Version Description
- Tested with new wordpress version 5.4.2
- Fixed new admin url page not found issue when you setup wordpress in subdirectory.
- Optimized code
- Released add-on new version 2.0
Download this release
Release Info
| Developer | india-web-developer |
| Plugin |  Protect Your Admin |
| Version | 3.3 |
| Comparing to | |
| See all releases | |
Code changes from version 3.2 to 3.3
- protect-wp-admin.php +15 -8
- pwa-class.php +20 -20
- readme.txt +197 -190
protect-wp-admin.php
CHANGED
|
@@ -5,7 +5,7 @@ Plugin URI: https://www.wp-experts.in/
|
|
| 5 |
Description: Give extra protection to your site admin and make secure your website against hackers!!
|
| 6 |
Author: WP Experts Team
|
| 7 |
Author URI: https://www.wp-experts.in/
|
| 8 |
-
Version: 3.
|
| 9 |
*/
|
| 10 |
|
| 11 |
/*** WP Experts Team Copyright 2017-2020 (email : raghunath.0087@gmail.com)
|
|
@@ -67,7 +67,7 @@ add_action('admin_init','init_pwa_options_fields');
|
|
| 67 |
if(!function_exists('init_pwa_options_fields')):
|
| 68 |
function init_pwa_options_fields(){
|
| 69 |
register_setting('pwa_setting_options','pwa_active');
|
| 70 |
-
register_setting('pwa_setting_options','pwa_rewrite_text');
|
| 71 |
register_setting('pwa_setting_options','pwa_restrict');
|
| 72 |
register_setting('pwa_setting_options','pwa_logout');
|
| 73 |
register_setting('pwa_setting_options','pwa_allow_custom_users');
|
|
@@ -76,7 +76,14 @@ function init_pwa_options_fields(){
|
|
| 76 |
register_setting('pwa_setting_options','pwa_login_page_color');
|
| 77 |
}
|
| 78 |
endif;
|
| 79 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 80 |
if(!function_exists('add_pwa_admin_style_script')):
|
| 81 |
function add_pwa_admin_style_script()
|
| 82 |
{
|
|
@@ -119,11 +126,11 @@ function init_pwa_admin_option_page(){
|
|
| 119 |
<td valign="top" width="50%">
|
| 120 |
|
| 121 |
<p><input type="checkbox" id="pwa_active" name="pwa_active" value='1' <?php if(get_option('pwa_active')!=''){ echo ' checked="checked"'; }?>/> <label><strong>Enable</strong></label></p>
|
| 122 |
-
<p id="adminurl"><label><strong>New Admin Slug:</strong></label><br><input
|
| 123 |
<?php
|
| 124 |
$getPwaOptions=get_pwa_setting_options();
|
| 125 |
if((isset($getPwaOptions['pwa_active']) && '1'==$getPwaOptions['pwa_active']) && (isset($getPwaOptions['pwa_rewrite_text']) && $getPwaOptions['pwa_rewrite_text']!='')){
|
| 126 |
-
echo '<p><
|
| 127 |
|
| 128 |
}
|
| 129 |
?>
|
|
@@ -136,7 +143,7 @@ function init_pwa_admin_option_page(){
|
|
| 136 |
|
| 137 |
</td>
|
| 138 |
<td valign="top" style="border-left:2px solid #ccc; padding-left:10px;">
|
| 139 |
-
<div class="offer-announcement"><h2><i class="wpexperts dashicons-before dashicons-megaphone"></i><a href="https://www.wp-experts.in/products/protect-wp-admin-pro">FLAT 20% DISCOUNT ON PLUGIN ADD-ON</a></h2><em class="tagline">No Coupon Code Required. Hurry! Limited Time Offer!</em></div>
|
| 140 |
<h3>Pro Addon Features:</h3>
|
| 141 |
<ol class="hand right-click twocolumn">
|
| 142 |
<li>Rename wordpress wp-admin URL</li>
|
|
@@ -149,8 +156,8 @@ function init_pwa_admin_option_page(){
|
|
| 149 |
<li>Change wordpress admin URL</li>
|
| 150 |
<li>Track user login history.</li>
|
| 151 |
<li>Faster support</li>
|
| 152 |
-
</ol>
|
| 153 |
-
<h2><a href="https://www.wp-experts.in/products/protect-wp-admin-pro" target="_blank" style="
|
| 154 |
</td>
|
| 155 |
</tr>
|
| 156 |
</table>
|
| 5 |
Description: Give extra protection to your site admin and make secure your website against hackers!!
|
| 6 |
Author: WP Experts Team
|
| 7 |
Author URI: https://www.wp-experts.in/
|
| 8 |
+
Version: 3.3
|
| 9 |
*/
|
| 10 |
|
| 11 |
/*** WP Experts Team Copyright 2017-2020 (email : raghunath.0087@gmail.com)
|
| 67 |
if(!function_exists('init_pwa_options_fields')):
|
| 68 |
function init_pwa_options_fields(){
|
| 69 |
register_setting('pwa_setting_options','pwa_active');
|
| 70 |
+
register_setting('pwa_setting_options','pwa_rewrite_text','pwa_sanitization_newslug_escaping_text');
|
| 71 |
register_setting('pwa_setting_options','pwa_restrict');
|
| 72 |
register_setting('pwa_setting_options','pwa_logout');
|
| 73 |
register_setting('pwa_setting_options','pwa_allow_custom_users');
|
| 76 |
register_setting('pwa_setting_options','pwa_login_page_color');
|
| 77 |
}
|
| 78 |
endif;
|
| 79 |
+
if(!function_exists('pwa_sanitization_newslug_escaping_text')):
|
| 80 |
+
function pwa_sanitization_newslug_escaping_text($val)
|
| 81 |
+
{
|
| 82 |
+
//sanitize
|
| 83 |
+
$val = sanitize_text_field($val);
|
| 84 |
+
return $val;
|
| 85 |
+
}
|
| 86 |
+
endif;
|
| 87 |
if(!function_exists('add_pwa_admin_style_script')):
|
| 88 |
function add_pwa_admin_style_script()
|
| 89 |
{
|
| 126 |
<td valign="top" width="50%">
|
| 127 |
|
| 128 |
<p><input type="checkbox" id="pwa_active" name="pwa_active" value='1' <?php if(get_option('pwa_active')!=''){ echo ' checked="checked"'; }?>/> <label><strong>Enable</strong></label></p>
|
| 129 |
+
<p id="adminurl"><label><strong>New Admin Slug:</strong></label><br><input onkeyup="this.value=this.value.replace(/[^a-z]/g,'');" type="text" id="pwa_rewrite_text" size="20" name="pwa_rewrite_text" value="<?php echo esc_attr(get_option('pwa_rewrite_text')); ?>" placeholder="myadmin" size="30"><br><i>Don't use any special character.</i></p>
|
| 130 |
<?php
|
| 131 |
$getPwaOptions=get_pwa_setting_options();
|
| 132 |
if((isset($getPwaOptions['pwa_active']) && '1'==$getPwaOptions['pwa_active']) && (isset($getPwaOptions['pwa_rewrite_text']) && $getPwaOptions['pwa_rewrite_text']!='')){
|
| 133 |
+
echo '<p><a href="'.site_url($getPwaOptions['pwa_rewrite_text'].'?preview=1').'" target="_blank" style="border: 1px solid #ff0000;text-decoration: none;color: #ff0000;font-size: 18px;vertical-align: middle;padding: 10px 20px;" target="_blank">Preview Of New Admin URL</a></blink></strong></p><em><strong>Note:</strong>Please check new admin url before logout.</em><br>';
|
| 134 |
|
| 135 |
}
|
| 136 |
?>
|
| 143 |
|
| 144 |
</td>
|
| 145 |
<td valign="top" style="border-left:2px solid #ccc; padding-left:10px;">
|
| 146 |
+
<div class="offer-announcement" style="display:none;"><h2><i class="wpexperts dashicons-before dashicons-megaphone"></i><a href="https://www.wp-experts.in/products/protect-wp-admin-pro">FLAT 20% DISCOUNT ON PLUGIN ADD-ON</a></h2><em class="tagline">No Coupon Code Required. Hurry! Limited Time Offer!</em></div>
|
| 147 |
<h3>Pro Addon Features:</h3>
|
| 148 |
<ol class="hand right-click twocolumn">
|
| 149 |
<li>Rename wordpress wp-admin URL</li>
|
| 156 |
<li>Change wordpress admin URL</li>
|
| 157 |
<li>Track user login history.</li>
|
| 158 |
<li>Faster support</li>
|
| 159 |
+
</ol><br>
|
| 160 |
+
<h2><a href="https://www.wp-experts.in/products/protect-wp-admin-pro" target="_blank" style="background: #0472aa; padding: 10px 20px; margin: 10px 0px; text-decoration: none; color: #fff; font-size: 24px; "><strong>Click here to download add-on</strong></a></h2>
|
| 161 |
</td>
|
| 162 |
</tr>
|
| 163 |
</table>
|
pwa-class.php
CHANGED
|
@@ -43,7 +43,7 @@ if(!function_exists('check_login_status')):
|
|
| 43 |
{
|
| 44 |
$getPwaOptions = get_pwa_setting_options();
|
| 45 |
$current_uri = pwa_get_current_page_url($_SERVER);
|
| 46 |
-
$newadminurl =
|
| 47 |
if ( is_user_logged_in() && $current_uri==$newadminurl)
|
| 48 |
{
|
| 49 |
wp_redirect(admin_url()); die();
|
|
@@ -68,7 +68,7 @@ function pwa_logout_user_after_settings_save()
|
|
| 68 |
{
|
| 69 |
$URL=str_replace('&','&',wp_logout_url());
|
| 70 |
if(isset($getPwaOptions['pwa_rewrite_text']) && isset($getPwaOptions['pwa_logout']) && $getPwaOptions['pwa_logout']==1 && $getPwaOptions['pwa_rewrite_text']!=''){
|
| 71 |
-
wp_redirect(
|
| 72 |
}else
|
| 73 |
{
|
| 74 |
//silent
|
|
@@ -107,16 +107,16 @@ $getPwaOptions=get_pwa_setting_options();
|
|
| 107 |
if(isset($getPwaOptions['pwa_active']) && ''!=$getPwaOptions['pwa_rewrite_text']){
|
| 108 |
|
| 109 |
echo '<script>jQuery(document).ready(function(){
|
| 110 |
-
jQuery("#login #login_error a").attr("href","'.
|
| 111 |
-
jQuery("body.login-action-resetpass p.reset-pass a").attr("href","'.
|
| 112 |
var formId= jQuery("#login form").attr("id");
|
| 113 |
if(formId=="loginform"){
|
| 114 |
-
jQuery("#"+formId).attr("action","'.
|
| 115 |
}else if("lostpasswordform"==formId){
|
| 116 |
-
jQuery("#"+formId).attr("action","'.
|
| 117 |
-
jQuery("#"+formId+" input:hidden[name=redirect_to]").val("'.
|
| 118 |
}else if("registerform"==formId){
|
| 119 |
-
jQuery("#"+formId).attr("action","'.
|
| 120 |
}
|
| 121 |
else
|
| 122 |
{
|
|
@@ -130,17 +130,17 @@ if(formId=="loginform"){
|
|
| 130 |
|
| 131 |
if(linkText.indexOf("?action=register") >= 0)
|
| 132 |
{
|
| 133 |
-
//jQuery(this).attr("href","'.
|
| 134 |
}
|
| 135 |
|
| 136 |
if(linkText.indexOf("?action=lostpassword") >= 0)
|
| 137 |
{
|
| 138 |
-
// jQuery(this).attr("href","'.
|
| 139 |
}
|
| 140 |
*/
|
| 141 |
var linkText = jQuery(this).attr("href").match(/[^/]*(?=(\/)?$)/)[0];
|
| 142 |
-
if(linkText=="wp-login.php"){jQuery(this).attr("href","'.
|
| 143 |
-
else if(linkText=="wp-login.php?action=register"){jQuery(this).attr("href","'.
|
| 144 |
//silent
|
| 145 |
}
|
| 146 |
});});</script>';
|
|
@@ -155,19 +155,19 @@ function pwa_admin_url_redirect_conditions()
|
|
| 155 |
$getPwaOptions=get_pwa_setting_options();
|
| 156 |
$pwaActualURLAry =array
|
| 157 |
(
|
| 158 |
-
|
| 159 |
-
|
| 160 |
-
|
| 161 |
-
|
| 162 |
-
|
| 163 |
-
|
| 164 |
);
|
| 165 |
$request_url = pwa_get_current_page_url($_SERVER);
|
| 166 |
$newUrl = explode('?',$request_url);
|
| 167 |
//print_r($pwaActualURLAry); echo $newUrl[0];exit;
|
| 168 |
if(! is_user_logged_in() && in_array($newUrl[0],$pwaActualURLAry) )
|
| 169 |
{
|
| 170 |
-
if(wp_doing_ajax() && $newUrl[0]==
|
| 171 |
return true;
|
| 172 |
/** is forgot password link */
|
| 173 |
if( isset($_GET['login']) && isset($_GET['action']) && $_GET['action']=='rp' && $_GET['login']!='')
|
|
@@ -184,7 +184,7 @@ if(username_exists($username))
|
|
| 184 |
}
|
| 185 |
elseif(isset($_GET['action']) && isset($_GET['error']) && $_GET['action']=='lostpassword' && $_GET['error']=='invalidkey')
|
| 186 |
{
|
| 187 |
-
$redirectUrl=
|
| 188 |
wp_redirect($redirectUrl,301);//exit;
|
| 189 |
}
|
| 190 |
elseif(isset($_GET['action']) && $_GET['action']=='resetpass')
|
| 43 |
{
|
| 44 |
$getPwaOptions = get_pwa_setting_options();
|
| 45 |
$current_uri = pwa_get_current_page_url($_SERVER);
|
| 46 |
+
$newadminurl = site_url($getPwaOptions['pwa_rewrite_text']);
|
| 47 |
if ( is_user_logged_in() && $current_uri==$newadminurl)
|
| 48 |
{
|
| 49 |
wp_redirect(admin_url()); die();
|
| 68 |
{
|
| 69 |
$URL=str_replace('&','&',wp_logout_url());
|
| 70 |
if(isset($getPwaOptions['pwa_rewrite_text']) && isset($getPwaOptions['pwa_logout']) && $getPwaOptions['pwa_logout']==1 && $getPwaOptions['pwa_rewrite_text']!=''){
|
| 71 |
+
wp_redirect(site_url('/'.$getPwaOptions['pwa_rewrite_text']));
|
| 72 |
}else
|
| 73 |
{
|
| 74 |
//silent
|
| 107 |
if(isset($getPwaOptions['pwa_active']) && ''!=$getPwaOptions['pwa_rewrite_text']){
|
| 108 |
|
| 109 |
echo '<script>jQuery(document).ready(function(){
|
| 110 |
+
jQuery("#login #login_error a").attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/lostpassword').'");
|
| 111 |
+
jQuery("body.login-action-resetpass p.reset-pass a").attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/').'");
|
| 112 |
var formId= jQuery("#login form").attr("id");
|
| 113 |
if(formId=="loginform"){
|
| 114 |
+
jQuery("#"+formId).attr("action","'.site_url($getPwaOptions["pwa_rewrite_text"]).'");
|
| 115 |
}else if("lostpasswordform"==formId){
|
| 116 |
+
jQuery("#"+formId).attr("action","'.site_url($getPwaOptions["pwa_rewrite_text"].'/lostpassword').'");
|
| 117 |
+
jQuery("#"+formId+" input:hidden[name=redirect_to]").val("'.site_url($getPwaOptions["pwa_rewrite_text"].'/?checkemail=confirm').'");
|
| 118 |
}else if("registerform"==formId){
|
| 119 |
+
jQuery("#"+formId).attr("action","'.site_url($getPwaOptions["pwa_rewrite_text"].'/register').'");
|
| 120 |
}
|
| 121 |
else
|
| 122 |
{
|
| 130 |
|
| 131 |
if(linkText.indexOf("?action=register") >= 0)
|
| 132 |
{
|
| 133 |
+
//jQuery(this).attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/register').'");
|
| 134 |
}
|
| 135 |
|
| 136 |
if(linkText.indexOf("?action=lostpassword") >= 0)
|
| 137 |
{
|
| 138 |
+
// jQuery(this).attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/lostpassword').'");
|
| 139 |
}
|
| 140 |
*/
|
| 141 |
var linkText = jQuery(this).attr("href").match(/[^/]*(?=(\/)?$)/)[0];
|
| 142 |
+
if(linkText=="wp-login.php"){jQuery(this).attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"]).'");}
|
| 143 |
+
else if(linkText=="wp-login.php?action=register"){jQuery(this).attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/register').'");}else if(linkText=="wp-login.php?action=lostpassword"){jQuery(this).attr("href","'.site_url($getPwaOptions["pwa_rewrite_text"].'/lostpassword').'");}else {
|
| 144 |
//silent
|
| 145 |
}
|
| 146 |
});});</script>';
|
| 155 |
$getPwaOptions=get_pwa_setting_options();
|
| 156 |
$pwaActualURLAry =array
|
| 157 |
(
|
| 158 |
+
site_url('/wp-login.php'),
|
| 159 |
+
site_url('/wp-login.php/'),
|
| 160 |
+
site_url('/wp-login'),
|
| 161 |
+
site_url('/wp-login/'),
|
| 162 |
+
site_url('/wp-admin'),
|
| 163 |
+
site_url('/wp-admin/'),
|
| 164 |
);
|
| 165 |
$request_url = pwa_get_current_page_url($_SERVER);
|
| 166 |
$newUrl = explode('?',$request_url);
|
| 167 |
//print_r($pwaActualURLAry); echo $newUrl[0];exit;
|
| 168 |
if(! is_user_logged_in() && in_array($newUrl[0],$pwaActualURLAry) )
|
| 169 |
{
|
| 170 |
+
if(wp_doing_ajax() && $newUrl[0]==site_url('/wp-admin/admin-ajax.php'))
|
| 171 |
return true;
|
| 172 |
/** is forgot password link */
|
| 173 |
if( isset($_GET['login']) && isset($_GET['action']) && $_GET['action']=='rp' && $_GET['login']!='')
|
| 184 |
}
|
| 185 |
elseif(isset($_GET['action']) && isset($_GET['error']) && $_GET['action']=='lostpassword' && $_GET['error']=='invalidkey')
|
| 186 |
{
|
| 187 |
+
$redirectUrl=site_url($getPwaOptions["pwa_rewrite_text"].'/?action=lostpassword&error=invalidkey');
|
| 188 |
wp_redirect($redirectUrl,301);//exit;
|
| 189 |
}
|
| 190 |
elseif(isset($_GET['action']) && $_GET['action']=='resetpass')
|
readme.txt
CHANGED
|
@@ -1,27 +1,25 @@
|
|
| 1 |
-
=== Protect Your Admin ===
|
| 2 |
-
Contributors: wpexpertsin, india-web-developer
|
| 3 |
-
Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=ZEMSYQUZRUK6A
|
| 4 |
-
Tags: secure website, secure wordpress, protect wp admin, protection,security, wordpress protection, wordpress security, prevent hacking, hack, secure login, website security, change username, rename username, admin url, secure admin, username, protect admin, login, secure wordpress admin, admin login, admin, rename admin url
|
| 5 |
-
Requires at least: 5.0
|
| 6 |
-
Tested up to: 5.
|
| 7 |
-
Stable tag: 3.
|
| 8 |
-
|
| 9 |
-
|
| 10 |
-
|
| 11 |
-
== Description ==
|
| 12 |
-
|
| 13 |
-
|
| 14 |
-
|
| 15 |
If you run a WordPress website, you should absolutely use "protect-wp-admin" to secure it against hackers.
|
| 16 |
|
| 17 |
Protect WP-Admin fixes a glaring security hole in the WordPress community: the well-known problem of the admin panel URL.
|
| 18 |
Everyone knows where the admin panel, and this includes hackers as well.
|
| 19 |
|
| 20 |
-
|
| 21 |
-
|
| 22 |
-
Protect WP-Admin solve this problem by allowing administrator to customize their admin panel URL and blocking the default links.
|
| 23 |
|
| 24 |
-
|
| 25 |
|
| 26 |
The plugin also comes with some access filters, allowing Administrator to restrict guest and registered users access to wp-admin, just in case you want some of your editors to log in the classic way.
|
| 27 |
|
|
@@ -30,207 +28,216 @@ It is extremely important to back up your database before beginning the activate
|
|
| 30 |
|
| 31 |
https://youtu.be/Mxr2MLDNACE
|
| 32 |
|
| 33 |
-
|
| 34 |
|
| 35 |
|
| 36 |
= Features =
|
| 37 |
|
| 38 |
-
|
| 39 |
-
|
| 40 |
-
|
| 41 |
-
|
| 42 |
-
|
| 43 |
-
|
| 44 |
-
|
| 45 |
-
* Restrict registered non-admin users from wp-admin
|
| 46 |
-
* Allow admin access to non-admin users by define comma seprate multiple ids
|
| 47 |
|
| 48 |
= Add-on Features =
|
| 49 |
|
| 50 |
We have also released an add-on for Protect-WP-Admin which not only demonstrates the flexibility of Protect-WP-Admin, but also adds some important features
|
| 51 |
|
| 52 |
-
|
| 53 |
-
|
| 54 |
-
|
| 55 |
-
|
| 56 |
-
|
| 57 |
-
|
|
|
|
|
|
|
|
|
|
| 58 |
|
| 59 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
| 60 |
|
| 61 |
|
| 62 |
-
|
| 63 |
-
|
| 64 |
-
Add-on Features
|
| 65 |
-
|
| 66 |
-
https://youtu.be/sXywBe0XWy0
|
| 67 |
|
| 68 |
-
|
| 69 |
-
== Installation ==
|
| 70 |
-
In most cases you can install automatically from WordPress.
|
| 71 |
-
|
| 72 |
However, if you install this manually, follow these steps:
|
| 73 |
-
|
| 74 |
-
* Step 1. Upload "protect-wp-admin-pro" folder to the `/wp-content/plugins/` directory
|
| 75 |
-
* Step 2. Activate the plugin through the Plugins menu in WordPress
|
| 76 |
-
* Step 3. Go to Settings "Protect WP-Admin Pro" and configure the plugin settings.
|
| 77 |
-
|
| 78 |
-
== Frequently Asked Questions ==
|
| 79 |
|
| 80 |
-
|
| 81 |
-
|
| 82 |
-
|
|
|
|
|
|
|
| 83 |
|
| 84 |
-
#
|
| 85 |
-
|
| 86 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
| 87 |
|
| 88 |
#3.) I am not able to login after installation
|
| 89 |
|
| 90 |
-
|
| 91 |
-
If your permalink will be
|
| 92 |
-
|
| 93 |
-
# Can I change username of existing users ?
|
| 94 |
-
Yes, You can change username of your existing users from admin, This
|
| 95 |
-
|
| 96 |
-
# Can I set login attempt count for
|
| 97 |
-
Yes, You can set the number of
|
| 98 |
-
|
| 99 |
-
# Can I
|
| 100 |
-
Yes, You can see the login history from plugin settings page. This
|
| 101 |
-
|
| 102 |
-
|
| 103 |
-
|
| 104 |
-
|
| 105 |
-
|
| 106 |
-
|
| 107 |
-
|
| 108 |
-
|
| 109 |
-
|
| 110 |
-
|
| 111 |
-
|
| 112 |
-
RewriteRule
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 113 |
</IfModule>
|
| 114 |
-
|
| 115 |
-
|
| 116 |
-
|
| 117 |
-
|
| 118 |
-
|
| 119 |
-
|
| 120 |
-
|
| 121 |
-
== Screenshots ==
|
| 122 |
-
|
| 123 |
-
1. screenshot-1.png
|
| 124 |
-
|
| 125 |
2. screenshot-2.png
|
| 126 |
|
| 127 |
-
3. screenshot-3.png
|
| 128 |
-
|
| 129 |
-
4. screenshot-4.png
|
|
|
|
|
|
|
|
|
|
|
|
|
| 130 |
|
| 131 |
-
5. screenshot-5.png
|
| 132 |
-
|
| 133 |
-
|
| 134 |
-
|
| 135 |
== Changelog ==
|
| 136 |
|
| 137 |
-
= 3.
|
| 138 |
-
|
| 139 |
-
|
| 140 |
-
|
| 141 |
-
|
| 142 |
-
|
| 143 |
-
= 3.
|
| 144 |
-
|
| 145 |
-
|
| 146 |
-
|
| 147 |
-
= 3.
|
| 148 |
-
|
| 149 |
-
|
| 150 |
-
|
| 151 |
-
|
| 152 |
-
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 153 |
|
| 154 |
= 3.0 =
|
| 155 |
-
|
| 156 |
-
|
| 157 |
-
|
| 158 |
-
= 2.9 =
|
| 159 |
-
|
| 160 |
-
|
| 161 |
-
|
| 162 |
= 2.8 =
|
| 163 |
-
|
| 164 |
-
|
| 165 |
-
|
| 166 |
= 2.7 =
|
| 167 |
-
|
| 168 |
-
|
| 169 |
-
|
| 170 |
= 2.6 =
|
| 171 |
-
|
| 172 |
-
|
| 173 |
= 2.5 =
|
| 174 |
-
|
| 175 |
-
|
| 176 |
-
|
| 177 |
-
= 2.4 =
|
| 178 |
-
|
| 179 |
-
|
| 180 |
-
|
| 181 |
= 2.3 =
|
| 182 |
-
|
| 183 |
-
|
| 184 |
-
|
| 185 |
-
= 2.2 =
|
| 186 |
-
|
| 187 |
-
|
| 188 |
-
= 2.1 =
|
| 189 |
-
|
| 190 |
-
|
| 191 |
-
= 2.0 =
|
| 192 |
-
|
| 193 |
-
|
| 194 |
-
|
| 195 |
-
= 1.9 =
|
| 196 |
-
|
| 197 |
-
|
| 198 |
-
|
| 199 |
-
= 1.8 =
|
| 200 |
-
|
| 201 |
-
|
| 202 |
-
|
| 203 |
-
= 1.7 =
|
| 204 |
-
|
| 205 |
-
|
| 206 |
-
|
| 207 |
-
= 1.6 =
|
| 208 |
-
|
| 209 |
-
|
| 210 |
-
= 1.5 =
|
| 211 |
-
|
| 212 |
-
|
| 213 |
-
|
| 214 |
-
= 1.4 =
|
| 215 |
-
|
| 216 |
-
|
| 217 |
-
|
| 218 |
-
|
| 219 |
-
|
| 220 |
-
= 1.3 =
|
| 221 |
-
|
| 222 |
-
|
| 223 |
-
|
| 224 |
-
|
| 225 |
-
= 1.2 =
|
| 226 |
-
|
| 227 |
-
|
| 228 |
-
|
| 229 |
-
|
| 230 |
-
= 1.1 =
|
| 231 |
-
|
| 232 |
-
|
| 233 |
-
|
| 234 |
-
|
| 235 |
-
= 1.0 =
|
| 236 |
-
|
| 1 |
+
=== Protect Your Admin ===
|
| 2 |
+
Contributors: wpexpertsin, india-web-developer
|
| 3 |
+
Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=ZEMSYQUZRUK6A
|
| 4 |
+
Tags: secure website, secure wordpress, protect wp admin, protection,security, wordpress protection, wordpress security, prevent hacking, hack, secure login, website security, change username, rename username, admin url, secure admin, username, protect admin, login, secure wordpress admin, admin login, admin, rename admin url
|
| 5 |
+
Requires at least: 5.0
|
| 6 |
+
Tested up to: 5.5.1
|
| 7 |
+
Stable tag: 3.3
|
| 8 |
+
|
| 9 |
+
Give extra protection to your wordpress admin by rename default wordpress admin url i.e /wp-admin and set numbers of unsuccessful attempts. WP Protect Admin wordpress plugin will safe your site from hackers and give you extra features like (change existing user name and track user login history log) to make secure your website.
|
| 10 |
+
|
| 11 |
+
== Description ==
|
| 12 |
+
|
| 13 |
+
Give extra protection to your wordpress admin by rename default wordpress admin url i.e /wp-admin and set numbers of unsuccessful attempts. WP Protect Admin wordpress plugin will safe your site from hackers and give you extra features like (change existing user name and track user login history log) to make secure your website.
|
| 14 |
+
|
| 15 |
If you run a WordPress website, you should absolutely use "protect-wp-admin" to secure it against hackers.
|
| 16 |
|
| 17 |
Protect WP-Admin fixes a glaring security hole in the WordPress community: the well-known problem of the admin panel URL.
|
| 18 |
Everyone knows where the admin panel, and this includes hackers as well.
|
| 19 |
|
| 20 |
+
Protect WP-Admin solves this problem by allowing administrators to customize their admin panel URL and blocking the default links.
|
|
|
|
|
|
|
| 21 |
|
| 22 |
+
Administrators will be able to change default login page url "sitename.com/wp-admin" to something like "sitename.com/custom-string", so after that guest user will be redirected to the homepage.
|
| 23 |
|
| 24 |
The plugin also comes with some access filters, allowing Administrator to restrict guest and registered users access to wp-admin, just in case you want some of your editors to log in the classic way.
|
| 25 |
|
| 28 |
|
| 29 |
https://youtu.be/Mxr2MLDNACE
|
| 30 |
|
| 31 |
+
**[ Click here to download add-on ](https://www.wp-experts.in/products/protect-wp-admin-pro)**
|
| 32 |
|
| 33 |
|
| 34 |
= Features =
|
| 35 |
|
| 36 |
+
* Define custom wp-admin url(i.e http://yourdomain.com/myadmin)
|
| 37 |
+
* Define custom Logo OR change default logo on login page
|
| 38 |
+
* Define Login page background color
|
| 39 |
+
* Define Login page text color
|
| 40 |
+
* Restrict guest users for access to wp-admin
|
| 41 |
+
* Restrict registered non-admin users from wp-admin
|
| 42 |
+
* Allow admin access to non-admin users by define comma separate multiple ids
|
|
|
|
|
|
|
| 43 |
|
| 44 |
= Add-on Features =
|
| 45 |
|
| 46 |
We have also released an add-on for Protect-WP-Admin which not only demonstrates the flexibility of Protect-WP-Admin, but also adds some important features
|
| 47 |
|
| 48 |
+
* Rename wordpress wp-admin URL
|
| 49 |
+
* Enable Login Tracker
|
| 50 |
+
* Set Number of Login Attempt
|
| 51 |
+
* Change username of any existing user
|
| 52 |
+
* Define login page logo URL
|
| 53 |
+
* Manage login page style from admin
|
| 54 |
+
* Define custom redirect url for default wp-admin url
|
| 55 |
+
* Track user login history.
|
| 56 |
+
* Faster support
|
| 57 |
|
| 58 |
+
**[ Click here to download add-on](https://www.wp-experts.in/products/protect-wp-admin-pro)**
|
| 59 |
+
|
| 60 |
+
Add-on Features
|
| 61 |
+
|
| 62 |
+
https://youtu.be/sXywBe0XWy0
|
| 63 |
|
| 64 |
|
| 65 |
+
== Installation ==
|
| 66 |
+
In most cases you can install automatically from WordPress.
|
|
|
|
|
|
|
|
|
|
| 67 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 68 |
However, if you install this manually, follow these steps:
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 69 |
|
| 70 |
+
* Step 1. Upload "protect-wp-admin-pro" folder to the `/wp-content/plugins/` directory
|
| 71 |
+
* Step 2. Activate the plugin through the Plugins menu in WordPress
|
| 72 |
+
* Step 3. Go to Settings "Protect WP-Admin Pro" and configure the plugin settings.
|
| 73 |
+
|
| 74 |
+
== Frequently Asked Questions ==
|
| 75 |
|
| 76 |
+
#1.) Nothing happens after enabling and adding the new wordpress admin url?
|
| 77 |
+
|
| 78 |
+
Don't worry, Just update the site permalink ("Settings" >> "Permalinks") and re-check,Now this time it will be work fine
|
| 79 |
+
|
| 80 |
+
#2.) Not able to login into admin after enabling the plugin?
|
| 81 |
+
|
| 82 |
+
The issue can come when you do not give proper writable permission on htaccess file OR you have not update permalink settings to SEO friendly url from admin. You can access the login page url with default wp-admin slug after disable my plugin, you can disable plugin through FTP by rename protect-wp-admin folder to any other one.
|
| 83 |
|
| 84 |
#3.) I am not able to login after installation
|
| 85 |
|
| 86 |
+
Basically issues can come only in case when you will use default permalink settings.
|
| 87 |
+
If your permalink will be updated to any other option except default (Plain) then it will work fine. Feel free to contact us over email raghunath.0087@gmail.com for any query
|
| 88 |
+
|
| 89 |
+
#4 Can I change the username of existing users ?
|
| 90 |
+
Yes, You can change the username of your existing users from admin, This feature is available in our addon.
|
| 91 |
+
|
| 92 |
+
#5 Can I set a login attempt count for unsuccessful attempts?
|
| 93 |
+
Yes, You can set the number of unsuccessful attempts, This feature is available in our addon.
|
| 94 |
+
|
| 95 |
+
#6 Can I access the login history of users from admin using this plugin?
|
| 96 |
+
Yes, You can see the login history from the plugin settings page. This feature is available in our addon.
|
| 97 |
+
|
| 98 |
+
#7 Is there any option to set the number of login attempts?
|
| 99 |
+
* Yes, there is an option in pro addon not in free version. please browse https://www.wp-experts.in/products/protect-wp-admin-pro this url for purchase to pro addon.
|
| 100 |
+
|
| 101 |
+
#8 Getting 404 page with a new admin url, How I can fix it?
|
| 102 |
+
404 issue can come due to htaccess permission issue, You can use below sample code to add it manually in site root htaccess file
|
| 103 |
+
|
| 104 |
+
<IfModule mod_rewrite.c>
|
| 105 |
+
RewriteEngine On
|
| 106 |
+
RewriteBase /
|
| 107 |
+
RewriteRule ^index\.php$ - [L]
|
| 108 |
+
RewriteRule ^myadmin/?$ /wp-login.php [QSA,L]
|
| 109 |
+
RewriteRule ^myadmin/register/?$ /wp-login.php?action=register [QSA,L]
|
| 110 |
+
RewriteRule ^myadmin/lostpassword/?$ /wp-login.php?action=lostpassword [QSA,L]
|
| 111 |
+
RewriteCond %{REQUEST_FILENAME} !-f
|
| 112 |
+
RewriteCond %{REQUEST_FILENAME} !-d
|
| 113 |
+
RewriteRule . /index.php [L]
|
| 114 |
</IfModule>
|
| 115 |
+
|
| 116 |
+
Here we are using new admin slug as "myadmin" so as per your new admin slug you will require update this value
|
| 117 |
+
|
| 118 |
+
== Screenshots ==
|
| 119 |
+
|
| 120 |
+
1. screenshot-1.png
|
| 121 |
+
|
|
|
|
|
|
|
|
|
|
|
|
|
| 122 |
2. screenshot-2.png
|
| 123 |
|
| 124 |
+
3. screenshot-3.png
|
| 125 |
+
|
| 126 |
+
4. screenshot-4.png
|
| 127 |
+
|
| 128 |
+
5. screenshot-5.png
|
| 129 |
+
|
| 130 |
+
|
| 131 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 132 |
== Changelog ==
|
| 133 |
|
| 134 |
+
= 3.3 =
|
| 135 |
+
* Tested with new wordpress version 5.4.2
|
| 136 |
+
* Fixed new admin url page not found issue when you setup wordpress in subdirectory.
|
| 137 |
+
* Optimized code
|
| 138 |
+
* Released add-on new version 2.0
|
| 139 |
+
|
| 140 |
+
= 3.2 =
|
| 141 |
+
* Tested with new wordpress version 5.4.1
|
| 142 |
+
* Fixed notice error
|
| 143 |
+
|
| 144 |
+
= 3.1 =
|
| 145 |
+
* Tested with new wordpress version 5.4
|
| 146 |
+
* Added text color option
|
| 147 |
+
* Fixed DOING_AJAX notice error
|
| 148 |
+
* Released addon new version 1.9
|
| 149 |
+
|
| 150 |
+
= 3.0.3 =
|
| 151 |
+
* Tested with new wordpress version 5.0.2
|
| 152 |
+
* Fixed some minor issues
|
| 153 |
+
|
| 154 |
+
= 3.0.2 =
|
| 155 |
+
* Tested with new wordpress version 4.9.8
|
| 156 |
+
* Fixed some minor issues
|
| 157 |
+
|
| 158 |
+
= 3.0.1 =
|
| 159 |
+
* Fixed admin access issues
|
| 160 |
|
| 161 |
= 3.0 =
|
| 162 |
+
* Tested with new wordpress version 4.9.7
|
| 163 |
+
* Optimized code of the plugin
|
| 164 |
+
|
| 165 |
+
= 2.9 =
|
| 166 |
+
* Tested with new wordpress version 4.9.4
|
| 167 |
+
* Fixed getimagesize() function issue for HTTPS urls
|
| 168 |
+
|
| 169 |
= 2.8 =
|
| 170 |
+
* Tested with new wordpress version 4.8.1
|
| 171 |
+
* Added upload image lightbox and color picker
|
| 172 |
+
|
| 173 |
= 2.7 =
|
| 174 |
+
* Tested with new wordpress version 4.8.1
|
| 175 |
+
* Added upload image lightbox and color picker
|
| 176 |
+
|
| 177 |
= 2.6 =
|
| 178 |
+
* Tested with new wordpress version 4.8
|
| 179 |
+
|
| 180 |
= 2.5 =
|
| 181 |
+
* Fixed links issues on login, forget and register page for all language
|
| 182 |
+
* Fixed access the wp login page using new admin slug even admin is already logged in
|
| 183 |
+
|
| 184 |
+
= 2.4 =
|
| 185 |
+
* Tested with new wordpress version 4.7
|
| 186 |
+
* Fixed images logo image notice error issue.
|
| 187 |
+
|
| 188 |
= 2.3 =
|
| 189 |
+
* Tested with new wordpress version 4.6.1
|
| 190 |
+
* Fixed images size logo issue
|
| 191 |
+
* Modify code for redirect user to new admin url
|
| 192 |
+
= 2.2 =
|
| 193 |
+
* Tested with new wordpress version 4.5.3
|
| 194 |
+
* Optimized plugin code
|
| 195 |
+
= 2.1 =
|
| 196 |
+
* Tested with new wordpress version 4.5.2
|
| 197 |
+
|
| 198 |
+
= 2.0 =
|
| 199 |
+
* Tested with new wordpress version 4.5
|
| 200 |
+
* Removed localhost permission related conditions.
|
| 201 |
+
|
| 202 |
+
= 1.9 =
|
| 203 |
+
* Fixed htaccess writable notice popup related issues on localhost
|
| 204 |
+
* Add an new confirmation alert before enable plugin
|
| 205 |
+
|
| 206 |
+
= 1.8 =
|
| 207 |
+
* Fixed Login Failure issue
|
| 208 |
+
* Released Pro Addon
|
| 209 |
+
|
| 210 |
+
= 1.7 =
|
| 211 |
+
* Fixed forget password email issue
|
| 212 |
+
* Fixed forgot password link issue on login error page
|
| 213 |
+
|
| 214 |
+
= 1.6 =
|
| 215 |
+
* Fixed wp-login.php issue for www url
|
| 216 |
+
|
| 217 |
+
= 1.5 =
|
| 218 |
+
* Fixed wp-login url issue
|
| 219 |
+
* Fixed wp-admin url issue
|
| 220 |
+
|
| 221 |
+
= 1.4 =
|
| 222 |
+
* Fixed links issue on "Register", "Login" & "Lost Password" As Per New Admin Url
|
| 223 |
+
* Fixed the "Register", "Login" & "Lost Password" Form Action URL As Per New Admin Url
|
| 224 |
+
* Add validation to check SEO friendly url enable or not.
|
| 225 |
+
* Add validation to check whether the .htaccess file is writable or not.
|
| 226 |
+
|
| 227 |
+
= 1.3 =
|
| 228 |
+
* Added an option for define to admin login page logo
|
| 229 |
+
* Added an option for define to wp-login page background-color
|
| 230 |
+
* Fixed some minor css issues
|
| 231 |
+
|
| 232 |
+
= 1.2 =
|
| 233 |
+
* Added new option for allow admin access to non-admin users
|
| 234 |
+
* Added condition for check permalink is updated or not
|
| 235 |
+
* Fixed a minor issues (logout issues after add/update admin new url)
|
| 236 |
+
|
| 237 |
+
= 1.1 =
|
| 238 |
+
* Add new option for restrict registered users from wp-admin
|
| 239 |
+
* Fixed permalink update issue after add/update admin new url. Now no need to update your permalink
|
| 240 |
+
* Add option for redirect user to new admin url after update the new admin url
|
| 241 |
+
|
| 242 |
+
= 1.0 =
|
| 243 |
+
* First stable release
|
