wp_hash() WordPress Function

The wp_hash() function is used to create a hash of a given string. This function is used by the WordPress software to create password hashes.

wp_hash( string $data, string $scheme = 'auth' ) #

Get hash of given string.

Contents

Parameters

$data

(string)(Required)Plain text to hash

$scheme

(string)(Optional)Authentication scheme (auth, secure_auth, logged_in, nonce)

Default value: 'auth'

Top ↑

Return

(string) Hash of $data

Top ↑

More Information

Usage:
wp_hash( $data, $scheme );
Notes:
  • This function can be replaced via plugins. If plugins do not redefine these functions, then this will be used instead.
  • Uses: wp_salt() Get WordPress salt.

Top ↑

Source

File: wp-includes/pluggable.php

	function wp_hash( $data, $scheme = 'auth' ) {
		$salt = wp_salt( $scheme );

		return hash_hmac( 'md5', $data, $salt );
	}

Expand full source codeCollapse full source codeView on TracView on GitHub

Top ↑

Top ↑

Used By

Used By
Used ByDescription
wp-includes/rest-api/endpoints/class-wp-rest-widgets-controller.php:WP_REST_Widgets_Controller::prepare_item_for_response()

Prepares the widget for the REST response.

wp-includes/rest-api/endpoints/class-wp-rest-widgets-controller.php:WP_REST_Widgets_Controller::save_widget()

Saves the widget in the request object.

wp-includes/rest-api/endpoints/class-wp-rest-widget-types-controller.php:WP_REST_Widget_Types_Controller::encode_form_data()

An RPC-style endpoint which can be used by clients to turn user input in a widget admin form into an encoded instance object.

wp-includes/comment.php:wp_get_unapproved_comment_author_email()

Gets unapproved comment author’s email.

wp-includes/class-wp-customize-nav-menus.php:WP_Customize_Nav_Menus::hash_nav_menu_args()

Hashes (hmac) the nav menu arguments to ensure they are not tampered with when submitted in the Ajax request.

wp-includes/pluggable.php:wp_verify_nonce()

Verifies that a correct security nonce was used with time limit.

wp-includes/pluggable.php:wp_create_nonce()

Creates a cryptographic token tied to a specific action, user, user session, and window of time.

wp-includes/pluggable.php:wp_validate_auth_cookie()

Validates authentication cookie.

wp-includes/pluggable.php:wp_generate_auth_cookie()

Generates authentication cookie contents.

wp-includes/class-wp-customize-widgets.php:WP_Customize_Widgets::get_instance_hash_key()

Retrieves MAC for a serialized widget instance string.

Show 5 more used byHide more used by

Top ↑

Changelog

Changelog
VersionDescription
2.0.3Introduced.
Download the latest version of WordPress from https://wordpress.org/

The content displayed on this page has been created in part by processing WordPress source code files which are made available under the GPLv2 (or a later version) license by the Free Software Foundation. In addition to this, the content includes user-written examples and information. All material is subject to review and curation by the WPPaste.com community.

Show More