders on the sales and revenue reports. (@ideadude, @JarrydLong, @kimcoleman)
• ENHANCEMENT: Better tool tips in the sales and revenue reports. (@ideadude, @JarrydLong, @kimcoleman)
• ENHANCEMENT: Now handling recurring_payment_profile_created IPN transactions and updating the payment_transaction_id for new orders made via PayPal. (@mircobabini)
• ENHANCEMENT: Added pmpro_webhook_unhandled action at the end of any webhook handler. (@mircobabini)
• BUG FIX/ENHANCEMENT: Updated logic and text around license keys to account for new premium plans. (@ideadude, @kimcoleman)
• BUG FIX/ENHANCEMENT: Made Terms of Service text a bit darker for accessibility. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Updated queries in includes/cleanup.php to use WPDB delete method for better DB escaping. (@andrewlimaza)
• BUG FIX/ENHANCEMENT: Fixed the text domain for some strings that weren’t translatable. (@mircobabini)
• BUG FIX/ENHANCEMENT: Fixed misspelled text domains in the pmpro_reset_password_form() function. (Thanks, @isaiahfb)
• BUG FIX: Fixed issues with the update billing page when using PayPal Websites Payments Pro. (@dparker1005)
• BUG FIX: Fixed issues with Stripe checkouts when users had previous checkouts throug a different gateway. (@dparker1005)
• REFACTOR: Removed unused condition in send method of PMProEmail class. (Thanks, @freax)
• BUG FIX: Fixed notice when pmpro_check_plugin_version was called for an invalid plugin file. (@ideadude)

2.7.3 — 2022-02-01

• ENHANCEMENT: Added CSS to make sure input fields input fields aren’t extra tiny/short, e.g. in the Twenty Twenty Two theme. (@kimcoleman)
• BUG FIX: Fixed a fatal error for older PHP sites when visiting the page settings in the admin dasboard. (@andrewlimaza)
• BUG FIX: Fixed issue where license keys were incorrectly flagged as invalid if expiring within 1 month. (@ideadude)
• BUG FIX: Fixed issue where billing addresses were not added to the Stripe customer at checkout. (@dparker1005)

2.7.2 — 2022-01-17

• BUG FIX/ENHANCEMENT: Improved error messages when creating subscriptions with Stripe. (@dparker1005)
• BUG FIX: Fixed issue where certain Stripe trial periods would be sent to the Stripe subscription as longer than intended. #1912 (@dparker1005)
• BUG FIX: Fixed visual issues with dropdowns in our blocks when using Full Site Editing in WP 5.9+. #1909 (@sc0ttkclark)

2.7.1 — 2022-01-13

• BUG FIX: Fixed issue on some MySQL setups that would throw an error about the primary key in the pmpro_memberships_pages and pmpro_memberships_categories tables.

2.7 — 2022-01-13

• FEATURE: Added a «Spam Protection» option to the advanced settings page. When used, IP addresses are blocked from checkout if there are more than 10 failures within 15 minutes. (@ideadude)
• ENHANCEMENT: Checkouts with Stripe will now reuse Stripe Products and Prices. (@dparker1005)
• ENHANCEMENT: User profile now links to Stripe customer so that subscriptions can easily be directly updated in Stripe rather than through Subscriptions Updates which is now deprecated. (@dparker1005)
• ENHANCEMENT: Improved usability of the Require Membership metabox for sites with a large number of levels. #1885 #1692 (@kimcoleman)
• ENHANCEMENT: Include reCAPTCHA on Billing Page form. #1884 (@ideadude)
• ENHANCEMENT: Membership pages URLs are now included in the Site Health Information. (@JarrydLong)
• BUG FIX/ENHANCEMENT: Set the default for the pmpro_send_200_http_response filter to false instead of true to reduce impact of the functionality on sites that don’t need it. #1868 (@dparker1005)
• BUG FIX/ENHANCEMENT: Consolidated the «Free memberships only» option into the «All memberships» option for enabling reCAPTCHA to ensure that paid memberships with discounts that make the membership $0 cost show reCAPTCHA consistently. #1878 #1840 (@JarrydLong)
• BUG FIX: Resolved PHP 8 fatal error with Authorize.net Silent Post handling. #1899 (@ZebulanStanphill)
• BUG FIX: The new filter pmpro_admin_pagesetting_post_type replaces the now deprecated filter pmpro_admin_pagesetting_post_type_array to allows setting one specific post type instead of always getting the first from an array. #1866 #1865 (@ipokkel)
• BUG FIX: Resolved issue where users may not be linked to their Stripe customer. (@dparker1005)
• BUG FIX: Now including all levels (public and hidden) in the Paid Memberships Pro section of Site Health information. #1898 (@kimcoleman)
• BUG FIX: Set cancelled/error status from PayPal Express IPN even when an order has no user. #1897 (@mircobabini)
• BUG FIX: Ensure styles are removed from excerpts generated for protected content. #1894 (@sc0ttkclark)
• BUG FIX: Various text adjustments for readability. #1892 (@kimcoleman)
• BUG FIX: Set primary key for wp_pmpro_memberships_categories and wp_pmpro_memberships_pages tables. #1891 (@ideadude)
• BUG FIX: Fixes around the pmpro_manage_memberslist_columns filter to accommodate sites that aren’t in English. #1879 #1876 (@JarrydLong)
• BUG FIX: Use the correct cancel method when cancelling an oder through PayPal Standard IPN requests. Fixes compatibility with PMPro Cancel on Next Payment Date add on. #1882 (@mircobabini)
• BUG FIX: Discount code expiration date is now properly being used in the REST API. #1877 (@JarrydLong)
• BUG FIX: Remove the SHIPTOPHONENUM parameter sent to PayPal Website Payments API and encode all parameters passed into API updates. #1883 (@dparker1005)
• BUG FIX: Resolve timezone issue with Stripe subscriptions to resolve problems where trials would receive an extra day depending on the time of checkout. #1874 (@dparker1005)
• BUG FIX: Now using a single product per level and a single Stripe price per payment amount to prevent duplicate products and prices. #1824 (@dparker1005)
• REFACTOR: Organized and simplified Stripe gateway class. (@dparker1005)

2.6.7 — 2022-01-06

• SECURITY: Updated escaping in the pmpro_getLevelAtCheckout and pmpro_checkDiscountCode functions as extra precaution against SQL injections. (Thanks, WPScan)

2.6.6 — 2021-11-18

• SECURITY: Updated escaping on the discount codes page in the dashboard to prevent XSS attacks. #1867 (Thanks, Erwan from WPScan)
• BUG FIX/ENHANCEMENT: Added code to remove duplicate active rows in the pmpro_memberships_users table after level change. This might have happened e.g. if users were purchasing a level via the WooCommerce Add On multiple times. #1860 (@dparker1005)
• BUG FIX/ENHANCEMENT: Improved the REST API endpoints to better support Zapier native requirements. #1862 (@andrewlimaza)
• BUG FIX: Fixed PHP notices in the name parser library. #1861 (@sc0ttkclark)

2.6.5 — 2021-11-12

• ENHANCEMENT: Introduced new action pmpro_before_commit_express_checkout to allow additional changes after an order has been saved but before sending customer to PayPal Express checkout. #1852 (@mircobabini)
• BUG FIX/ENHANCEMENT: Added login compatibility for Jetpack WordPress.com SSO when using the PMPro login page. #1848 (@sc0ttkclark)
• BUG FIX: Fixed PHP notices from status headers when server protocol information is unavailable. #1849 (@dparker1005)
• BUG FIX: Fixed metadata compatibility for membership levels and orders when calling get_pmpro_membership_level_meta() and get_pmpro_membership_order_meta() so they support getting all meta values for all keys. #1853 (@mircobabini)
• BUG FIX: Escape all Webhook communication debug output coming from gateways. #1855 (@ideadude, Victor Garcia)

2.6.4 — 2021-11-02

• ENHANCEMENT: Now including some information from the htaccess file in Site Health, including whether a getfile.php script is defined or if caching is being used. (@sc0ttkclark)
• ENHANCEMENT: Now including some of the PMPro-related PHP constants in the Site Health. (@sc0ttkclark)
• ENHNACEMENT: Now including the minimum PHP version (5.6 currently) in the readme.txt so it’s shared on the WordPress.org page. (@sc0ttkclark)
• ENHANCEMENT: Added scrollable classes to the member history shown on user profile edit page in the dashboard. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now sending a 200 OK status message early when the Stripe webhook is running to avoid timeout issues. We may use this new pmpro_send_200_http_response in the other webhook/IPN handlers later on. (@dparker1005)
• BUG FIX/EHNANCEMENT: Removed the «fee» info from the edit user page. This was often misleading. The fee is still shown on the members list and frontend account page. Future updates will include work to make sure the fee is more accurate in cases where subscriptions or levels are being changed by admins after checkout. (@ideadude)
• BUG FIX/ENHANCEMENT: Once again enqueuing the admin.css file on all WP admin pages. This fixes issues where styles weren’t being applied to the edit user/profile page in the dashboard. (@ideadude)
• BUG FIX/ENHANCEMENT: Removed the «Member Value Report». We didn’t intend to move this over from the old Member History add on. The report was inaccurate and had optimization issues. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Added login compatibility for wordpress.com hosted sites. This fixes some issues with wordpress.com’s SSO when using the PMPro login page. (@sc0ttkclark)
• BUG FIX: Fixed issue introduced in 2.6.3 where memberships were not being cancelled when cancelled at PayPal. (@mircobabini)
• BUG FIX: Now including time when calculating profile start date. In the past, we would set it to 00:00:00 which could add or remove a few hours from the subscription. (@dparker1005)
• BUG FIX: Fixed issue where enddates were incorrectly set sometimes when expiration period was «Hour». (@kimwhite)

2.6.3 — 2021-10-11

• ENHANCEMENT: Now passing «app» information to Stripe through API calls. (@dparker1005)
• ENHANCEMENT: Updated PayPal IPN to detect messages for refunds to at least log it. (@mircobabini)
• ENHANCEMENT: Updated PayPal IPN to differentiate between cases where the initial payment failed vs a subscription was cancelled. (@mircobabini)
• ENHANCEMENT: Better styling of the membership levels history when empty. (@mircobabini)
• BUG FIX/ENHANCEMENT: Now showing better error messages when license key checks fail due to connection issues. (@ideadude)
• BUG FIX: Improved PayPal API integration to handle cases where PayPal is returning encoding errors but still processing payments and subscriptions. (@mircobabini)
• BUG FIX: Fixed issue where the Stripe sandbox key wasn’t saved properly when using Stripe connect. (@dparker1005)
• BUG FIX: Fixed issue where a double $$ was showing up in specific emails. (@andrewlimaza)
• BUG FIX: Fixed warnings in various webhook and IPN handlers. (@ideadude)
• BUG FIX: Fixed warning in the admin activity email cron job. (@andrewlimaza)

2.6.2 — 2021-09-17

• ENHANCEMENT: Made username the first column in the members list. This helps with the mobile view. #1764 (@dparker1005)
• BUG FIX/ENHANCEMENT: Will now block uninstall.php from running if an older version of PMPro is deleted from the plugins page. #1773 (@mircobabini)
• BUG FIX/ENAHCEMENT: Expanded the allowed HTML for pmpro_kses to support email templates and added a pmpro_kses filter. #1770 (@sc0ttkclark)
• BUG FIX/ENHANCEMENT: Updated the CSS for «clickable» labels in checkbox lists. #1752 (@kimcoleman)
• BUG FIX: Fixed bug with sending test emails from the email templates page. #1765 (@ideadude)
• BUG FIX: Added the !!membership_level_confirmation_message!! var to the list on the email tempaltes page. #1783 (@kimwhite)
• BUG FIX: Updated the SendWP link per their new dashboard area. #1777 (@kimcoleman)
• BUG FIX: Fixed bug where PMPro-related usermeta was sometimes blanked out if those fields weren’t present at checkout, e.g. when a logged in user was checking out. #1762 (@andrewlimaza)
• BUG FIX: Fixed issue where gateway-related notices weren’t showing up on the discount codes page. #1757 (@mircobabini)
• BUG FIX: Fixed some design issues with the member history tables. #1753 (@mircobabini)
• BUG FIX: Fixed issues where the option to block subscribers from the dashboard would interfere with other plugins, e.g. the MailPoet plugin. #1749 (@sc0ttkclark)
• BUG FIX: Fixed issues where the RTL stylesheets might not load if your theme overrode frontend.css or admin.css but didn’t have the RTL equivalents. (@ideadude, @sc0ttkclark)

2.6.1.1 — 2021-08-25

• BUG FIX: Fixed issue with PMPro blocks not showing up in the block editor.
• REFACTOR: Some JS functions and element IDs and names have been prefixed with pmpro_ to avoid conflicts.

2.6.1 — 2021-08-24

• SECURITY: Added capability checks to further tighten security around email template settings. (@ideadude, @sc0ttkclark)
• SECURITY: Added a pmpro_kses function and using that to sanitize email template bodies and all email bodies before sending. (@ideadude, @sc0ttkclark)
• ENHANCEMENT: Added Email Templates link to PMPro Dashboard for getting started. #1722 (@kimcoleman)
• ENHANCEMENT: All actions in the admin list tables are now filterable for Discount Codes (pmpro_discountcodes_row_actions), Membership Levels (pmpro_membershiplevels_row_actions), and Orders (pmpro_orders_user_row_actions). #1686 (@sc0ttkclark, @mircobabini)
• BUG FIX: Ensure our admin scripts/styles only load on PMPro admin pages. #1724 (@sc0ttkclark)
• BUG FIX: Remove unused code in pmpro_comments_filter() that was triggering a PHP warning. #1730 (@freax)
• BUG FIX: Stop turning on autoloading for PMPro options when saving them. #1719 (@freax)
• BUG FIX: Prevent fatal error for PHP 8 in pmpro_email_templates_email_data() to strictly check for WP_User objects. #1729 (@ZebulanStanphill)
• BUG FIX: Fix problem where pmpro_round_price() would not take into account currencies with decimals set to 0. #1732 (@dparker1005, @ipokkel, @sc0ttkclark)
• BUG FIX: Clarify that Stripe Legacy keys remain connected and will continue to work. #1735 (@dparker1005, @sc0ttkclark)

2.6 — 2021-08-12

• FEATURE: Updated Stripe integration to use Stripe Connect. See Gateway Fees for information about transaction fees for Stripe Connect and our platform fee for those without an active Plus/Unlimited license.
• FEATURE: Improved REST API endpoints to support Zapier integration natively.
• FEATURE: You can now set levels to expire after a certain number of hours, and can set users to expire at a specific time down to the minute.
• FEATURE: The Member History Add On has been merged into the core PMPro plugin. A table of the user’s membership and order history is shown on the edit user page of the admin dashboard.
• FEATURE: The Email Templates Add On has been merged into the core PMPro plugin. You can edit PMPro-related email templates from the Memberships -> Settings -> Email Templates page in the admin dashboard.
• FEATURE: You can now use PMPro blocks in the new widget area of WP 5.8.
• BUG FIX/ENHANCEMENT: Establishing style for scrollable boxes throughout core plugin.
• BUG FIX/ENHANCEMENT: Using HTTPS to set the pmpro_visit cookie if over HTTPS. (Thanks, freax on GitHub)
• BUG FIX: Fixed fatal error in PHP 8 when deleting a Stripe webhook. (Thanks, Zebulan Stanphill)
• BUG FIX: Fixed warnings shown on the widget page when using WP 5.8+.

2.5.10.2 — 2021-08-02

• ENHANCEMENT: New scripts to use WP CLI to update pot and po/mo files.
• BUG FIX/ENHANCEMENT: Updated cancellation logic to support upcoming Cancel on Next Payment Date Add On changes.
• BUG FIX/ENHANCEMENT: Making sure to use the correct security setting when calling setcookie from an HTTPS site. (Thanks, freax on GitHub)
• BUG FIX: Now archiving Stripe products after checkout. We create a unique product for each checkout, and these would clutter up the Stripe reports.
• BUG FIX: Fixing data erasure and data export request action for login page.
• BUG FIX: Fixed issue where PMPro settings on Elementor elements could override the «should_render» setting incorrectly. (Thanks, codezz on GitHub)
• BUG FIX: Now catching the case where you try to email an invoice for an order that has no user.

2.5.10.1 — 2021-07-05

• BUG FIX/ENHANCEMENT: The ‘Edit Code: %s’ string on the discount codes page is now wrapped for translation.
• BUG FIX: Fixed issue with the getfile.php script introduced in 2.5.10.

2.5.10 — 2021-06-25

• SECURITY: Fixed XSS vulnerability on the edit order page in the dashboard. (Thanks, Scott Kingsley Clark)
• ENHANCEMENT: Improved escaping and localization for the message returned when clicking to apply discount code.
• ENHANCEMENT: Now hiding gateway setting API keys behind asterisks.
• ENHANCEMENT: Added some extra hooks to the edit membership levels page in the dashboard: pmpro_membership_level_after_billing_details_settings, pmpro_membership_level_after_other_settings, pmpro_membership_level_after_content_settings.
• ENHANCEMENT: Added a pmpro_after_order_settings_table hook to the edit order page in the dashboard.
• BUG FIX/ENHANCEMENT: Now passing a CARDONFILE parameter with PayPal Payflow payment and subscription transactions.
• BUG FIX/ENHANCEMENT: Using the wp.passwordStrength.userInputDisallowedList function from WP 4.5 if available.
• BUG FIX/EHNANCEMENT: Now making sure that the pmpro_update_order and pmpro_updated_order hooks fire whenever an order is updated in the DB.
• BUG FIX: Fixed issue in getfile script where parameters in the URL would cause File not found errors.
• BUG FIX: Fixed how the PayPal IPN handler handles cases where a subscription is set up correctly but the initial payment failed. We now correctly cancel these users and mark their order as error.
• BUG FIX: Improved error handling in the PayPal Express integration, particularly when a subscriptions PROFILESTATUS is missing.
• BUG FIX: User registered date is now shown in local time.
• BUG FIX: Fixed issue where the deprecated pmpro_getClassForField function wasn’t returning a value properly. (Thanks, Elena Draculet)
• BUG FIX: Updated the pmpro_sort_levels_by_order function to use level IDs for keys, since some code expects that for level arrays. This matches the behavior we had before introducing this function.
• BUG FIX: Updated the pmpro_changeMembershipLevel function always set the order status to error if that was passed in as the «old level status».
• BUG FIX: Fixed warning in searches/pages when PMPro pages is not set.
• BUG FIX: Fixed warnings being generated when using PHP 8 and Divi
• BUG FIX: Fixed warnings related to PayPal Express session variables.

2.5.9.1 — 2021-05-12

• BUG FIX/ENHANCEMENT: Updated pmpro_changeMembershipLevel() to return null if the user’s level is not changed. For the past 2 vesions, we’ve been returning true in these cases, which caused PMPro to send emails to the admin when the edit use page was saved, even if there was no level change. This change has been backported to versions 2.5.8 and 2.5.9.

2.5.9 — 2021-05-05

• ENHANCEMENT: Adjusting style for prices and price parts shown on the frontend.
• ENHANCEMENT: Adjusting HTML for links in the Orders table in the dashboard.
• BUG FIX: Reverted the change to the pmpro_is_checkout() function. Since we default to the first available level, calling pmpro_getLevelForCheckout() was causing pmpro_is_checkout to return true on ALL pages. This disrupted a lot of functionality.
• BUG FIX: Fixed warnings in the pmpro_getLevelAtCheckout() function.
• BUG FIX: Fixed issue where «All Time Sales» was showing up as 0, even when there were sales.

2.5.8 — 2021-04-30

• ENHANCEMENT: Added pmpro_membership_content_filter filter to let other plugins change how PMPro filters member content.
• ENHANCEMENT: Improved de_DE email template translation. (Thanks, biker238 on GitHub)
• ENHANCEMENT: Added pmpro_change_level filter.
• ENHANCEMENT: Improved display of prices on invoices and added pmpro_display_price_parts function and filters so plugins like the upcoming AvaTax add on can add subtotals to the price displays.
• ENHANCEMENT: Added a pmpro_after_all_membesrhip_level_changes hook that fires at the end of the page load and can be used to process all membership changes in bulk.
• ENHANCEMENT: The «User» column on the orders page now shows the username and email.
• ENHANCEMENT: Added a pmpro_stripe_create_subscription_array filter. (Thanks, ermGit on GitHub)
• BUG FIX/ENHANCEMENT: pmpro_change_level returns true now if the function is called to change a user’s level to one they already have.
• BUG FIX/ENHANCEMENT: No longer calling $order->updateTimestamp() on orders adminpage.
• BUG FIX/ENHANCEMENT: Updated conditional to check ‘street’ instead of ‘name’ when displaying billing address on Invoice/Confirmation.
• BUG FIX/ENHANCEMENT: Improved localization and added missing strings to translation.
• BUG FIX/ENHANCEMENT: Updated to use `get_user_locale1 to load localization.
• BUG FIX/ENHANCEMENT: Now Preserving existing values for post__not_in and category__not_in when filtering search and archive queries.
• BUG FIX/ENHANCEMENT: Fixed sorting of the Membership Level column on the Users List table in the WP admin dashboard.
• BUG FIX/ENHANCEMENT: Added a pmpro_sort_levels_by_order function and using it in various places to make sure levels are listed in the order they are in on the PMPro settings page.
• BUG FIX/ENHANCEMENT: Added an extra check in the pmpro_is_checkout function that helps with issues that were coming up in some add ons.
• BUG FIX/ENHANCEMENT: The level cache now takes into account the $include_active parameter.
• BUG FIX/ENHANCEMENT: The CSS class is now properly added to the body tag when a PMPro page block is used on a page.
• BUG FIX/EHNANCEMENT: Better timezone handling in sales reports.
• BUG FIX/ENHANCEMENT: Fixed a few places where we might think a free order was paid if using a currency with more or less than 2 decimal places.
• BUG FIX: Fixed deprecated jQuery functions in pmpro-admin.js.
• BUG FIX: Fixed warning for a missing/deleted level in the pmpro_post_classes function.
• BUG FIX: Default pmpro_longform_address to true on Billing Information page.
• BUG FIX: Fixed pmpro_twocheckout_validate filter.
• BUG FIX: Fixed variables passed to the pmpro_discount_code_used filter.
• BUG FIX: CZK currency should have 2 decimals.
• BUG FIX: Avoiding a redirect loop if the login page is deleted. (Thanks, George Stephanis)
• BUG FIX: Fixed the password reset link in new user notification email when not using pretty permalinks.
• BUG FIX: Fixed issues with password reset URLs on multisite networks.
• BUG FIX: Fixed the issue where sales weren’t showing up on report charts sometimes on the 31st of the month.

2.5.7 — 2021-03-10

• ENHANCEMENT: Added a pmpro_checkout_message filter that can be used to filter error messages shown at checkout.
• BUG FIX/ENHANCEMENT: Now making sure some billing address fields are available for the billing failure emails sent during the PayPal IPN handler.
• BUG FIX/ENHANCEMENT: Fixed issues where HTML entities were shown in level prices in some places when using certain currencies. All prices are sent through a special pmpro_escape_price function that allows div, span, and sup tags with id and class attributes. Also removed from unneeded small tags and grey coloring of prices in certain spots.
• BUG FIX: Now cancelling membership when a SUBSCRIPTION_CANCELED message is sent to the Braintree webhook handler. In the past, we incorrectly sent the payment failed email instead.
• BUG FIX: Fixed display issues with the Require Membership block. The level select field has been swapped with a list of checkboxes.
• BUG FIX: Fixed warnings that occurred when processing failed payments in webhook and IPN handlers.
• BUG FIX: Fixed our Braintree class so we will only attempt to update a user’s credit card and address when the getCustomer method is called at checkout or during a billing update.
• BUG FIX: Fixed issue where refreshing the checkout review page when using PayPal Express caused the associated order to be updated again. Now the order status is updated to review and only updates again when the user confirms.
• BUG FIX: Avoiding warnings when the pmpro_url function is used if the PMPro pages haven’t been set up yet. (Thanks, Thomas Sjolshagen)
• REFACTOR: Updated the pmpro_getSpecificMembershipLevelForUser( $user_id, $level_id ) function so both fields are required. Will still default to the current user if null is passed for the $user_id.

2.5.6 — 2021-03-05

• SECURITY: Now sanitizing and escaping the order parameter when filtering the users table in the dashboard. (Thanks, Gen Sato)
• BUG FIX/ENHANCEMENT: Now hiding the ApplePay/GooglePay «Payment Request» buttons when the main checkout form is submitted. This helps to prevent double checkouts.
• BUG FIX: Fixed missing membership data in the billing failed email.

2.5.5 — 2021-02-22

• SECURITY: Better sanitization of parameters on some REST API endpoints.
• SECURITY: Now showing reCAPTCHA field at checkout even for logged in users.
• ENHANCEMENT: Added find_billing_address() method to the MemberOrder class. This will look for the address on the last order with the same sub id or in user meta.
• ENHANCEMENT: Better styling for invoices shown on the frontend.
• ENHANCEMENT: No longer forcing column width % in the members list table.
• ENHANCEMENT: Added a pmpro_doing_webhook action that is fired at the beginning of our webhook/IPN handlers.
• ENHANCEMENT: Added a pmpro_membership_level_after_billing_details_settings hook to the edit membership level page. This hook should now be used to add billing related settings.
• BUG FIX/ENHANCEMENT: Allowing order total to be set to 0, even if there is a subtotal and tax amount.
• BUG FIX/ENHANCEMENT: Stripe checkout fields will now use the language set in the Stripe settings.
• BUG FIX/ENHANCEMENT: The URL check in our notifications code now accepts arrays (e.g. to see if a URL has one of a group of top level domains). This fixes a warning some may have seen in error logs.
• BUG FIX: Fixed issues where totals on PayPal recurring payments were sometimes incorrect if both an mt_gross and amount field were passed via IPN.

2.5.4 — 2021-01-28

• ENHANCEMENT: Bump license year 2021 — 10 years.
• ENHANCEMENT: Now passing billing street in pmpro_tax filter.
• ENHANCEMENT: Prefixed our pmpro_stripeResponseHandler function to avoid conflicts.
• ENHANCEMENT: Added getRealPaymentTransactionId method to PayPal Express gateway class to recover a missing transaction ID.
• ENHANCEMENT: Added pmpro_checkout_before_form action to hook anything before the membership checkout form.
• ENHANCEMENT: Added avatar as a valid field type for the [pmpro_member] shortcode.
• ENHANCEMENT: Changed license key field to text type and unmasked. Masking implied the key was hashed before saving which is not true.
• ENHANCEMENT: Addedpmpro_discount_code_used action hook for when a discount code is used.
• ENHANCEMENT: Stripe will now pull billing address info for recurring orders from webhooks.
• BUG FIX/ENHANCEMENT: Improved user interface, error handling, and messages in the frontend password reset process.
• BUG FIX/ENHANCEMENT: Added a space between state and zip code in billing info.
• BUG FIX/ENHANCEMENT: Now rounding amount sent with Stripe payment request button.
• BUG FIX/ENHANCEMENT: Improved pmpro_check_plugin_version function to also check a specific value of the get_plugin_data array.
• BUG FIX/ENHANCEMENT: Added pmpro_membership_levelmeta and pmpro_membership_ordermeta tables to uninstall process.
• BUG FIX/ENHANCEMENT: Escaped things in SQL queries in 2Checkout INS service handler.
• BUG FIX/ENHANCEMENT: Cleaned up levels page template and added MMPU compatibility.
• BUG FIX/ENHANCEMENT: Fixed pagination and export issues with a discount code filter on the Orders admin page.
• BUG FIX/ENHANCEMENT: Prefixed our pmpro_stripeResponseHandler function to avoid conflicts with other Stripe code that may not be prefixed.
• BUG FIX/ENHANCEMENT: Cleaned up conditionals and escaping improvements in the pmpro_redirect_to_logged_in function.
• BUG FIX/ENHANCEMENT: Fixed deprecation notices for sites running PHP 8.
• BUG FIX/ENHANCEMENT: Improved SQL query format in the applydiscountcode service.
• BUG FIX: Fixed issues with ReCAPTCHA v2 and certain gateways.
• BUG FIX: Fixed bug where blog name was not showing in Admin Activity email.
• BUG FIX: Improved incorrect PHP doc blocks.
• BUG FIX: Fixed an issue on some sites where password reset link in email was incorrect.
• BUG FIX: Fixed level change issues during 2Checkout checkout.
• BUG FIX: Fixed issue where checkout_levels REST API endpoint could return the wrong initial payment
• BUG FIX: Fixed undefined notice for timestamp variable in the Stripe gateway class.
• BUG FIX: Avoiding warnings when user ids are in the memberships_users table, but a user doesn’t exist.
• BUG FIX: Now setting the correct value for membership_id in the admin change emails.

2.5.3 — 2021-01-26

• SECURITY: Fixed indirect object reference vulnerability where order information, including customer names, email addresses, and order numbers could be accessed by non-admin WordPress users. (Thanks, WP Plugins Team)
• SECURITY: Now checking ReCAPTCHA validation before enabling the submit button on the checkout form when using ReCAPTCHA v2. This helps to keep bad actors from testing credit cards on your checkout page. We were already doing a similar check when using ReCAPTCHA v3. Further updates to rate limit credit card failures are planned.

2.5.2 — 2020-10-23

• BUG FIX: Fixed issue where the RECAPTCHA library wasn’t being loaded early enough to validate at checkout.
• BUG FIX: Fixed issue where code in the Stripe class was unsetting some required fields, even if Stripe was not being used at checkout.

2.5.1 — 2020-10-16

• SECURITY: Fixed XSS vulnerability on the Members List page of the dashboard. (Thanks, Ron Masas from Checkmarx.com)
• ENHANCEMENT: Add Ukrainian Hryvnia currency. (Thanks, Mirco Babini)
• ENHANCEMENT: Added a «non-members» option to the Beaver Build module.
• BUG FIX: Fixed issue where only USD and US were allowed with Stripe’s GooglePay/ApplePay buttons.
• BUG FIX: Fixed issue where some profile fields, e.g. those added with Register Helper, were accidentally updated or removed when accessing the frontend profile page.
• BUG FIX: Fixed issue with tracking discount code uses when using the 2Checkout gateway. (Thanks, karambk on GitHub)
• BUG FIX: No longer running excerpts through wpautop when a more tag is used.

2.5 — 2020-10-02

• FEATURE: When using the Stripe Gateway, you may now allow users to pay using Apple Pay, Google Pay, or Microsoft Pay depending on their browser. Enable this feature from the payment settings page.
• FEATURE: Added Divi Builder compatibility.
• FEATURE: Updated the Braintree Gateway class to be able to use the Braintree API for the pmpro_next_payment() function. Note, for performance reasons, you must call this method directly or enable it by hooking it up with code like add_filter('pmpro_next_payment', array('PMProGateway_braintree', 'pmpro_next_payment'), 10, 3);
• FEATURE: Added ordermeta tables and functions. We will wait about a year for all users to upgrade before using these widespread. (Thanks, Mirco Babini)
• ENHANCEMENT: The «short» version of the level cost text for a free level is now «Free» instead of «0.00 now».
• ENHANCEMENT: Added a get_original_subscription_order method to the MemberOrder class. This will return the first order in a subscription when called from a recurring order.
• ENHANCEMENT: Removed the old style license nags.
• BUG FIX/ENHANCEMENT: Using microtime and a static counter int to make sure our order and discount codes are unique. In the past very high traffic sites could run into duplicates if two checkouts happened at the exact same second.
• BUG FIX/ENHANCEMENT: Adjust order delete prompt to support other locales.
• BUG FIX/ENHANCEMENT: Better handling of tax amounts in recurring payments, e.g. when using the PMPro VAT Tax add on.
• BUG FIX/ENHANCEMENT: Optimized how often we hit the Stripe API when events on the checkout page could potentially update the price of checkout.
• BUG FIX/ENHANCEMENT: The checkout_levels api call now takes level as param.
• BUG FIX/ENHANCEMENT: No longer running sanitize_text_field on password fields. This would break passwords that had strings of characters resembling html tags.
• BUG FIX/ENHANCEMENT: Now warning admins if the Stripe billing period is longer than 1 year. Billing periods greater than 1 year are not allowed by Stripe.
• BUG FIX/ENHANCEMENT: Now detecting when a Stripe webhook is set up for an older version of the Stripe API and showing a notice with a link to update.
• BUG FIX/ENHANCEMENT: Adding MAXFAILEDPAYMENTS=1 to PayPal add subscription requests. This tells PayPal to cancel a subscription after the first failed payment. In our experience, the automatic retries rarely worked well. This change fixes issues with subscriptions going out of sync or users retaining access to your site when their payment has failed. Members still receive the payment failed email, which prompts users to return to the site to renew.
• BUG FIX/ENHANCEMENT: Fixing some issues where we are adding extra break tags into the password reset email. There are still some issues like this when using certain plugins. We are working on a general fix.
• BUG FIX/ENHANCEMENT: Removed the «coupon amount» field from the edit order page. These were hold outs from the 2007! ecommerce plugin PMPro was forked from. You can set the pmpro_orders_show_coupon_amounts filter to __return_true to show these fields again if you were using them for tracking things in your custom code.
• BUG FIX: Fixed MMPU compatibility when using discount codes.
• BUG FIX: No longer filtering the wp login url when on wp-login.php. This fixes issues with iThemes Security 2FA.
• BUG FIX: Fixed issues where the Stripe webhook was not being updated sometimes when clicking the button to update.
• BUG FIX: Fixed some notices and warnings when using Braintree.
• BUG FIX: Now resetting memberslist page number when changing shown level.
• BUG FIX: Now ensuring that the discount code field updates, update the Request Button price.
• BUG FIX: Fixed issue where non-pretty permalinks may break frontend password resets.
• BUG FIX: Fixed invoice links on the account page. (Thanks, Mateusz Hołtyn)
• BUG FIX: Fixed incorrect label «for» attribute for uninstall setting.
• BUG FIX: Fixed issue where some free plugins distributed by PMPro would show warnings about requiring a Plus license.

2.4.4 — 2020-09-02

• BUG FIX: Fixed fatal error that sometimes occurred on the payment settings page when using PHP 5.6 or earlier.
• BUG FIX: Fixed fatal errors that showed up on the frontend invoice page.
• BUG FIX: Fixed issue where the confirmation message was not showing up in the confirmation email if that option was checked.
• ENHANCEMENT: Added a pmpro_stripe_charge_params filter that can be used to edit or add params sent to the Stripe create charge method. (Thanks, Michael Bester)
• ENHANCEMENT: Tweaked the markup of the invoice page so the payment type information looks a little better.

= 2.4.3 — 2020-08-25
* SECURITY: Fixed a cross-site scripting vulnerability in the code that updates the Required Membership settings on a post. This vulnerability could have been used in conjunction with other security vulnerabilities to trick an admin into editing the membership settings for a page, potentially exposing members only content to non-members. It is unlikely that there was any active exploitation of this vulnerability. This issue may also have shown up as a bug on some sites using page builders, where the membership settings for a post would be cleared out when editing a post. (Thanks to the wp.org plugin review team for catching this issue.)
* SECURITY: Better escaping of variables shown in the Require Membership meta box and related SQL queries.
* BUG FIX/ENHANCEMENT: Renamed the Vietnamese language files to match what is expected.

= 2.4.2 — 2020-08-24
* SECURITY: Updated the PMPro REST API endpoints accessed via the GET method to also require appropriate capabilities to access. The membership confirmation text will be hidden from non-members and non-admins. The endpoints to check a user’s level or access to a post require the pmpro_edit_memberships capability now. You should make sure your API users have the appropriate capabilities to use the API. You can use the pmpro_rest_api_route_capabilities filter and/or pmpro_rest_api_permissions filter to change this behavior.
* BUG FIX: Fixed issues with the PMPro REST API endpoints, including the discount code and checkout level endpoints.
* BUG FIX: Fixed issue with backslashes in the display name when editing form the PMPro frontend profile page.
* BUG FIX: Fixed issue where timestamps were showing up incorrectly for recent orders shown on the dashboard page.
BUG FIX: Fixed issue where PMPro would always try to add capabilities to the administrator role, even if you removed that role for some reason.
* ENHANCEMENT: Added a pmpro_get_no_access_message() function, which can be used to show the no access messages.
* ENHANCEMENT: Added a «show_noaccess» property to the membership shortcode. When set, it will show the noaccess message to users who don’t have the levels specified.
* ENHANCEMENT: Added a pmpro_user_profile_update_errors hook, which can be used to show errors on the PMPro frontend profile page.
* ENHANCEMENT: The pmpro_set_capabilities_for_role() function now returns true or false if the caps were added in case others want to use this function and tell if it worked.
* ENHANCEMENT: You can now include links in the description of the fields you add to the PMPro advanced settings page via the pmpro_custom_advanced_settings filter.
* ENHANCEMENT: Updated the PayPal gateways to use the latest versions of the PayPal buttons.
* ENHANCEMENT: Fixed styling of the PMPro update script notice.
* ENHANCEMENT: Added the pmpro_account_membership_expiration_text filter to the expiration dates shown on the cancel page when using MMPU.

2.4.1 — 2020-08-10

• BUG FIX: Fixed issues with password resets on WP Engine hosting due to security features added by their mu-plugin.
• BUG FIX: Fixed issue where end dates were showing up incorrectly in the confirmation email sometimes.
• BUG FIX: Fixed issue where renewing memberships were extended one day less than they should have been in some cases.
• BUG FIX: Fixed issue where users without a PMPro Plus license were sometimes not getting an error when trying to update a Plus Add On.
• BUG FIX/ENHANCEMENT: Added compatibility for core auto-updates for our Add Ons which aren’t hosted in the .org repository.
• BUG FIX/ENHANCEMENT: Fixed issue where PHP sessions were set up to track ReCAPTCHA even if you weren’t using ReCAPTCHA. ReCAPTCHA is now only loaded on the checkout page. Loading sessions unecessarily would break some Varnish cache setups.
• BUG FIX/ENHANCEMENT: Updated the single invoice/order page. No longer showing the end date, which isn’t really related to the order. Showing a better status related to the order now.
• BUG FIX/ENHANCEMENT: Fixed some links to the PMPro site in the plugin admin area.
• BUG FIX/ENHANCEMENT: Now saving a hash of the Stripe secretkey when saving webhook ids. This allows us to keep track of webhook ids if you switch between gateway environments or swap your Stripe keys for some reason.
• BUG FIX/ENHANCEMENT: No longer running the Terms of Service text through wpautop. This usually just added extra spacing to your TOS. Shortcodes are rendered now though. Added a filter pmpro_tos_content so you can change the TOS content or how it is shown.
• ENHANCEMENT: Added a checkout_levels API endpoint. This will allow us to build features that adjust the price on the frontend at checkout.
• ENHANCEMENT: Added a pmpro_member_profile_edit_form_tag action to the form tag on the frontend member profile page. This is useful to set the form enctype for file uploads.
• ENHANCEMENT: Added Romanian Leu as a currency option.
• ENHANCEMENT: Added the pmpro_stripe_payment_intent_params filter. Useful if you would like to set a specific statement descriptor for the site. See https://gist.github.com/ideadude/16983fdfa0da12fc40ef36d870f4cbd0
• REFACTOR: Removed some unused methods from the Stripe class.
• REFACTOR: Removed the help pointer about the menu location change.

2.4 — 2020-07-24

• FEATURE: Now detecting if the Stripe webhook is set up correctly. You can now create or disable the webhook from the payment settings page in the WP admin dashboard.
• FEATURE: Added a link to use and set up SendWP for more reliable email sending from WP.
• BUG FIX: Fixed further issues with dates and timezones.
• BUG FIX: Fixed issue where reports would cause white screens on some server set ups. We had some report start dates set to 1960, which caused issues. (Thanks, Sam «gausam» on GitHub)
• BUG FIX: Fixed issue with the query to find expiring memberships that happened on certain MySQL setups.
• BUG FIX: Fixed issue that was caused if other code called wp_login_url() too early.
• BUG FIX: Fixed an error in the is_login_page() function.
• BUG FIX: Fixed a fatal error that was happening in PHP 5.2 or earlier due to code syntax that was not supported then. We noticed a few other cases as well, but decided we won’t support PHP 5.2 consistent with WP and other plugins.
• BUG FIX: Fixed the URL used when using 2Checkout in sandbox mode.
• BUG FIX: Fixed JavaScript errors that would occur sometimes on the Billing Update page when using the Stripe gateway.
• BUG FIX: Fixed issue where the dummy $0 orders created when using the «Stripe Updates» feature weren’t saving with the updated subscription_transaction_id. This would prevent future payments from being linked to that user and could prevent subscriptions cancellations from being synchronized. When updating to PMPro 2.4, an update script will run to try to restore these subscription_transaction_id values. However, any recurring orders that occured when the id was missing will not be added to PMPro. You will have to update them manually.
• BUG FIX: Fixed JavaScript error on the edit discount code page.
• BUG FIX/ENHANCEMENT: Showing expiration date as text when it is set as a readonly field. (Thanks, Rodmar «rodmarzavala» on GitHub)
• BUG FIX/ENHANCEMENT: Now checking if headers were already sent before trying to start the PHP session. If headers are sent before PMPro tries to start the session, there is usually another error somewhere on the WP site that needs to be fixed. But at least we aren’t adding to the confusion by trying to start the session late causing another error in the log.
• BUG FIX/ENHANCEMENT: Updated misleading hint for the PayPal Express IPN URL on the payment settings page.
• BUG FIX/ENHANCEMENT: Fixed invalid key description in the SQL in includes/setup.sql. The actually query used to set up table in PMPro was correct though. The setup.sql file is included for reference and developers who want to create the tables «manually» in MySQL.
• BUG FIX/ENHANCEMENT: The post type search filter now supports cases where post type set in WPQuery is an array.
• BUG FIX/ENHANCEMENT: Fixed warning that showed when a user with no levels visited the frontend account page.
• BUG FIX/ENHANCEMENT: Fixing warnings that would be logged at checkout in certain cases.
• BUG FIX/ENHANCEMENT: Better handling of cases where users who checked out using a gateway different from the current setting are shown a message that they cannot update their billing information. They should instead checkout again to renew their membership.
• ENHANCEMENT: Updated to use the latest version of the Stripe API and SDK.
• ENHANCEMENT: More detailed logging for Braintree webhook debug emails.
• ENHANCEMENT: Added a getTransactionStatus method to the PayPal and PayPal Express payment gateway classes. (Thanks, Mirco Babini)
• ENHANCEMENT: Added a checkout_level API call. This will be used in the future to update the price total at checking using JS and is also needed to implement support for Google Pay and Apple Pay through Stripe.
• ENHANCEMENT: Cleaned up the email settings page.
• ENHANCEMENT: Better handling of some login and password reset errors.
• ENHANCEMENT: Added links to the PMPro YouTube and Facebook profiles.
• REFACTOR: Cleaned up some code in incldues/content.php, especially around the pmpro_search_filter() function.
• REFACTOR: Removed the package-lock.json file from the repository.