This plugin allows you to make your WordPress site accessible to logged in users only. In other words, to view your site they have to create or have an account on your site and be logged in. No configuration necessary, simply activating - that's all.<\/p>\n\n
The team at Inpsyde<\/a> is engineering the web and WordPress since 2006.<\/p>\n\n You want to donate - we prefer a positive review, not more.<\/p>\n\n Please give me feedback, contribute and file technical bugs on GitHub Repo<\/a>.<\/p>\n\n Good news, this plugin is free for everyone! Since it's released under the GPL, you can use it free of charge on your personal or commercial blog. But if you enjoy this plugin, you can thank me and leave a small donation<\/a> for the time I've spent writing and supporting this plugin. And I really don't want to know how many hours of my life this plugin has already eaten ;)<\/p>\n\n The plugin comes with various translations, please refer to the WordPress Codex<\/a> for more information about activating the translation. If you want to help to translate the plugin to your language, please have a look at the translation possibility in this page here<\/a>.<\/p>\n\n You want to donate - we prefer a positive review, not more.<\/p>\n\n\n On PHP-CGI setups:\n - or use the installer via the back end of WordPress.<\/p>\n\n If you want to use HTTP authentication for feeds (available since 1.1.0 as an optional<\/em> feature) you have to update your Otherwise you need mod_rewrite<\/a> to be enabled. In this case you have to add the following line to your In a typical WordPress On a multisite installation:<\/p>\n\n You can change the settings of Authenticator in Settings \u2192 Reading. The settings refer to the behavior of your blog's feeds. They can be protected by HTTP authentication (not all feed readers support this) or by an authentication token which is added to your feed URL as a parameter. The third option is to keep everything in place. So feed URLs will be redirected to the login page if the user is not logged in (send no auth-cookie).<\/p>\n\n If you using token authentication, you can show the token to the blog users on their profile settings page by setting this option.<\/p>\n\n Users can gain access to the feed with their username and password.<\/p>\n\n The plugin will generate a token automatically when choosing this option. Copy this token and share it with the people who should have access to your feed. If your token is Filters<\/strong><\/p>\n\n <?php\n$authenticator_options = apply_filters( 'authenticator_get_options', array() );<\/p><\/li>\n <?php\nadd_filter( 'authenticator_bypass', '__return_true' );<\/p><\/li>\n <?php\nadd_filter( 'authenticator_bypass_feed_auth', '__return_true' );<\/p><\/li>\nDonation?<\/h4>\n\n
Bugs, technical hints or contribute<\/h4>\n\n
License<\/h4>\n\n
Translations<\/h4>\n\n
Donation?<\/h4>\n\n
Requirements<\/h4>\n\n
\n
mod_setenvif<\/code> or mod_rewrite<\/code> (if you want to user HTTP authentication for feeds).<\/p>\n\nInstallation<\/h4>\n\n
\n
\/wp-content\/plugins\/<\/code> directory.<\/li>\nPlugins<\/code> menu in WordPress.<\/li>\n<\/ol>\n\nOn PHP-CGI setups<\/h4>\n\n
.htaccess<\/code> file. If mod_setenvif<\/a> is available, add the following line to your .htaccess<\/code>:<\/p>\n\nSetEnvIfNoCase ^Authorization$ \"(.+)\" HTTP_AUTHORIZATION=$1\n<\/code><\/pre>\n\n.htaccess<\/code>:<\/p>\n\nRewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]\n<\/code><\/pre>\n\n.htaccess<\/code> it all looks like:<\/p>\n\n<IfModule mod_rewrite.c>\n RewriteEngine On\n RewriteBase \/\n RewriteRule ^index\\.php$ - [L]\n RewriteCond %{REQUEST_FILENAME} !-f\n RewriteCond %{REQUEST_FILENAME} !-d\n RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]\n RewriteRule . \/index.php [L]\n<\/IfModule>\n<\/code><\/pre>\n\n# BEGIN WordPress\nRewriteEngine On\nRewriteBase \/\nRewriteRule ^index\\.php$ - [L]\n\n# uploaded files\nRewriteRule ^files\/(.+) wp-includes\/ms-files.php?file=$1 [L]\n\nRewriteCond %{REQUEST_FILENAME} -f [OR]\nRewriteCond %{REQUEST_FILENAME} -d\nRewriteRule ^ - [L]\n\nRewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]\nRewriteRule . index.php [L]\n# END WordPress\n<\/code><\/pre>\n\nSettings<\/h4>\n\n
HTTP Auth<\/h4>\n\n
Token Auth<\/h4>\n\n
ef05aa961a0c10dce006284213727730<\/code> the feed URLs look like so:<\/p>\n\n# Main feed\nhttps:\/\/example.com\/feed\/?ef05aa961a0c10dce006284213727730\n\n# Main comment feed\nhttps:\/\/example.com\/comments\/feed\/?ef05aa961a0c10dce006284213727730\n\n# Without permalinks\nhttps:\/\/example.com\/?feed=rss2&ef05aa961a0c10dce006284213727730\n<\/code><\/pre>\n\nAPI<\/h4>\n\n
\n
authenticator_get_options<\/code> gives you access to the current authentication token:<\/p>\n\nauthenticator_bypass<\/code> gives you the possibility to completely bypass the authentication. No authentication will be required then.<\/p>\n\nauthenticator_bypass_feed_auth<\/code> gives you the possibility to open the feeds for everyone. No authentication will be required then.<\/p>\n\nauthenticator_exclude_pagenows<\/code> Pass an array of $GLOBALS[ 'pagenow' ]<\/code> values to it, to exclude several WordPress pages from redirecting to the login page.<\/p><\/li>\nauthenticator_exclude_ajax_actions<\/code> AJAX-Actions (independend of _nopriv<\/code>) which should not be authenticated (remain open for everyone)<\/p><\/li>\nauthenticator_exclude_posts<\/code> List of post-titles which should remain public, like the follow example source to public the 'Contact'-page.<\/p>\n\n<?php\nadd_action( 'plugins_loaded', function() {\n add_filter( 'authenticator_exclude_posts', function( $titles ) {\n $titles[] = 'Contact'; \/\/ here goes the post-title of the post\/page you want to exclude\n return $titles;\n } );\n} );\n<\/code><\/pre><\/li>\n<\/ul>\n\n\n1.3.1 (2022-11-22)<\/h4>\n\n
\n
1.3.0 (2017-11-30)<\/h4>\n\n
\n
authenticator_bypass<\/code>, see the readme.<\/li>\n1.2.3 (08\/10\/2017)<\/h4>\n\n
\n
1.2.2 (08\/10\/2017)<\/h4>\n\n
\n
1.2.1 (08\/31\/2014)<\/h4>\n\n
\n
XMLRPC_REQUEST<\/code>.<\/li>\n1.2.0 (06\/26\/2014)<\/h4>\n\n
\n
$reauth<\/code> for redirect #11<\/a>.<\/li>\n1.1.0 (04\/17\/2014)<\/h4>\n\n
\n
1.0.0 (01\/20\/2012)<\/h4>\n\n
\n
0.4.1 (04\/20\/2011)<\/h4>\n\n
\n
0.4.0 (04\/11\/2011)<\/h4>\n\n
\n
0.3.0 (04\/06\/2011)<\/h4>\n\n
\n