W3cubDocs

/WordPress

wp_generate_password( int $length = 12, bool $special_chars = true, bool $extra_special_chars = false )

Generates a random password drawn from the defined set of characters.

Description

Uses wp_rand() is used to create passwords with far less predictability than similar native PHP functions like rand() or mt_rand().

Parameters

$length

(int) (Optional) The length of password to generate.

Default value: 12

$special_chars

(bool) (Optional) Whether to include standard special characters.

Default value: true

$extra_special_chars

(bool) (Optional) Whether to include other special characters. Used when generating secret keys and salts.

Default value: false

Return

(string) The random password.

Source

File: wp-includes/pluggable.php

function wp_generate_password( $length = 12, $special_chars = true, $extra_special_chars = false ) {
		$chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
		if ( $special_chars ) {
			$chars .= '[email protected]#$%^&*()';
		}
		if ( $extra_special_chars ) {
			$chars .= '-_ []{}<>~`+=,.;:/?|';
		}

		$password = '';
		for ( $i = 0; $i < $length; $i++ ) {
			$password .= substr( $chars, wp_rand( 0, strlen( $chars ) - 1 ), 1 );
		}

		/**
		 * Filters the randomly-generated password.
		 *
		 * @since 3.0.0
		 *
		 * @param string $password The generated password.
		 */
		return apply_filters( 'random_password', $password );
	}

Changelog

Version Description
2.5.0 Introduced.

© 2003–2019 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_generate_password