2019-04-30 15:30:26 +02:00
# Updating users passwords
2022-11-27 09:16:18 +02:00
## Option 1 (if you are using the integrated Postgres database):
2019-05-10 22:33:15 +02:00
2020-01-20 23:02:02 +02:00
You can reset a user's password via the Ansible playbook (make sure to edit the `<your-username>` and `<your-password>` part below):
2019-04-30 15:30:26 +02:00
2019-05-12 04:39:31 +02:00
```
2020-01-20 23:05:46 +02:00
ansible-playbook -i inventory/hosts setup.yml --extra-vars='username=< your-username > password=< your-password > ' --tags=update-user-password
2019-05-12 04:39:31 +02:00
```
2019-04-30 15:30:26 +02:00
**Note**: `<your-username>` is just a plain username (like `john` ), not your full `@<username>:<your-domain>` identifier.
2020-07-17 10:31:20 +02:00
**You can then log in with that user** via the Element service that this playbook has created for you at a URL like this: `https://element.<domain>/` .
2019-04-30 15:30:26 +02:00
2019-05-12 04:39:31 +02:00
## Option 2 (if you are using an external Postgres server):
2019-05-10 22:33:15 +02:00
You can manually generate the password hash by using the command-line after **SSH** -ing to your server (requires that [all services have been started ](installing.md#starting-the-services )):
2019-04-30 15:30:26 +02:00
2019-05-12 04:39:31 +02:00
```
docker exec -it matrix-synapse /usr/local/bin/hash_password -c /data/homeserver.yaml
```
2019-04-30 15:30:26 +02:00
and then connecting to the postgres server and executing:
2019-05-12 04:39:31 +02:00
```
UPDATE users SET password_hash = '< password-hash > ' WHERE name = '@someone:server.com'
```
2020-12-23 12:23:09 +02:00
2019-04-30 15:30:26 +02:00
where `<password-hash>` is the hash returned by the docker command above.
2019-05-12 04:39:31 +02:00
## Option 3:
2024-01-17 07:58:01 +02:00
Use the Synapse User Admin API as described here: https://github.com/element-hq/synapse/blob/master/docs/admin_api/user_admin_api.rst#reset-password
2019-05-12 04:39:31 +02:00
2022-08-20 11:47:14 +02:00
This requires an [access token ](obtaining-access-tokens.md ) from a server admin account. *This method will also log the user out of all of their clients while the other options do not.*
2020-01-20 22:59:36 +02:00
2022-12-07 20:36:22 +02:00
If you didn't make your account a server admin when you created it, you can learn how to switch it now by reading about it in [Adding/Removing Administrator privileges to an existing Synapse user ](registering-users.md#addingremoving-administrator-privileges-to-an-existing-synapse-user ).
2019-05-12 04:39:31 +02:00
### Example:
To set @user:domain .com's password to `correct_horse_battery_staple` you could use this curl command:
```
curl -XPOST -d '{ "new_password": "correct_horse_battery_staple" }' "https://matrix.< domain > /_matrix/client/r0/admin/reset_password/@user:domain.com?access_token=MDA...this_is_my_access_token
```