wp_set_password( string $password, int $user_id )

Updates the user’s password with a new encrypted one.


Description Description

For integration with other applications, this function can be overwritten to instead use the other package password checking algorithm.

Please note: This function should be used sparingly and is really only meant for single-time application. Leveraging this improperly in a plugin or theme could result in an endless loop of password resets if precautions are not taken to ensure it does not execute on every page load.


Parameters Parameters

$password

(string) (Required) The plaintext new user password

$user_id

(int) (Required) User ID


Top ↑

Source Source

File: wp-includes/pluggable.php

	function wp_set_password( $password, $user_id ) {
		global $wpdb;

		$hash = wp_hash_password( $password );
		$wpdb->update(
			$wpdb->users,
			array(
				'user_pass'           => $hash,
				'user_activation_key' => '',
			),
			array( 'ID' => $user_id )
		);

		clean_user_cache( $user_id );
	}

Top ↑

Changelog Changelog

Changelog
Version Description
2.5.0 Introduced.


Top ↑

User Contributed Notes User Contributed Notes

  1. Skip to note 1 content
    Contributed by Codex

    Below is an example showing how to update a user’s password

    <?php
    $user_id = 1;
    $password = 'HelloWorld';
    wp_set_password( $password, $user_id );
    ?>
    

    Please note: This code should be deleted after ONE page load, otherwise the password will be reset on every subsequent load, sending the user back to the login screen each time.

You must log in before being able to contribute a note or feedback.