wp_salt

February 12, 2011 by Thorsten 0 Comments

Definition:
function wp_salt($scheme = 'auth') {}

Get salt to add to hashes to help prevent attacks.

The secret key is located in two places: the database in case the secret key isn’t defined in the second place, which is in the wp-config.php file. If you are going to set the secret key, then you must do so in the wp-config.php file.

Parameters

string $scheme: Authentication scheme

Return values

returns:Salt value

Defined filters

salt
apply_filters('salt', $secret_key . $salt, $scheme)

Source code

function wp_salt($scheme = 'auth') {

	global $wp_default_secret_key;

	$secret_key = '';

	if ( defined('SECRET_KEY') && ('' != SECRET_KEY) && ( $wp_default_secret_key != SECRET_KEY) )

		$secret_key = SECRET_KEY;



	if ( 'auth' == $scheme ) {

		if ( defined('AUTH_KEY') && ('' != AUTH_KEY) && ( $wp_default_secret_key != AUTH_KEY) )

			$secret_key = AUTH_KEY;



		if ( defined('AUTH_SALT') && ('' != AUTH_SALT) && ( $wp_default_secret_key != AUTH_SALT) ) {

			$salt = AUTH_SALT;

		} elseif ( defined('SECRET_SALT') && ('' != SECRET_SALT) && ( $wp_default_secret_key != SECRET_SALT) ) {

			$salt = SECRET_SALT;

		} else {

			$salt = get_site_option('auth_salt');

			if ( empty($salt) ) {

				$salt = wp_generate_password( 64, true, true );

				update_site_option('auth_salt', $salt);

			}

		}

	} elseif ( 'secure_auth' == $scheme ) {

		if ( defined('SECURE_AUTH_KEY') && ('' != SECURE_AUTH_KEY) && ( $wp_default_secret_key != SECURE_AUTH_KEY) )

			$secret_key = SECURE_AUTH_KEY;



		if ( defined('SECURE_AUTH_SALT') && ('' != SECURE_AUTH_SALT) && ( $wp_default_secret_key != SECURE_AUTH_SALT) ) {

			$salt = SECURE_AUTH_SALT;

		} else {

			$salt = get_site_option('secure_auth_salt');

			if ( empty($salt) ) {

				$salt = wp_generate_password( 64, true, true );

				update_site_option('secure_auth_salt', $salt);

			}

		}

	} elseif ( 'logged_in' == $scheme ) {

		if ( defined('LOGGED_IN_KEY') && ('' != LOGGED_IN_KEY) && ( $wp_default_secret_key != LOGGED_IN_KEY) )

			$secret_key = LOGGED_IN_KEY;



		if ( defined('LOGGED_IN_SALT') && ('' != LOGGED_IN_SALT) && ( $wp_default_secret_key != LOGGED_IN_SALT) ) {

			$salt = LOGGED_IN_SALT;

		} else {

			$salt = get_site_option('logged_in_salt');

			if ( empty($salt) ) {

				$salt = wp_generate_password( 64, true, true );

				update_site_option('logged_in_salt', $salt);

			}

		}

	} elseif ( 'nonce' == $scheme ) {

		if ( defined('NONCE_KEY') && ('' != NONCE_KEY) && ( $wp_default_secret_key != NONCE_KEY) )

			$secret_key = NONCE_KEY;



		if ( defined('NONCE_SALT') && ('' != NONCE_SALT) && ( $wp_default_secret_key != NONCE_SALT) ) {

			$salt = NONCE_SALT;

		} else {

			$salt = get_site_option('nonce_salt');

			if ( empty($salt) ) {

				$salt = wp_generate_password( 64, true, true );

				update_site_option('nonce_salt', $salt);

			}

		}

	} else {

		// ensure each auth scheme has its own unique salt

		$salt = hash_hmac('md5', $scheme, $secret_key);

	}



	return apply_filters('salt', $secret_key . $salt, $scheme);

}

4073

/wp-includes/pluggable.php, Documentation, Files, Filters, Filters by letter s, Functions, Functions by letter w

codex, ida9b82e9d86566b86e6836ef54228ef8d, salt, wp_salt

wp_safe_redirect

wp_sanitize_redirect

No comments yet... Be the first to leave a reply!

Ouch, we don’t have this here!

It seems that we do not have anything about this topic here, but you might want to do one of the following. If you were searching for a php function head over to the php manual and use one of their entry points

If you were searching for a WordPress related topic and did not find it here try one of the following options.

Use the search form in the navigation bar above
Use the WordPress search

If nothing like this helps try using Google or an other search engine

Google
Bing

Golden Q&A rules

Search first

Be sure that you first search in Google, the WordPress forums, Codex or this site ( using the form in the menu ). Sharing your previous results helps narrowing down the problem if you also tell us what you found and why it didn’t serve your needs.

Be specific

Give as much details about your problem as possible. Make sure to include examples, links and context related to your problem.

Be WordPress related

This site focuses on WordPress and related topics. Please make sure that your question is related to WordPress code, functionality or other related topics.

Be nice

Please keep in mind that this is a voluntary service. Answers might not always be correct or what you expect. Please be nice and let us know if any inappropriate answers come to your attention.

Latest
Popular
Comments

Speed up WordPress when you have a lot of terms February 15, 2014
WordPress Importer with remote lookup for assets. February 15, 2014
It’s been a while! Sorry for neglecting you! September 4, 2013
Cache posts in category/tag/taxonomy for better performing content blocks May 10, 2012
Lost in time(zones)? http://localtime.at can help May 5, 2012

WordPress Syntax mode for Panic Coda February 18, 2011
wp_tiny_mce February 12, 2011
Initialize WordPress from a PHP CLI script July 22, 2011
wp_save_image February 12, 2011
Caching WordPress navigation menus – wp_nav_menu() wrapper October 7, 2011