wp_parse_auth_cookie( string $cookie = '', string $scheme = '' )

Parses a cookie into its components.

Parameters

$cookie

(string) (Optional) Authentication cookie.

Default value: ''

$scheme

(string) (Optional) The cookie scheme to use: 'auth', 'secure_auth', or 'logged_in'.

Default value: ''

Return

(string[]|false) Authentication cookie components.

Source

File: wp-includes/pluggable.php

function wp_parse_auth_cookie( $cookie = '', $scheme = '' ) {
		if ( empty( $cookie ) ) {
			switch ( $scheme ) {
				case 'auth':
					$cookie_name = AUTH_COOKIE;
					break;
				case 'secure_auth':
					$cookie_name = SECURE_AUTH_COOKIE;
					break;
				case 'logged_in':
					$cookie_name = LOGGED_IN_COOKIE;
					break;
				default:
					if ( is_ssl() ) {
						$cookie_name = SECURE_AUTH_COOKIE;
						$scheme      = 'secure_auth';
					} else {
						$cookie_name = AUTH_COOKIE;
						$scheme      = 'auth';
					}
			}

			if ( empty( $_COOKIE[ $cookie_name ] ) ) {
				return false;
			}
			$cookie = $_COOKIE[ $cookie_name ];
		}

		$cookie_elements = explode( '|', $cookie );
		if ( count( $cookie_elements ) !== 4 ) {
			return false;
		}

		list( $username, $expiration, $token, $hmac ) = $cookie_elements;

		return compact( 'username', 'expiration', 'token', 'hmac', 'scheme' );
	}

Uses

Uses	Description
wp-includes/load.php: is_ssl()	Determines if SSL is used.

Used By

Used By	Description
wp-includes/user.php: wp_get_session_token()	Retrieve the current session token from the logged_in cookie.
wp-includes/pluggable.php: wp_validate_auth_cookie()	Validates authentication cookie.
wp-includes/user.php: wp_update_user()	Update a user in the database.

Changelog

Version	Description
2.7.0	Introduced.

© 2003–2021 WordPress Foundation
Licensed under the GNU GPLv2+ License.
https://developer.wordpress.org/reference/functions/wp_parse_auth_cookie