WordPress.org

apply_filters( 'auth_cookie_expiration', int $length, int $user_id, bool $remember )

Filters the duration of the authentication cookie expiration period.

Contents

Parameters
Source
Related
- Used By
Changelog
User Contributed Notes

Parameters Parameters

$length: (int) Duration of the expiration period in seconds.
$user_id: (int) User ID.
$remember: (bool) Whether to remember the user login. Default false.

Source Source

File: wp-includes/pluggable.php

Used By Used By

Used By
Used By	Description
wp-includes/pluggable.php: wp_set_auth_cookie()	Sets the authentication cookies based on user ID.
wp-includes/user.php: wp_update_user()	Update a user in the database.

Changelog Changelog

Changelog
Version	Description
2.8.0	Introduced.

User Contributed Notes User Contributed Notes

Skip to note 1 content

You must log in to vote on the helpfulness of this noteVote results for this note: 4You must log in to vote on the helpfulness of this note

Contributed by Ethan O'Sullivan — 5 years ago
An example of how to extend time in your WordPress session by a year, simply enter this code into your `functions.php` or plugin. Other durations have been added to show different times hat can be set.
```
add_filter ( 'auth_cookie_expiration', 'wpdev_login_session' );

function wpdev_login_session( $expire ) { // Set login session limit in seconds
    return YEAR_IN_SECONDS;
    // return MONTH_IN_SECONDS;
    // return DAY_IN_SECONDS;
    // return HOUR_IN_SECONDS;
}
```
Feedback
- It’s best to consider the $remember parameter and assign a shorter expiry when $remember is false (or leave it default). WP uses the difference between cookie expiry with and without “Remember me” as a heuristic flag in wp_update_user(). After a password change, it guesses the user wants “Remember me” if the current cookie time left is longer than what this filter returns with $remember = false. Comment based on WP 5.0.2. — By — 3 years ago
Log in to add feedback

2

Contributed by polev — 4 years ago

Extension of the example, only extending expiration if $remember and low privelege.

add_filter('auth_cookie_expiration', 'auth_cookie_expiration_filter_5587', 10, 3);
function auth_cookie_expiration_filter_5587($expiration, $user_id, $remember) {
    if ($remember && !user_can($user_id, 'edit_others_posts')) {
        return YEAR_IN_SECONDS;
        // return MONTH_IN_SECONDS;
        // return DAY_IN_SECONDS;
        // return HOUR_IN_SECONDS;
    }
    // default
    return $expiration;
}

-2

Contributed by Zübeyir Muştak — 3 years ago

function wp_homework_change_cookie_logout( $expiration){
	$user = wp_get_current_user();
	$allowed_roles = array('administrator', 'scholar');
		 if( array_intersect($allowed_roles, $user->roles ) ) { 
		   $expiration = 31557600;
		 } 
    return $expiration;
}

add_filter( 'auth_cookie_expiration','wpse108399_change_cookie_logout', 10, 3 );

Skip to note 4 content

You must log in to vote on the helpfulness of this noteVote results for this note: -2You must log in to vote on the helpfulness of this note

Contributed by kmvan — 2 years ago
```
// forever
add_filter('auth_cookie_expiration', function (int $length): int {
    return PHP_INT_MAX;
});
```
Log in to add feedback

You must log in before being able to contribute a note or feedback.