Where is wp settings.php file

The four keys are required for the enhanced security. The four salts are recommended, but are not required, because WordPress will generate salts for you if none are provided.

They are included in wp-config. For more information on the technical background and breakdown of secret keys and secure passwords, see:. The following sections may contain advanced information and some changes might result in unforeseen issues.

Please make sure you practice regular backups and know how to restore them before modifying these settings. Typically this is changed if you are installing multiple WordPress blogs in the same database, as is done with the multisite feature. It is possible to have multiple installations in one database if you give each a unique prefix. Keep security in mind if you choose to do this.

The value defined is the address where your WordPress core files reside. Setting this value in wp-config. Adding this in can reduce the number of database calls when loading your site. Note: This will not change the database stored value.

The URL will revert to the old database value if this line is ever removed from wp-config. Remember, you will also be placing an index. You can move the wp-content directory, which holds your themes, plugins, and uploads, outside of the WordPress application directory. You cannot move the themes folder because its path is hardcoded relative to the wp-content folder:. See how to move the wp-content folder. This path can not be absolute.

When editing a post, WordPress uses Ajax to auto-save revisions to the post as you edit. You may want to increase this setting for longer delays in between auto-saves, or decrease the setting to make sure you never lose changes. The default is 60 seconds. WordPress, by default, will save copies of each edit made to a post or page, allowing the possibility of reverting to a previous version of that post or page. The saving of revisions can be disabled, or a maximum number of revisions per post or page can be specified.

If you want to disable the awesome revisions feature, use this setting:. Note: Some users could not get this to function until moving the command to the first line under the initial block comment in wp-config.

The domain set in the cookies for WordPress can be specified for those with unusual domain setups. For example, if subdomains are used to serve static content, you can set the cookie domain to only your non-static domain to prevent WordPress cookies from being sent with each request to static content on your subdomain. If this setting is absent from wp-config.

WordPress 5. The site is experiencing technical difficulties. Please check your site admin email inbox for instructions. White screens and PHP error messages are not displayed to users any more. The default boolean value is false.

For both methods, if the value of an environment type provided is not in the list of allowed environment types, the default production value will be returned. If JavaScript is failing to work in an administration screen, you can try disabling this feature:. Configuring error logging can be a bit tricky. First of all, default PHP error log and display settings are set in the php. If you do, they should be set to the desired settings for live PHP pages served to the public.

Further more, error logs should not be located in the publicly accessible portion of your server. Sample recommended php. About Error Reporting This is a custom value that only logs issues that affect the functioning of your site, and ignores things like notices that may not even be errors. See PHP Error Constants for the meaning of each binary position for , which is the binary number equal to Feel free to determine your own custom error reporting number to use in place of Obviously, you will want different settings for your development environment.

Because wp-config. If you turn on error logging, remember to delete the file afterwards, as it will often be in a publicly accessible location, where anyone could gain access to your log. But what if you have to debug anyway?

In such situations, you can force WordPress to keep memory of errors and warning in debug. To enable this feature, copy and paste the following code in your wp-config. To make this feature work we first need to enable debug mode. For this reason, it is a good place to override php.

Note: This is a great feature you can take advantage of to register messages that WordPress would not print on the screen. In this situation you can register messages, but not print them on the screen. Another debugging constant determines the versions of scripts and styles to be loaded. If your theme or plugin shows data retrieved from the database, you may want to store query details for subsequent review. These details would be printed adding the following code to the footer template:.

When your website grows up, you may want to reduce the number of post revisions. By default, WordPress automatically saves revisions each 60 seconds. We can change this value by setting a custom interval in wp-config as follows:. Of course, you can decrease the auto-save interval, as well.

Each time we save our edits, WordPress adds a row to the posts table, so that we could restore previous revisions of posts and pages. This is a useful functionality that could turn into a problem when our site grows big. Fortunately, we can decrease the maximum number of post revisions to be stored, or disable the functionality at all. By default, WordPress stores trashed posts, pages, attachments and comments for 30 days, then deletes them permanently.

We can change this value with the following constant:. We can even disable trash, setting its value to 0, but consider that WordPress will not allow you to restore contents anymore. The maximum memory size depends on the server configuration. That being said, you can set a custom value with the following line:.

Starting from version 3. This is an important feature that allows site admins to keep their website secure all the time. You can disable all automatic updates by defining the following constant:. An additional constant disables auto-updates and any update or change to any file. For this reason, its usage is not recommended. We can use wp-config file to increase site security. First of all, we can disable the file editor provided in the admin panel. The following constant will hide the Appearance Editor screen:.

A security feature is Administration over SSL. Use the following constant:. In this example, we have first disabled all accesses from external hosts, then listed allowed hosts, separated by commas wildcards are allowed.

This constant has effect only if you install a persistent caching plugin. Did you read a tutorial that asks you to edit your wp-config file, and you have no idea what it is? In this article, we will show you how to properly edit the wp-config.

As the name suggests, it is a configuration file that is part of all self-hosted WordPress sites. Unlike other files, wp-config. WordPress stores your database information in the wp-config. Apart from database information, wp-config. We will explain them later in this article. Below are the steps to do it without messing things up. First thing you need to do is to create a complete WordPress backup. The wp-config. You will need an FTP client to connect to your website. An FTP client allows you to transfer files between a server and your computer.

Connect to your website using the FTP client. You will need FTP login information which you can get from your web host. Simply right click on the file and then select download from the menu.

Your FTP client will now download wp-config. You can open and edit it using a plain text editor program like Notepad or Text Edit. You can also see a sample of this file here. Each section of wp-config. Almost all settings here are defined using PHP Constants. You will need your MySQL host, database name, database username and password to fill in this section. Authentication unique keys and salts are security keys that help improve security of your WordPress site. These keys provide a strong encryption for user sessions and cookies generated by WordPress.

See our guide on WordPress Security Keys for more information. You can generate WordPress security keys and paste them here. This is particularly useful if you suspect your WordPress site may have been compromised. Changing security keys will logout all currently logged in users on your WordPress site forcing them to login again. It is recommended that you change your WordPress database table prefix to something random.

This will make it difficult for hackers to guess your WordPress tables and will save you from some common SQL injection attacks. Please note that you cannot change this value for an existing WordPress site. Follow the instructions in our how to change the WordPress database prefix article to change these settings on an existing WordPress site.

This setting is particularly useful for users trying to learn WordPress development, and users trying experimental features. Simply setting the debug mode to true will show you these notices. This provides crucial information to developers to find bugs. The last part of wp-config file defines the absolute path which is then used to setup WordPress vars and included files.

There are some other wp-config. You can also change these URLs using wp-config. This comes handy if you are unable to access the WordPress admin area due to error too many directs issue. Simply add these two lines to your wp-config. You also need to keep in mind that search engines treat www. If your site is indexed with www prefix then you need to add your domain name accordingly. If you want to store your media files in someother location then you can do so by adding this line of code in your wp-config.

Adding an absolute path here will not work. See out detailed guide on how to change default media upload location in WordPress for more information. WordPress introduced automatic updates in WordPress 3. It allowed WordPress sites to automatically update when there is a minor update available. While automatic updates are great for security, but in some cases they can break a WordPress site making it inaccessible.

Adding this single line of code to your wp-config. See our tutorial on how to disable automatic updates in WordPress for more information. WordPress comes with built-in autosave and revisions.

See our tutorial on how to undo changes in WordPress with post revisions. However, if you run a large site revisions can increase your WordPress database backup size. Add this line of code to your wp-config. Replace 3 with the number of revisions you want to store. WordPress will now automatically discard older revisions.

However, your older post revisions are still stored in your database. See our tutorial on how to delete old post revisions in WordPress. We hope this article helped you learn how to edit wp-config. If you liked this article, then please subscribe to our YouTube Channel for WordPress video tutorials. You can also find us on Twitter and Facebook. Trusted by over 1. Thank you, glad you liked our article. Glad our article could be helpful.

Hi there, great article. What should I do to make my site work again properly? Thanks in advance.