Version Description
Download this release
Release Info
| Developer | sean212 |
| Plugin |  Lockdown WP Admin |
| Version | 2.3.2 |
| Comparing to | |
| See all releases | |
Code changes from version 2.3.1 to 2.3.2
- lockdown-wp-admin.php +1 -1
- readme.txt +1 -1
- src/Lockdown/Manager.php +1 -1
- views/errors.php +8 -0
- views/private-users.php +95 -0
lockdown-wp-admin.php
CHANGED
|
@@ -4,7 +4,7 @@ Plugin Name: Lockdown WP Admin
|
|
| 4 |
Plugin URI: http://seanfisher.co/lockdown-wp-admin/
|
| 5 |
Donate link: http://seanfisher.co/donate/
|
| 6 |
Description: Securing the WordPress Administration interface by concealing the administration dashboard and changing the login page URL.
|
| 7 |
-
Version: 2.3.
|
| 8 |
Author: Sean Fisher
|
| 9 |
Author URI: http://seanfisher.co/
|
| 10 |
License: GPL
|
| 4 |
Plugin URI: http://seanfisher.co/lockdown-wp-admin/
|
| 5 |
Donate link: http://seanfisher.co/donate/
|
| 6 |
Description: Securing the WordPress Administration interface by concealing the administration dashboard and changing the login page URL.
|
| 7 |
+
Version: 2.3.2
|
| 8 |
Author: Sean Fisher
|
| 9 |
Author URI: http://seanfisher.co/
|
| 10 |
License: GPL
|
readme.txt
CHANGED
|
@@ -5,7 +5,7 @@ Link: http://seanfisher.co/lockdown-wp-admin/
|
|
| 5 |
Tags: security, secure, lockdown, vulnerability, website security, wp-admin, login, hide login, rename login, http auth, 404, lockdown, srtfisher, secure
|
| 6 |
Requires at least: 3.6
|
| 7 |
Tested up to: 4.3.1
|
| 8 |
-
Stable tag: 2.3.
|
| 9 |
|
| 10 |
Lockdown WP Admin conceals the administration and login screen from intruders. It can hide WordPress Admin (/wp-admin/) and and login (/wp-login.php) as well as add HTTP authentication to the login system. We can also change the login URL from wp-login.php to whatever you'd like: /login, /log-in-here, etc.
|
| 11 |
|
| 5 |
Tags: security, secure, lockdown, vulnerability, website security, wp-admin, login, hide login, rename login, http auth, 404, lockdown, srtfisher, secure
|
| 6 |
Requires at least: 3.6
|
| 7 |
Tested up to: 4.3.1
|
| 8 |
+
Stable tag: 2.3.2
|
| 9 |
|
| 10 |
Lockdown WP Admin conceals the administration and login screen from intruders. It can hide WordPress Admin (/wp-admin/) and and login (/wp-login.php) as well as add HTTP authentication to the login system. We can also change the login URL from wp-login.php to whatever you'd like: /login, /log-in-here, etc.
|
| 11 |
|
src/Lockdown/Manager.php
CHANGED
|
@@ -14,7 +14,7 @@ class Lockdown_Manager
|
|
| 14 |
*
|
| 15 |
* @global string
|
| 16 |
*/
|
| 17 |
-
public static $ld_admin_version = '2.3.
|
| 18 |
|
| 19 |
/**
|
| 20 |
* The HTTP Auth name for the protected area
|
| 14 |
*
|
| 15 |
* @global string
|
| 16 |
*/
|
| 17 |
+
public static $ld_admin_version = '2.3.2';
|
| 18 |
|
| 19 |
/**
|
| 20 |
* The HTTP Auth name for the protected area
|
views/errors.php
ADDED
|
@@ -0,0 +1,8 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
<?php $messages = Lockdown_Manager::instance()->admin->get_messages(); ?>
|
| 2 |
+
<?php if ( ! empty( $messages ) ) : ?>
|
| 3 |
+
<?php foreach ( $messages as $message ) : ?>
|
| 4 |
+
<div class="<?php if ( 'error' === $message['type'] ) { echo 'error'; } else { echo 'updated'; } ?>">
|
| 5 |
+
<p><?php echo esc_html( $message['message'] ); ?></p>
|
| 6 |
+
</div>
|
| 7 |
+
<?php endforeach; ?>
|
| 8 |
+
<?php endif; ?>
|
views/private-users.php
ADDED
|
@@ -0,0 +1,95 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 1 |
+
<?php if ( ! defined( 'ABSPATH' ) ) exit; ?>
|
| 2 |
+
|
| 3 |
+
<div class="wrap">
|
| 4 |
+
<h2><?php esc_html_e( 'Lockdown WordPress Admin', 'lockdown-wp-admin' ); ?></h2>
|
| 5 |
+
<h3><?php esc_html_e( 'HTTP Authentication Private Users', 'lockdown-wp-admin' ); ?></h3>
|
| 6 |
+
<?php include LD_PLUGIN_DIR . '/views/errors.php'; ?>
|
| 7 |
+
|
| 8 |
+
<form method="POST" action="<?php echo admin_url('admin.php?page=lockdown-private-users'); ?>">
|
| 9 |
+
<?php wp_nonce_field('lockdown-wp-admin'); ?>
|
| 10 |
+
<p>
|
| 11 |
+
<?php esc_html_e( 'Adding users below will only work if you have "Private Usernames/Passwords" selected for HTTP Authentication.', 'lockdown-wp-admin' ); ?>
|
| 12 |
+
</p>
|
| 13 |
+
|
| 14 |
+
<div class="error">
|
| 15 |
+
<p>
|
| 16 |
+
<strong><?php esc_html_e( 'Please note a few things:', 'lockdown-wp-admin' ); ?></strong>
|
| 17 |
+
<ol>
|
| 18 |
+
<li>
|
| 19 |
+
<?php esc_html_e( 'If you are ever locked out, you can just delete the plugin files via FTP (/wp-content/plugins/lockdown-wp-admin/) and you will be able to login again.', 'lockdown-wp-admin' ); ?>
|
| 20 |
+
</li>
|
| 21 |
+
<li>
|
| 22 |
+
<?php esc_html_e( 'You cannot delete the current HTTP Authentication username you are using right now.', 'lockdown-wp-admin' ); ?>
|
| 23 |
+
</li>
|
| 24 |
+
|
| 25 |
+
<li>
|
| 26 |
+
<?php esc_html_e( 'Private user HTTP Authentication will not work if you don\'t have a username added below.', 'lockdown-wp-admin' ); ?>
|
| 27 |
+
</li>
|
| 28 |
+
</ol>
|
| 29 |
+
</p>
|
| 30 |
+
</div>
|
| 31 |
+
|
| 32 |
+
<table class="widefat">
|
| 33 |
+
<thead>
|
| 34 |
+
<tr>
|
| 35 |
+
<th><?php esc_html_e( 'Username', 'lockdown-wp-admin' ); ?></th>
|
| 36 |
+
<th><?php esc_html_e( 'Action', 'lockdown-wp-admin' ); ?></th>
|
| 37 |
+
</tr>
|
| 38 |
+
</thead>
|
| 39 |
+
|
| 40 |
+
<tfoot>
|
| 41 |
+
<tr>
|
| 42 |
+
<th><?php esc_html_e( 'Username', 'lockdown-wp-admin' ); ?></th>
|
| 43 |
+
<th><?php esc_html_e( 'Action', 'lockdown-wp-admin' ); ?></th>
|
| 44 |
+
</tr>
|
| 45 |
+
</tfoot>
|
| 46 |
+
<tbody>
|
| 47 |
+
<?php if ( ! empty( $private_users ) ) : ?>
|
| 48 |
+
<?php $nonce = wp_create_nonce('lockdown-wp-admin'); ?>
|
| 49 |
+
|
| 50 |
+
<?php foreach ($private_users as $key => $user) : ?>
|
| 51 |
+
<tr>
|
| 52 |
+
<td><?php echo $user['user']; ?></td>
|
| 53 |
+
<td>
|
| 54 |
+
<a href="admin.php?page=lockdown-private-users&delete=<?php echo esc_attr( $key ); ?>&_wpnonce=<?php echo esc_attr( $nonce ); ?>"><?php esc_html_e( 'Delete', 'lockdown-wp-admin' ); ?></a>
|
| 55 |
+
</td>
|
| 56 |
+
</tr>
|
| 57 |
+
<?php endforeach; ?>
|
| 58 |
+
<?php endif; ?>
|
| 59 |
+
</tbody>
|
| 60 |
+
</table>
|
| 61 |
+
|
| 62 |
+
<h4><?php esc_html_e( 'Add a Private User', 'lockdown-wp-admin' ); ?></h4>
|
| 63 |
+
<?php if ( 'private' !== $this->instance->application->getHttpAuth() ) : ?>
|
| 64 |
+
<p><?php esc_html_e( 'To add a user, fill out the username and password below and click "Save Options" below.', 'lockdown-wp-admin' ); ?></p>
|
| 65 |
+
<?php else : ?>
|
| 66 |
+
<p><?php esc_html_e( 'Private Username/Password HTTP Authentication is enabled.', 'lockdown-wp-admin' ); ?></p>
|
| 67 |
+
<?php endif; ?>
|
| 68 |
+
|
| 69 |
+
<table class="form-table">
|
| 70 |
+
<tr>
|
| 71 |
+
<th>
|
| 72 |
+
<label for="private_username"><?php esc_html_e( 'New Username', 'lockdown-wp-admin' ); ?></label>
|
| 73 |
+
</th>
|
| 74 |
+
<td>
|
| 75 |
+
<input type="text" name="private_username" autocapitalize="none" id="private_username">
|
| 76 |
+
</td>
|
| 77 |
+
</tr>
|
| 78 |
+
|
| 79 |
+
<tr>
|
| 80 |
+
<th>
|
| 81 |
+
<label for="private_password"><?php esc_html_e( 'New Password', 'lockdown-wp-admin' ); ?></label>
|
| 82 |
+
</th>
|
| 83 |
+
<td>
|
| 84 |
+
<input type="password" id="private_password" name="private_password">
|
| 85 |
+
</td>
|
| 86 |
+
</tr>
|
| 87 |
+
</table>
|
| 88 |
+
|
| 89 |
+
<div class="clear"></div>
|
| 90 |
+
<br />
|
| 91 |
+
<input type="hidden" name="did_update" value="yes_we_did">
|
| 92 |
+
<input class='button-primary' type='submit' value='<?php esc_html_e( 'Save Options', 'lockdown-wp-admin' ); ?>' id='submitbutton' />
|
| 93 |
+
|
| 94 |
+
</form>
|
| 95 |
+
</div>
|
