W3cubDocs

/WordPress

wp_set_password( string $password, int $user_id )

Updates the user’s password with a new encrypted one.

Description

For integration with other applications, this function can be overwritten to instead use the other package password checking algorithm.

Please note: This function should be used sparingly and is really only meant for single-time application. Leveraging this improperly in a plugin or theme could result in an endless loop of password resets if precautions are not taken to ensure it does not execute on every page load.

Parameters

$password: (string) (Required) The plaintext new user password
$user_id: (int) (Required) User ID

Source

File: wp-includes/pluggable.php

function wp_set_password( $password, $user_id ) {
		global $wpdb;

		$hash = wp_hash_password( $password );
		$wpdb->update(
			$wpdb->users,
			array(
				'user_pass'           => $hash,
				'user_activation_key' => '',
			),
			array( 'ID' => $user_id )
		);

		clean_user_cache( $user_id );
	}

Uses

Uses	Description
wp-includes/pluggable.php: wp_hash_password()	Create a hash (encrypt) of a plain text password.
wp-includes/user.php: clean_user_cache()	Clean all user caches
wp-includes/wp-db.php: wpdb::update()	Updates a row in the table.

Used By

Used By	Description
wp-includes/pluggable.php: wp_check_password()	Checks the plaintext password against the encrypted Password.
wp-includes/user.php: reset_password()	Handles resetting the user’s password.

Changelog

Version	Description
2.5.0	Introduced.

© 2003–2019 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_set_password