How do I create a password reset link?

After much research, I finally turned to examining the WordPress core file wp_login.php hoping that WP would show how they do it in a non-obtuse manner. From the information around line 331 (WP 4.6.1), I put together the following code.

<?php

global $gw_activate_template;

extract( $gw_activate_template->result );

$url = is_multisite() ? get_blogaddress_by_id( (int) $blog_id ) : home_url('', 'http');
$user = new WP_User( (int) $user_id );

$adt_rp_key = get_password_reset_key( $user );
$user_login = $user->user_login;
$rp_link = '<a href="' . network_site_url("wp-login.php?action=rp&key=$adt_rp_key&login=" . rawurlencode($user_login), 'login') . '">' . network_site_url("wp-login.php?action=rp&key=$adt_rp_key&login=" . rawurlencode($user_login), 'login') . '</a>';

if ( is_wp_error( $key ) ) {
    return $key;
}

?>

<h2><?php _e('Your account is now active!'); ?></h2>

<div id="signup-welcome">
    <p><span class="h3"><?php _e('Username:'); ?></span> <?php echo $user->user_login ?></p>
    <p>To set your password, select the following link: <?php echo $rp_link; ?></p>
</div>

The important thing to constructing the link is the key that is put together by get_password_reset_key( $user ); This is a key that is stored in the database which allows the $user to have its password changed. I saw a website that refers to it as a cookie; however this is using a loose definition of “cookie” because nothing is stored on the users computer. The key is stored in the database and linked to the user account.

Related Posts:

  1. Disable user registration password email
  2. User defined password at registration – registration email sends auto generated pass
  3. Password field (and confirmation) showing up twice on registration
  4. How can I find users that didn’t set a password?
  5. Is there a maximum length to user passwords?
  6. Invalid key on activation and password reset
  7. Disable password limitations
  8. How to show password fields on registration form w/o plugins
  9. Send a password to a user who has just registered for a member area
  10. WordPress doesn’t send a password (but only a username) after new user registration
  11. WordPress not sending registration mail? (works on ‘lost password’)
  12. users table – user_name vs. nicename
  13. wordpress redirect after password reset
  14. Check for correct username on custom login form
  15. Missing URL in password reset email
  16. How to limit user registration to a specific set of domains?
  17. How do I create a user using the new JSON api in 4.7?
  18. How to let user set password on registration
  19. Why do generated passwords start/end with spaces?
  20. Insert “New User” and update/set meta data at once
  21. Send automatic email to user after wp_create_user
  22. How to prevent certain usernames from being registered?
  23. Force all users in MU to change their passwords
  24. How to add a description to the user name input field in the registration form?
  25. Creating a Closed WordPress Community Using Referral Codes
  26. How to add a checkbox to registration and user profile?
  27. wp_create_user hook
  28. White spaces in username give 404 on author page
  29. auto assign sequence base username while registration
  30. How to disable user registration for the default subscriber user role?
  31. Get plain password on register
  32. How to customize reset_url or $reset_url
  33. How to allow more than one registered user to have the same email?
  34. How to add additional information to a user on user creation?
  35. How to allow wordpress to create username with symbols like +
  36. How can I have user registration verify a whether a new user is listed in a table of pre-approved users?
  37. Mobile User Registration
  38. Forgot Password/ Password Reset Page does not exist
  39. Conditionally registering users
  40. How to limit the number of forgot password reset attempts in WordPress?
  41. Correct passwords keep appearing as incorrect
  42. Creating custom registration and login link in wordpress
  43. Adding register & login in WordPress website
  44. Can i add password field into my wp registration form?
  45. How can I disable all client side new accounts without disabling new user accounts?
  46. Custom Front End Registration – How Does the Key work in the Password Set Request?
  47. Unique registration for new writers to sign up
  48. password recovery key is invalid on custom reset
  49. Custom registration form with different registration process based on what’s selected
  50. Send password to user instead of reset password link
  51. register user only with specific Host name
  52. Generate long hashed user ID
  53. Disable New User Registration Email sent to WordPress admin email on 4.9.5
  54. my custom css file downloads then it STOPS!
  55. How to change “Reset Password” text on submit button
  56. I want to add a tax-ID field in registration form and upon submission, perform a lookup by tax-ID
  57. not sending correct link to set the password in registration email [closed]
  58. wp_insert_user not returning anything
  59. New register email notification sending some fields blank on site admin emai id
  60. Profile picture in registration form WordPress [closed]
  61. Controller functionality – User not logged in/ redirect to registration page (not wp_login)
  62. loading custom registration template
  63. Front-end registration form with password field
  64. Why is wp_new_user_notification not working?
  65. How to add user registration and signup in WordPress and create members only page?
  66. Single Sign On or Bridge with in the WordPress WebSites?
  67. Is there a way to check the email of the user trying to register before he registers?
  68. signup_user() throws fatal error
  69. Custom Registration Form Based on user location Woocommerce
  70. Action Hook that fires function upon registration at Woocommerce checkout
  71. Send user auto generated password on different email
  72. My new website registration error
  73. Not receiving any sign up mail, when user registers… Both admin & user
  74. How to invalidate `password reset key` after being used
  75. Reset WordPress admin users to limit access
  76. I want to give every new registering user a unique key apart from password field for external use
  77. Is it possible to remove the password field in the registration page in woocommerce?
  78. How to set password from frontend if have activation key and user login in url in wordpress?
  79. How to call or add password input / generate password / password strenght meter in custom registration form?
  80. I have restricted the username to numerical format but not able to integrate the same with PeepSo plugin
  81. How to hide username on wordpress registration?
  82. What’s the Point of Spam Registrations?
  83. Add custom Date column to “All Users” admin panel in WP
  84. Chosen user password in registration is not being accepted on Login
  85. Update a user field with a generated text
  86. Custom Registration with Select and Upload function
  87. generate an auto incremented id number when a new user is registered
  88. Remove wp-login link from auto generated wordpress’s email
  89. Mail function not working with user accounts
  90. Alter the reset password link
  91. Is it possible to have users register without having a password?
  92. how to allow unregistred users to view normal posts [closed]
  93. Wrong user registration date in wordpress
  94. Plugin recommendation for directory site [closed]
  95. enqueue style google fonts in functions.php in array?
  96. Fields in register page is pre-filled out with name and email
  97. Login to comment: not just user and email
  98. Group users by meta_value
  99. Change default error message “This email address is already in use” when registering a new user in WordPress using Caldera Forms
  100. Run custom validation only if all other wordpress registration form validation was successful

Leave a Comment