Přeskočit na obsah
WordPress.org

Česko

  • Šablony
  • Pluginy
  • Novinky
  • Podpora
  • O WordPressu
  • Openverse
  • Vzory
  • Komunitní podpora
  • Překlady
  • Kontakt
  • Získejte WordPress
Získejte WordPress
WordPress.org

Plugin Directory

Password Reset Enforcement

  • Odeslat plugin
  • Moje oblíbené
  • Přihlásit se
  • Odeslat plugin
  • Moje oblíbené
  • Přihlásit se

Password Reset Enforcement

Autor: Teydea Studio
Stáhnout
Aktuální náhled
  • Podrobnosti
  • Hodnocení
  • Instalace
  • Vývojáři
Podpora

Popis

Enhance your WordPress website’s security by forcing users to reset their passwords.

Password Reset Enforcement is a simple yet powerful security plugin that allows site administrators to require users to update their passwords—ideal after a potential data breach, routine security checks, or during onboarding/offboarding processes.

Features

  • Force password reset for all users, specific user roles, or individual users.
  • Optional email notification to users with a direct reset link.
  • Flexible login behavior:
    • Allow login before resetting: users log in with the old password, are immediately prompted to set a new one.
    • Block login until reset: users must reset their password before accessing the dashboard.
  • Choose reset timing:
    • Immediately: forces logout and password reset on next login.
    • After session expiry: users are asked to reset after their current session ends.
  • WP-CLI support for command-line password management and automation.
  • Multisite compatible (network-wide reset only).
  • Optimized for performance on large-scale and enterprise WordPress installations.

Use Cases

  • Responding to a security breach or suspected compromise.
  • Enforcing routine password changes in corporate environments.
  • Applying onboarding/offboarding security policies for teams or membership sites.

Compatibility

  • Works on both single-site and multisite (network) WordPress setups.
  • Supports PHP 7.4+ and WordPress 6.6 through 7.0.
  • Compatible with modern WordPress admin experience.

WP-CLI Commands

This plugin provides WP-CLI commands for automated password reset management:

Force Password Reset
wp password-reset-enforcement force [–to_all] [–to_roles=] [–to_users=] [–applicability=] [–with_email] [–with_current_password_allowed] [–limit=] [–paged=]

Clear Password Reset Enforcement
wp password-reset-enforcement clear [–to_all] [–to_roles=] [–to_users=] [–limit=] [–paged=]

List Users with Enforced Password Reset
wp password-reset-enforcement list [–limit=] [–paged=]

Check Password Reset Status
wp password-reset-enforcement status [–to_all] [–to_roles=] [–to_users=] [–limit=] [–paged=]

Command Options

  • --to_all: Target all users on the site
  • --to_roles=<roles>: Comma-separated list of user roles (e.g., editor,administrator)
  • --to_users=<user_ids>: Comma-separated list of specific user IDs (e.g., 1,5,10)
  • --applicability=<when>: When reset takes effect (immediately, after_session_expiry)
  • --with_email: Send email notifications to affected users (default: true)
  • --with_current_password_allowed: Allow users to reuse current password (default: false)
  • --limit=<number>: Maximum users to process in single operation
  • --paged=<page>: Page number for pagination

Command Examples

wp password-reset-enforcement force --to_all
wp password-reset-enforcement force --to_roles=editor,administrator --applicability=after_session_expiry
wp password-reset-enforcement clear --to_users=1,5,10
wp password-reset-enforcement list --limit=50 --paged=2
wp password-reset-enforcement status --to_all --limit=50 --paged=2<h3>Related Plugins</h3>

Want to go beyond forced password resets? Check our WP Password Policy plugin to enforce strong password rules, block weak passwords, and set automatic expiry policies. The free version is available on WordPress.org.

Snímky obrazovky

Force password reset for all users.
Force password reset for all users.
Target users by role, username, or display name.
Target users by role, username, or display name.
Process the action.
Process the action.

Instalace

  1. Upload the plugin to the /wp-content/plugins/ directory or install via the WordPress admin panel.
  2. Activate the plugin.
  3. Go to Settings → Password Reset Enforcement to initiate resets.

Nejčastější dotazy

Will this log users out immediately?

Only if you choose the “Immediately” option. Otherwise, users will be asked to reset after their current session expires.

Is it compatible with other login plugins or 2FA solutions?

Yes, Password Reset Enforcement is designed for compatibility and works well alongside popular authentication and security plugins.

Can I use this on a WooCommerce site?

Absolutely. Works seamlessly with WooCommerce and other membership or eCommerce platforms.

Does this plugin support WP-CLI?

Yes! The plugin includes comprehensive WP-CLI commands for forcing password resets, clearing enforcement, and checking status. Perfect for automation, server management, and bulk operations.

Where can I find the unminified source code?

All source ships with the plugin: the plugin’s own JavaScript is in src/, and the bundled @teydeastudio/components and @teydeastudio/utils libraries are in deps/js/components/src/ and deps/js/utils/src/. To rebuild, install Node.js 20 and run npm install && npm run build in the plugin directory.

Recenze

Useful Plugin

jerome_toole 29. 6. 2026
It would be great if the confirmation was clearer and said ’10 Passwords have been reset‘.

Very useful for forcing the reset of passwords for multiple administrators

delemo 24. 6. 2025 1 odpověď
After suspecting a malicious attempt on my website, I needed to force several administrators to reset their passwords. This plugin made my job much easier.

Some quality of life needed

Miikka 22. 10. 2024 1 odpověď
Would like that the user list auto-completes or searches the users. Pressing enter on the settings page turned to page gray without any indication what may have happened. Allow a save button to save settings before executing action.
Přečtěte si všechny 3 recenze

Autoři

Password Reset Enforcement je otevřený software. Následující lidé přispěli k vývoji tohoto pluginu.

Spolupracovníci
  • Teydea Studio
  • Bartosz Gadomski

Plugin „Password Reset Enforcement“ byl přeložen do 1 jazyku. Děkujeme všem překladatelům za jejich pomoc.

Přeložte “Password Reset Enforcement” do svého jazyka.

Zajímá vás vývoj?

Prohledejte kód, podívejte se do SVN repozitáře, nebo se přihlaste k odběru protokolu vývoje pomocí RSS.

Přehled změn

1.12.1 (2026-06-22)

  • Security hardening: per-target authorization check added to the Force Password Reset row and bulk actions (defense-in-depth)
  • Added a clear admin notice for unmet server requirements (minimum PHP/WordPress version, required extensions)
  • Accessibility improvements on the settings page and the Users-screen reset indicator
  • Reliability improvements to the forced password reset flow
  • Dependencies updated
  • Code improvements

1.12.0 (2026-04-16)

  • Compatibility with WordPress 7.0 confirmed
  • Direct access protection added to all PHP files
  • Unnecessary translation files removed since these are loaded from WordPress.org
  • Security hardening – added missing escaping
  • Do not hardcode wp-login.php path for login form
  • Formatting updates
  • Dependencies updated

1.11.1 (2025-11-28)

  • Compatibility with WordPress 6.9 confirmed
  • Dependencies updated

1.11.0 (2025-10-31)

  • Direct links to force password reset has been added to the Users page along with bulk action
  • Clear indicators that a password reset has been enforced for a given user has been added to the Users and User Profile screens
  • User selector component has been improved
  • WP-CLI commands have been added, allowing power users to force password reset, clear the enforcement, check the status, and list users for whom the password reset has been enforced
  • Dependencies updated
  • Code improvements

1.10.2 (2025-05-08)

  • Plugin links and references to Teydea Studio updated
  • Dependencies updated

1.10.1 (2025-04-04)

  • Compatibility with WordPress 6.8 confirmed
  • Issue of requesting the translated string too early fixed
  • Dependencies updated
  • Code improvements

1.10.0 (2025-02-21)

  • Dependencies updated
  • Code improvements

1.9.0 (2024-12-13)

  • Dependencies updated
  • Code improvements

1.8.0 (2024-11-08)

  • Custom capabilities for managing the plugin settings implemented
  • Compatibility with WordPress 6.7 confirmed
  • Dependencies updated
  • Code improvements

1.7.2 (2024-10-25)

  • JS dependency map and tree-shaking optimized

1.7.1 (2024-10-23)

  • Add missing Cache utility class

(For older records, see the changelog.txt file).

Meta

  • Verze 1.12.1
  • Poslední aktualizace před 2 týdny
  • Aktivních instalací 200+
  • Verze WordPressu 6.6 nebo novější
  • Testováno až do WordPressu 7.0
  • Verze PHP 7.4 nebo novější
  • Jazyky

    English (US) a Polish.

    Přeložte do vašeho jazyka

  • Štítky
    force password changereset passwordsecure loginwordpress security
  • Podrobnosti

Hodnocení

4.3 z 5 hvězdiček.
  • 2 5hvězdičkové hodnocení 5 hvězdiček 2
  • 0 4hvězdičkové hodnocení 4 hvězdičky 0
  • 1 3hvězdičkové hodnocení 3 hvězdičky 1
  • 0 2hvězdičkové hodnocení 2 hvězdičky 0
  • 0 1hvězdičkové hodnocení 1 hvězdička 0

Your review

Zobrazit všechny recenze

Spolupracovníci

  • Teydea Studio
  • Bartosz Gadomski

Podpora

Vyřešené problémy během posledních dvou měsíců:

0 z 1

Fórum podpory

  • O WordPressu
  • Novinky
  • Hosting
  • Soukromí
  • Příklady
  • Šablony
  • Pluginy
  • Vzory
  • Vzdělávání
  • Podpora
  • Vývojáři
  • WordPress.TV
  • Zapojte se
  • Události
  • Podpořit
  • Pět pro budoucnost
  • WordPress.com
  • Matt
  • bbPress
  • BuddyPress
WordPress.org
WordPress.org

Česko

  • Navštivte náš účet na X (dříve Twitter)
  • Navštivte náš Bluesky účet
  • Navštivte náš účet Mastodon
  • Navštivte náš Threads účet
  • Navštivte naši stránku na Facebooku
  • Navštivte náš Instagram účet
  • Navštivte náš LinkedIn účet
  • Navštivte náš TikTok účet
  • Navštivte náš YouTube kanál
  • Navštivte náš Tumblr účet
Code is Poetry.
The WordPress® trademark is the intellectual property of the WordPress Foundation.