How does the “authentication unique keys and salts” feature work?

Basically, they’re hashing salts. They’re used to make the results of hashing much less predictable. See https://en.wikipedia.org/wiki/Salt_(cryptography) for info on salts. AUTH is used for the /wp-admin authentication cookie, SECURE_AUTH is for the same when using SSL, LOGGED_IN is used for identification to the “front-end” of the site. NONCE is used for the nonces that … Read more

Configuring WordPress Auth Cookie Expiration

Note that you’re not adding any filter callback with: apply_filters( ‘auth_cookie_expiration’, $expiration ); Instead use: add_filter( ‘auth_cookie_expiration’, $callback, 10, 3 ); where $callback is the appropriate filter callback that modifies the expiration. Here’s an example add_filter( ‘auth_cookie_expiration’, function( $length, $user_id, $remember ) { return $length; // adjust this to your needs. }, 10, 3 ); … Read more