WordPress includes a default reset password page that allows users to recover their account after forgetting their password. While this page serves its purpose, it’s quite basic and uses WordPress’s standard design, which may not match the look and feel of your website. For many site owners, having a consistent and branded user experience across all pages is important, and this is where customization comes in.
Customizing the reset password page ensures that it aligns with your site’s unique branding—using your colors, logos, and design elements. This creates a seamless experience for users and adds an extra layer of professionalism. Additionally, customization allows you to introduce enhanced features, such as improved security options or a more intuitive layout to make resetting passwords easier.
Why create a WordPress custom reset password page?
Customizing the WordPress reset password page isn’t just about aesthetics—it’s about offering a cohesive and professional user experience. When users need to reset their password, the page they interact with should feel like an integral part of your website, not a generic default. This consistency helps reinforce your brand and build trust with your users.
A custom reset page also improves usability. You can provide clear instructions, intuitive form layouts and messages that guide users step by step. These adjustments make the process simpler and less confusing, especially for those who may not be familiar with resetting passwords on WordPress.
From a security standpoint, customizing the page allows you to incorporate features like CAPTCHA. This helps prevent bots from exploiting your WordPress custom password reset form and adds a layer of protection for your users.
Lastly, having control over the layout and flow of the page enables you to create a smoother experience for users. A well-structured WordPress reset password page can significantly reduce user frustration, leading to better engagement and fewer support requests.
Method 1: Using Formidable Forms to customize the Reset Password Page
Formidable Forms is a powerful and user-friendly plugin that allows you to customize various forms, including the reset password page. While it offers flexibility, it keeps the process simple. Here’s a step-by-step guide:
Step 1: Install and activate Formidable Forms
To get started, go to your WordPress dashboard, then navigate to Plugins > Add New. In the search bar, type “Formidable Forms” and click Install Now once it appears. After installation, click Activate. Formidable Forms will now be available in your dashboard menu under Formidable.
Step 2: Install the user registration add-on
Although Formidable Forms allows you to create basic forms, you’ll need the User Registration add-on to manage user authentication processes like password resets.
Go to Formidable > Add-Ons in your WordPress dashboard, locate the User Registration add-on and click Install Add-On.
After installation, activate the add-on. This add-on unlocks user registration and password reset functionality.
Step 3: Create the custom reset password page
Next, head over to Pages > Add New to create your custom reset password page. You can give the page a title like “Reset Password” or something that aligns with your branding. In the block editor, click the plus sign (+) to add a block and select Shortcode.
Step 4: Insert the Formidable Forms shortcode
In the Shortcode block, enter the following shortcode:
[frm-reset-password]
This shortcode will display the Formidable Forms reset password functionality on the page. While the form itself will appear, you can add additional content around it, such as branding elements, instructions or visuals to match your website’s look.
Step 5: Customize your page
This is where you can make your reset password page uniquely yours. Add your logo at the top of the page for branding consistency. If needed, write short instructions reminding users to create a strong password (e.g., “Use at least eight characters, including a mix of uppercase letters, numbers and symbols”).
You can also style the page to match the design of the rest of your site, using headers, colors and fonts that align with your brand identity.
Step 6: Set the custom reset password page
To make sure WordPress uses your custom page instead of the default reset password page, go to Formidable > Global Settings in your dashboard. From there, click on the Registration tab. Under the Reset Password Page dropdown, select the page you just created. This will assign it as the official reset password page for your site.
Step 7: Publish and test
Once you’ve made all the necessary adjustments, click Publish to make your new reset password page live. To ensure it’s working, log out of your WordPress dashboard and navigate to the login page. Click the “Lost your password?” link and confirm that users are redirected to your new custom reset password page.
It’s also a good idea to test the form by completing the password reset process yourself to make sure everything functions smoothly.
Additional tip:
If you’re having issues with WordPress sending password reset emails (a common problem due to WordPress’ default PHP mail function), consider using an SMTP plugin like WP Mail SMTP to ensure reliable email delivery.
Method 2: Using ‘Theme My Login’ for a custom WordPress reset password page
Theme My Login is a popular plugin designed for WordPress users who want to customize login, registration and password reset pages without dealing with any complex coding. It’s a straightforward solution that works seamlessly with your WordPress theme. Here’s how to use it to create a custom reset password page:
Step 1: Install and activate Theme My Login
In your WordPress dashboard, go to Plugins > Add New, search for “Theme My Login,” and click Install Now. After installation, activate the plugin. Upon activation, Theme My Login will automatically generate default URLs for login, registration and password reset pages, all of which integrate with your site’s theme.
Step 2: Create a new reset password page
To create a custom reset password page, go to Pages > Add New. Title your page appropriately (e.g., “Reset Password”). Next, add a Shortcode block by clicking the (+) icon.
Step 3: Insert the Theme My Login shortcode
In the Shortcode block, insert the following shortcode:
[theme-my-login action="resetpass"]
This shortcode renders the reset password form, which users will use to set a new password. The form will adopt your theme’s design, ensuring that your reset password page maintains visual consistency with the rest of your site.
Step 4: Customize the page for branding
One of the advantages of using Theme My Login is that it automatically applies your WordPress theme’s design to the login, registration and reset password pages. However, you can still enhance the page by adding custom elements like your logo, footer or additional instructions.
For instance, you could remind users to use a strong password and provide a password-strengthening guide.
Step 5: Set the URL slug
You need to ensure the page’s URL matches the structure for password reset functionality. Once your page is ready, go to Pages > All Pages and locate the page you just created. Hover over the page title and click Quick Edit.
In the Slug field, type in resetpassword to create a user-friendly URL like yoursite.com/resetpassword. Make sure the status is set to Published, then click Update.
Step 6: Publish and test
After completing the setup, publish the page and test it by visiting the login page of your site and clicking the “Lost your password?” link. Confirm that it redirects to your custom reset password page and test the form by submitting a reset request. This ensures the entire process is working correctly and that the page appears properly for users.
Bonus: Customize other user pages
Theme My Login also allows you to customize other user-related pages such as login, registration and account management. Simply follow the same process, replacing the shortcode with the appropriate one for each page.
Additional tip:
If your site handles sensitive user data or has an ecommerce function, you might want to enhance the security of your login and password reset pages by enabling two-factor authentication or adding a CAPTCHA. Theme My Login supports extensions for these features, which can be purchased as premium add-ons.
Method 3: Using WPForms for a custom WordPress reset password page
WPForms is a highly versatile and easy-to-use WordPress plugin that enables you to create custom forms for various purposes, including a password reset page. Unlike other methods, WPForms offers a fully customizable experience, giving you control over every element of the form.
Follow this step-by-step guide to create a custom password reset page using WPForms:
Step 1: Install and activate WPForms
Start by installing and activating the WPForms plugin. Navigate to Plugins > Add New in your WordPress dashboard, search for “WPForms,” and click Install Now.
After installation, activate the plugin. WPForms Lite offers a basic form builder, but for user registration and password reset functionalities, you’ll need the premium version of WPForms.
Step 2: Install the user registration add-on
To enable password reset capabilities, you need to install the User Registration Add-On. This add-on allows you to create forms for user login, registration and password resets. To install it:
- Go to WPForms > Add-Ons in your WordPress dashboard.
- Look for the User Registration Add-On and click Install Add-On. Once installed, activate it.
Step 3: Create a new password reset form
With the User Registration Add-On activated, you can now create a custom password reset form:
- Go to WPForms > Add New to create a new form.
- Choose the User Password Reset Form template from the list. This template is designed specifically for password reset functionality and includes all the required fields for users to reset their passwords.
- Customize the form to fit your website’s design and user experience. For example, you can change the label of the submit button, add descriptive text to guide users through the reset process or insert a logo to maintain branding consistency.
Step 4: Customize the form fields
WPForms allows full customization of form fields. You can modify existing fields or add new ones to collect additional data or provide extra information to your users. For example:
- Adjust the Submit button text to something more user-friendly like “Reset My Password.”
- Add a custom message that encourages users to create strong passwords or provides instructions on how to reset their passwords securely.
Step 5: Configure form notifications and confirmations
Once your form is set up, configure the notifications and confirmations:
- Notifications: You can set up email notifications to alert users when they’ve successfully submitted the password reset request. You can also send internal notifications to the site administrator.
- Confirmations: Customize the confirmation message that appears after a user submits the password reset form. For example, you might include a message like “Check your email for instructions on how to reset your password.” WPForms also allows you to redirect users to a custom page after submission.
Step 6: Create a custom reset password page
Now, create a new page that will serve as the password reset page:
- Go to Pages > Add New and name it something like “Reset Password.”
- In the block editor, click the (+) icon to add a block and select WPForms.
- Choose the password reset form you just created from the dropdown menu.
- Customize the page by adding extra content like your logo, a background image or instructional text.
Step 7: Redirect users to the custom password reset page
To make your custom password reset page functional, you’ll need to update your WordPress site so that users are redirected to this page when they request a password reset:
- Install and activate the WPCode plugin (if you haven’t already) to add custom code without touching your theme’s files.
- Go to Code Snippets > Add New and select PHP Snippet as the code type.
- Add the following code snippet to ensure users are redirected to your new password reset page:
add_filter( 'lostpassword_url', 'my_lostpassword_url' );
function my_lostpassword_url() {
return site_url('/reset-password/');
}
This snippet updates the default lost password URL to point to your newly created reset password page. Make sure to replace ‘/reset-password/’ with the actual slug of your custom reset password page.
Step 8: Publish and test the custom password reset page
After completing all the steps, click Publish to make your new password reset page live. Test the page by navigating to your site’s login screen, clicking on the “Lost your password?” link and ensuring that users are redirected to your custom password reset page.
Redirecting users to the custom reset password page
Step 1: Set up a redirection with a plugin
One of the simplest ways to redirect users to your custom reset password page is by using a plugin like Redirection or WPForms (if you’re already using it). After installing and activating the plugin, navigate to its settings.
For Redirection, go to Tools > Redirection. Here, you’ll create a new redirection rule:
- Set the Source URL to the default WordPress reset password page:
/wp-login.php?action=lostpassword
- Set the Target URL to your custom reset password page (e.g., /reset-password-page/)
This ensures that whenever users request a password reset, they are redirected to your custom reset page. This method requires minimal effort and is ideal if you prefer using plugins for managing redirection.
Step 2: Manually redirect using custom code
For more control or if you prefer not to use a plugin, you can manually add a redirection function to your theme’s functions.php file. In your WordPress dashboard, navigate to Appearance > Theme Editor and locate the functions.php file in your active theme.
Insert the following code at the end of your functions.php file:
function custom_password_reset_redirect() {
if ( isset($_GET['action']) && $_GET['action'] == 'rp' ) {
wp_redirect( site_url('/custom-reset-password-page/') );
exit();
}
}
add_action('login_init', 'custom_password_reset_redirect');
This code checks if the user is accessing the default reset password page and automatically redirects them to your custom page. Be sure to replace ‘/custom-reset-password-page/’ with the actual URL of your custom reset page.
Step 3: Test the redirection
After setting up the redirection (via plugin or code), it’s crucial to test the process. To do this, request a password reset link as a user and follow the email link. Ensure that the redirection occurs smoothly and that you’re directed to the custom page instead of the default WordPress one.
Additionally, test on different devices and browsers to confirm consistent behavior across platforms.
Step 4: Ensure compatibility with other login-related plugins
If you’re using other plugins that modify the login or user management functionality, it’s important to check that the redirection doesn’t interfere with them. Some security or user management plugins may conflict with custom redirection rules. Run a few tests to ensure compatibility and smooth operation across all aspects of user management.
Customizing the password reset email
Step 1: Use a plugin to customize the email content
To customize the password reset email, start by using a plugin like WP Mail SMTP or Email Templates Customizer. These plugins allow you to easily modify the email’s content without needing to code. Once installed, navigate to the plugin’s settings where you’ll find options to adjust the email subject, message body and sender name. By personalizing these elements, you can create a branded and more user-friendly email.
Step 2: Personalize the email message
Instead of sending a generic message, tailor the email content to reflect your brand’s tone and provide clear, concise instructions. For example, include your site’s name in the subject line to reassure users that the request is legitimate. In the body of the email, offer a friendly but professional message, such as:
Default message:
“Someone has requested a password reset for the following account: [username]. If this was a mistake, please ignore this email.”
Custom message:
“Hi [username],
We’ve received your request to reset your password. Click the link below to set a new password for your account. If you didn’t request this, please ignore this email.”
This small change makes the communication more personal, clear and aligned with your brand voice.
Step 3: Add branding elements to the email
To make the reset password email look professional, include your branding elements such as your logo, colors and fonts. Many email customization plugins allow you to add images and adjust styling to match the design of your website. This not only reinforces trust but also ensures that your emails are visually consistent with the rest of your site.
Step 4: Test the email flow
Once your custom email is set up, it’s important to test it. Request a password reset as a user and check how the email looks when delivered. Ensure that all customizations—subject line, body content and branding—are correctly displayed. Also, verify that the reset link works as expected and redirects to your custom reset password page.
Step 5: Monitor email deliverability
Customizing the email is only half the process. Ensuring it reaches the user’s inbox is just as important. Tools like WP Mail SMTP can help you configure the proper email settings to ensure high deliverability rates. This prevents your password reset emails from being marked as spam, ensuring that users receive them promptly.
Best practices for custom WordPress reset password pages
1. Ensure mobile responsiveness
With a growing number of users accessing websites via mobile devices, it’s essential that your reset password page is fully responsive. Test the layout across different screen sizes to ensure that fields, buttons and messages are easy to interact with on smaller devices. A mobile-friendly reset password page not only improves usability but also reduces frustration for users trying to reset their passwords on the go if they forgot password.
2. Use clear and concise instructions
The reset password process should be simple and straightforward. Use clear, concise instructions on the page so users know exactly what to do. Avoid technical jargon and make sure that the form fields are labeled clearly. For example, use phrases like “Enter your new password” instead of something more complex. Providing error messages that are easy to understand, such as “Passwords do not match,” ensures users can quickly correct mistakes without confusion.
3. Implement security measures
Security is a critical component of any password reset process. Incorporate security features like CAPTCHA or reCAPTCHA to prevent bots from exploiting the form. These tools help verify that password reset requests are made by humans, not automated programs, reducing the risk of unauthorized access. You should also encourage users to create strong passwords by displaying a password strength meter.
4. Optimize for page load speed
A slow-loading reset password page can frustrate users and lead to drop-offs. To avoid this, ensure that your custom reset password page is optimized for speed. Use compressed images and clean code to reduce load times. Additionally, make sure any third-party plugins or scripts you’ve added don’t unnecessarily slow down the page.
5. Test for accessibility
Make sure your reset password page is accessible to all users, including those with disabilities. Use descriptive form labels, ensure that the page is navigable by keyboard and provide reset password screens reader support. By following web accessibility guidelines (such as WCAG), you make the process easier for everyone and you meet important compliance standards.
6. Add a confirmation message or redirect
After the password reset is complete, provide users with a confirmation message or redirect them to a custom thank-you page. This reassures them that their password has been successfully reset. Including additional security tips or a link back to the login page can further enhance the experience and keep users on track.
7. Monitor and maintain functionality
Even after setting up your custom reset password page, it’s important to regularly test it. Changes in plugins, themes or WordPress updates can sometimes affect functionality. Periodically run tests to ensure the form works smoothly, from submitting the reset request to successfully setting a new password. Staying proactive helps avoid issues that could negatively impact user experience.
Simplify Your WordPress Password Reset Process
Customizing your WordPress reset password page enhances both user experience and security. It ensures consistency with your brand and simplifies the process for users. Using plugins like Formidable Forms or WPForms makes customization easy while adding essential features like CAPTCHA for added protection.
By following best practices, such as mobile optimization and clear instructions, you provide a smooth and professional experience. A well-crafted custom WordPress reset password page builds trust and shows your commitment to both design and security, ensuring users can confidently interact with your WordPress website.
FAQs
Creating a custom WordPress reset password page can be done using plugins like Formidable Forms, WPForms, or Theme My Login. These tools allow you to design a personalized page that matches your site’s branding without needing advanced coding skills.
Yes, you can customize the WordPress password reset email by using plugins like WP Mail SMTP or Email Templates Customizer. These plugins let you modify the email’s content, layout and design to match your brand and provide a more user-friendly experience.
To add CAPTCHA or reCAPTCHA to your default WordPress password reset page, you can use plugins such as WPForms or Google CAPTCHA. These tools help protect your site from bots by requiring users to complete a CAPTCHA before submitting their password reset request.
You can redirect users to a custom password reset page using a plugin like Redirection. This allows you to set up rules that guide users from the default reset page to your customized version, enhancing both security and user experience.
Best practices include ensuring mobile responsiveness, using clear instructions, adding CAPTCHA for security and regularly testing the page to ensure smooth functionality. These steps improve user experience and reinforce your site’s security.