Import users from wordpress
I have successfully setup the kinde authentication for new users on my website and it works, but i need to import older users into kinde.
I am using the Kinde Auth plugin which lets me export the necessary data and import it into kinde.
the csv i download contains rows like
id,first_name,last_name,email,salt,salt_position,hashed_password,hashing_method,email_verified
where salt position is prefix and hashing_method is brcypt. Yes that is not a typo, it doesn't say bcrypt but brcypt instead.
I think this is the issue, because Kinde says that that hashing method is not supported. I tried manually changing it to bcrypt : it let me add users this way but when i try to log in it says wrong password. Any idea how to solve this issue?1 Reply
Hello, Vaelthur.
I just wanted to let you know that I am investigating this.
I'll provide an update soon.
I would like to ask you some questions that will help me diagnose the problem faster, and reproduce it. The ones from 4. Test user verification are specially important:
1. WordPress configuration
- What version of WordPress are you running?
- Are you using any password hashing plugins (e.g., WP Password Bcrypt, Better Passwords)?
- What is the version of the Kinde Auth WordPress plugin you're using?
2. CSV export details
- Can you share a sample row from the exported CSV (with the password hash redacted)? (or just share the one of the test user, which would be better)
- What do the actual hashed_password values look like? (Do they start with $2a$, $2b$, $2y$, or something else?)
3. Import attempt details
- When you changed "brcypt" to "bcrypt" and imported, did Kinde accept the import without errors? (I just want to confirm nothing was shown, as you already clarified that the users were imported).
- Did you leave the salt and salt_position columns as they were, or did you modify them? (Just want to confirm).
4. Test user verification
- Can you create a new test user directly in WordPress (use a test email like test@example.com with a simple password like 'TestPass123'), then export just that user's data and share the CSV row with me? Please include what password you set so I can verify the hash matches. This is probably the most important step so that I can have a better idea about whether the problem is with the file being exported.
- What does that single test user's row show for hashing_method and hashed_password format?
Why these questions matter
These questions will help determine:
- Whether WordPress is actually using bcrypt or if the plugin has a bug(
- If the password hashes are in a format Kinde can process (Kinde supports bcrypt, crypt, sha256, md5, and wordpress hashing methods).
- Whether the issue is with the export, the import format, or the actual password verification.
I know that these are many questions, and some even require further action on your end, so I appreciate your patience. Also, I will be moving forward with the reproduction steps.
Looking forward to your response.