Context Navigation

← Previous Changeset
Next Changeset →

Changeset 1646940

Timestamp:

04/27/2017 10:11:53 PM (9 years ago)

Author:

abjelosevic

Message:

Added custom submenu in settings menu, for user selection and screenshot-1.png

Location:

ab-wp-security

Files:

: 4 added
: 2 edited

assets/screenshot-1.png (added)
tags/1.30 (added)
tags/1.30/ab-wp-security-plugin.php (added)
tags/1.30/readme.txt (added)
trunk/ab-wp-security-plugin.php (modified) (3 diffs)
trunk/readme.txt (modified) (3 diffs)

Legend:

: Unmodified
: Added
: Removed

ab-wp-security/trunk/ab-wp-security-plugin.php

-                      r1646091
+                      r1646940
    Plugin Name: AB WP Security
    Plugin URI: http://aleksandar.bjelosevic.info/abwps
    Description: Security plugin that stop User Enumeration in WordPress
    Version: 1.20
+   Description: Security plugin that stop User Enumeration in WordPress, Disable XML-RPC and Remove WordPress Version Number
+   Version: 1.30
    Author: Aleksandar Bjelosevic
    Author URI: http://aleksandar.bjelosevic.info
 …
    */
+function ab_wp_security_menu_item()
+{
+  add_submenu_page("options-general.php", "AB WP Security", "AB WP Security", "manage_options", "abwps", "abwpstools_page");
+}
+//create page
+function abwpstools_page()
+{
+  ?>
+      <div class="wrap">
+         <!-- Add the icon to the page -->
+        <div id="icon-themes" class="icon32"></div>
+         <h2>AB WP Security</h2>
+         <!-- Make a call to the WordPress function for rendering errors when settings are saved. -->
+        <?php settings_errors(); ?>
+        <!-- Create the form that will be used to render our options -->
+         <form method="post" action="options.php">
+            <?php
+               settings_fields("section");
+               do_settings_sections("abwps");
+               submit_button();
+            ?>
+         </form>
+      </div>
+   <?php
+}
+function abwps_settings()
+{
+    add_settings_section("section", "Settings", null, "abwps");
+    add_settings_field("ab-wp-security-userenumeration", "Stop User Enumeration in WordPress", "abwps_userenumeration_display", "abwps", "section");
+    add_settings_field("ab-wp-security-wp-version", "Remove WordPress Version Number", "abwps_wpversion_display", "abwps", "section");
+    add_settings_field("ab-wp-security-xml-rpc", "Disable XML-RPC", "abwps_xmlrpc_display", "abwps", "section");
+    register_setting("section", "ab-wp-security-user-enumeration");
+    register_setting("section", "ab-wp-security-wp-version");
+    register_setting("section", "ab-wp-security-xml-rpc");
+}
+function abwps_userenumeration_display()
+{
+   ?>
+        <input type="checkbox" name="ab-wp-security-user-enumeration" value="1" <?php checked(1, get_option('ab-wp-security-user-enumeration'), true); ?>>
+   <?php
+}
+function abwps_wpversion_display()
+{
+   ?>
+        <input type="checkbox" name="ab-wp-security-wp-version" value="1" <?php checked(1, get_option('ab-wp-security-wp-version'), true); ?>>
+   <?php
+}
+function abwps_xmlrpc_display()
+{
+   ?>
+         <input type="checkbox" name="ab-wp-security-xml-rpc" value="1" <?php checked(1, get_option('ab-wp-security-xml-rpc'), true); ?>>
+   <?php
+}
 // block WP enum scans
+if (!is_admin()) {
+    // default URL format
+    if (preg_match('/author=([0-9]*)/i', $_SERVER['QUERY_STRING'])) die();
+    add_filter('redirect_canonical', 'abwp_check_enum', 10, 2);
+}
 function abwp_check_enum($redirect, $request) {
     // permalink URL format
 …
+}
+// Remove WordPress Version Number
+function ab_wp_security_remove_version() {
+return '';
+function ab_wp_security_clean() {
+    // Remove WordPress Version Number
+        if (get_option('ab-wp-security-wp-version'))
+           {
+           add_filter('the_generator', '');
+           }
+        // disable xmlrpc in WordPress
+       if (get_option('ab-wp-security-xml-rpc'))
+           {
+            add_filter('xmlrpc_enabled', '__return_false');
+           }
+       if (get_option('ab-wp-security-user-enumeration'))
+           {
+            if (!is_admin()) {
+    // default URL format
+    if (preg_match('/author=([0-9]*)/i', $_SERVER['QUERY_STRING'])) die();
+    add_filter('redirect_canonical', 'abwp_check_enum', 10, 2);
+}
+           }
+}
+add_filter('the_generator', 'ab_wp_security_remove_version');
+add_filter('xmlrpc_enabled', '__return_false');
+add_action("admin_menu", "ab_wp_security_menu_item");
+add_action("admin_init", "abwps_settings");
+add_action('init', 'ab_wp_security_clean');
 ?>

ab-wp-security/trunk/readme.txt

-                      r1646092
+                      r1646940
 Requires at least: 3.8
 Tested up to: 4.7.4
 Stable tag: 1.20
+Stable tag: 1.30
 License: GPLv3
 License URI: http://www.gnu.org/licenses/gpl.html
 …
 == Changelog ==
+= V1.30 =
+Added custom submenu in settings menu, for user selection
 = V1.20 =
 Disable XML-RPC
 …
 == Screenshots ==
+. Settings->AB WP Security page
 == Frequently Asked Questions ==

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 1646940

Legend:

ab-wp-security/trunk/ab-wp-security-plugin.php

ab-wp-security/trunk/readme.txt

Download in other formats: