Resetting user passwords through database

northylikewoah · February 25, 2025, 12:18am

Howdy!

How do I reset a user password through the database?

My password expired on the system and so far, I haven’t been able to figure out how to reset the password.

I go to the users table on the database and for all passwords for all users, it shows “NoLongerUsed”. I don’t see anywhere else where passwords are stored so I can reset mine?

TIA.

moussa · February 25, 2025, 1:24pm

Check this post:

htuck · February 25, 2025, 5:49pm

Hello @northylikewoah
Please note that I am not a dev so I can’t tell you the mechanics of the process. But in order to reset a password you must use the User Profile form. Log into OpenEMR as a user with admin ACL, open your expired user’s profile and set the password (see OpenEMR 7 Create User Accounts - OpenEMR Project Wiki )

That password setting function has some encryption routine in it that writes the encrypted passwd to the database so you can’t just go into the database and manually edit it.
Best- Harley

Penguin8R · February 25, 2025, 8:42pm

IF, and only IF, you are absolutely sure that you know the correct account password, and it truly is an expiration issue, you can gain access using the known password by adjusting the password expiration, active and last changed dates in the ‘users’ & ‘users_secure’ tables in the database. Note that this is not something that you should do unless all other options are exhausted, and highly recommend that you make backups of those 2 tables before performing any manual changes to the fields, as you could easily destroy all user access to your site with one mistake.

Fields you must adjust are as follows.

In users:
-make sure ‘active’ is set to ‘1’ , not ‘0’
-change the ‘last_updated’ field to yesterday’s date

In users_secure:
-change ‘last_update’ to yesterday’s date
-change ‘last_update_password’ to yesterday’s date, or at least something inside your password expiration period

You may also need to reset ‘login_fail_counter’ to 0, if your attempts to log in have your account locked in addition to the expired password.

I cannot emphasize enough how dangerous it is to be making manual database edits if you’re not completely sure of what you’re doing. Take the extra minutes to make backups, the consequences of not doing so can be disastrous.

adunsulag · February 25, 2025, 9:09pm

The following php script will allow you to regain access and change your password if your password has expired. Note it does not work if you’ve forgotten your password. You should remove this file once you’ve run it. Place it in on the server where you have openemr installed. If you have it installed in a different location, change line 9.

Change the $currentPassword variable to what your password is currently set to.

github.com/openemr/openemr-devops

docker/openemr/7.0.3/utilities/unlock_admin.php

master

<?php

// unlocks the admin user and changes that password from the default of 'pass'
// to a user-supplied password

$newPassword = $argv[1];
$_GET['site'] = 'default';
$ignoreAuth=1;
require_once("/var/www/localhost/htdocs/openemr/interface/globals.php");

use OpenEMR\Common\Auth\AuthUtils;

$GLOBALS['secure_password'] = 0;

sqlStatement("UPDATE `users` SET `active` = 1 WHERE `id` = 1");

$currentPassword = "pass";
$unlockUpdatePassword = new AuthUtils();
$unlockUpdatePassword->updatePassword(1, 1, $currentPassword, $newPassword);
if (!empty($unlockUpdatePassword->getErrorMessage())) {

This file has been truncated. show original

Run it as the following:

php unlock_admin.php EnterNewAdminPasswordHere

This script is put on the docker machines by default in the latest versions of OpenEMR under the /root/ directory of the server.