WordPress.org

Plugin API/Filter Reference/wp authenticate user

Contents 1 Description 1.1 Parameters 1.2 Returns 2 Examples 3 Source File 4 Related 4.1 Filter Hooks

Description

The wp_authenticate_user filter hook is used to perform additional validation/authentication any time a user logs in to WordPress.

Parameters

$user

(object) (required) The WP_User() object of the user being edited, or a WP_Error() object if validation has already failed.

Default: WP_User

$password

(string) (optional) The user's password (encrypted).

Default: None

Returns

This hook should return either a WP_User() object or, if generating an error, a WP_Error() object.

Examples

The basic usage is as follows...

add_filter('wp_authenticate_user', 'myplugin_auth_login',10,2);
function myplugin_auth_login ($user, $password) {
     //do any extra validation stuff here
     return $user;
}

This hook passes two parameters, $user and $password (encrypted). In order to generate an error on login, you will need to return a new WP_Error() object.

Source File

The wp_authenticate_user hook is located in /wp-includes/user.php within wp_authenticate_username_password()

Related

Filter Hooks

• authenticate
• wp_authenticate_user

Return to Plugin API/Filter Reference

• Home Page
• WordPress Lessons
• Getting Started
• Working with WordPress
• Design and Layout
• Advanced Topics
• Troubleshooting
• Developer Docs
• About WordPress

Codex Resources

• Community portal
• Current events
• Recent changes
• Random page
• Help