PHPackages bueltge/authenticator - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. bueltge/authenticator ActiveWordpress-plugin[Authentication & Authorization](/categories/authentication) bueltge/authenticator ===================== This plugin allows you to make your WordPress site accessible to logged in users only. 1.3.1(3y ago)2446[4 issues](https://github.com/bueltge/authenticator/issues)GPL-3.0-or-laterPHPPHP >=5.2.4 Since Aug 10Pushed 3y ago7 watchersCompare [ Source](https://github.com/bueltge/authenticator)[ Packagist](https://packagist.org/packages/bueltge/authenticator)[ RSS](/packages/bueltge-authenticator/feed)WikiDiscussions master Synced today READMEChangelogDependencies (1)Versions (6)Used By (0) Authenticator ============= [](#authenticator) This plugin allows you to make your WordPress site accessible to logged in users only. Description ----------- [](#description) This plugin allows you to make your WordPress site accessible to logged in users only. In other words, to view your site they have to create or have an account on your site and be logged in. No configuration necessary, simply activating - that's all. ### Made by [Inpsyde](https://inpsyde.com) · We love WordPress [](#made-by-inpsyde--we-love-wordpress) Installation ------------ [](#installation) ### Requirements [](#requirements) - WordPress version 5.0 and later. - PHP 5.6 and later. - Single or Multisite installation. On PHP-CGI setups: - `mod_setenvif` or `mod_rewrite` (if you want to user HTTP authentication for feeds). ### Installation [](#installation-1) 1. Unzip the downloaded package. 2. Upload folder include the file to the `/wp-content/plugins/` directory. 3. Activate the plugin through the `Plugins` menu in WordPress. Or use the installer via the back end of WordPress. ### On PHP-CGI setups [](#on-php-cgi-setups) If you want to use HTTP authentication for feeds (available since 1.1.0 as an *optional* feature) you have to update your `.htaccess` file. If [mod\_setenvif](http://httpd.apache.org/docs/2.0/mod/mod_setenvif.html) is available, add the following line to your `.htaccess`: ``` SetEnvIfNoCase ^Authorization$ "(.+)" HTTP_AUTHORIZATION=$1 ``` Otherwise you need [mod\_rewrite](http://httpd.apache.org/docs/current/mod/mod_rewrite.html) to be enabled. In this case you have to add the following line to your `.htaccess`: ``` RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] ``` In a typical WordPress `.htaccess` it all looks like: ``` RewriteEngine On RewriteBase / RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] RewriteRule . /index.php [L] ``` On a multisite installation: ``` # BEGIN WordPress RewriteEngine On RewriteBase / RewriteRule ^index\.php$ - [L] # uploaded files RewriteRule ^files/(.+) wp-includes/ms-files.php?file=$1 [L] RewriteCond %{REQUEST_FILENAME} -f [OR] RewriteCond %{REQUEST_FILENAME} -d RewriteRule ^ - [L] RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] RewriteRule . index.php [L] # END WordPress ``` Settings -------- [](#settings) You can change the settings of Authenticator in Settings → Reading. The settings refer to the behavior of your blog's feeds. They can be protected by HTTP authentication (not all feed readers support this) or by an authentication token which is added to your feed URL as a parameter. The third option is to keep everything in place. So feed URLs will be redirected to the login page if the user is not logged in (send no auth-cookie). If you using token authentication, you can show the token to the blog users on their profile settings page by setting this option. ### HTTP Auth [](#http-auth) Users can gain access to the feed with their username and password. ### Token Auth [](#token-auth) The plugin will generate a token automatically when choosing this option. Copy this token and share it with the people who should have access to your feed. If your token is `ef05aa961a0c10dce006284213727730` the feed URLs look like so: ``` # Main feed https://example.com/feed/?ef05aa961a0c10dce006284213727730 # Main comment feed https://example.com/comments/feed/?ef05aa961a0c10dce006284213727730 # Without permalinks https://example.com/?feed=rss2&ef05aa961a0c10dce006284213727730 ``` Screenshots ----------- [](#screenshots) 1. Authenticator's setting options at Settings → Reading. [![Screenshot of setting options at Settings → Reading](./assets/screenshot-1.png)](./assets/screenshot-1.png) 2. Auth token for feeds is displayed on the users profile settings page. [![Screenshot of Auth token for feeds is displayed on the users profile settings page](./assets/screenshot-2.png)](./assets/screenshot-2.png) API --- [](#api) ### Filters [](#filters) - `authenticator_get_options` gives you access to the current authentication token: ``` $authenticator_options = apply_filters( 'authenticator_get_options', array() ); ``` - `authenticator_bypass` gives you the possibility to completely bypass the authentication. No authentication will be required then. ``` add_filter( 'authenticator_bypass', '__return_true' ); ``` - `authenticator_bypass_feed_auth` gives you the possibility to open the feeds for everyone. No authentication will be required then. ``` add_filter( 'authenticator_bypass_feed_auth', '__return_true' ); ``` - `authenticator_exclude_pagenows` Pass an array of `$GLOBALS[ 'pagenow' ]` values to it, to exclude several WordPress pages from redirecting to the login page. - `authenticator_exclude_ajax_actions` AJAX-Actions (independend of `_nopriv`) which should not be authenticated (remain open for everyone) - `authenticator_exclude_posts` List of post-titles which should remain public, like the follow example source to public the 'Contact'-page. ``` add_action( 'plugins_loaded', function() { add_filter( 'authenticator_exclude_posts', function( $titles ) { $titles[] = 'Contact'; // here goes the post-title of the post/page you want to exclude return $titles; } ); } ); ``` Other Notes ----------- [](#other-notes) ### Bugs, technical hints or contribute [](#bugs-technical-hints-or-contribute) Please give me feedback, contribute and file technical bugs on [GitHub Repo](https://github.com/bueltge/authenticator). ### Authors, Contributors [](#authors-contributors) [Contributors Stats](https://github.com/bueltge/Authenticator/graphs/contributors) ### License [](#license) Good news, this plugin is free for everyone! Since it's released under the [GPL](./license.txt), you can use it free of charge on your personal or commercial blog. ### Translations [](#translations) The plugin comes with various translations, please refer to the [WordPress Codex](https://codex.wordpress.org/Installing_WordPress_in_Your_Language) for more information about activating the translation. If you want to help to translate the plugin to your language, please have a look at the [wordpress.org page](https://wordpress.org/plugins/authenticator/), that have a helpful management to contribute to the translations. Change Log ---------- [](#change-log) See [commits](https://github.com/bueltge/Authenticator/commits/master) or read the short [version](https://wordpress.org/plugins/authenticator/#developers) ### Health Score 30 — LowBetter than 65% of packages Maintenance17 Infrequent updates — may be unmaintained Popularity15 Limited adoption so far Community18 Small or concentrated contributor base Maturity62 Established project with proven stability Bus Factor1 Top contributor holds 58.8% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~643 days Total 4 Last Release 1263d ago PHP version history (2 changes)1.2.2PHP >5.2.4 1.3.1PHP >=5.2.4 ### Community Maintainers ![](https://www.gravatar.com/avatar/0fa321f6c73e14c16d4aea0276673ce1e5d001e49062e32f3b8dc91f0ed10c1e?d=identicon)[bueltge](/maintainers/bueltge) --- Top Contributors [![bueltge](https://avatars.githubusercontent.com/u/133425?v=4)](https://github.com/bueltge "bueltge (90 commits)")[![dnaber-de](https://avatars.githubusercontent.com/u/1133205?v=4)](https://github.com/dnaber-de "dnaber-de (54 commits)")[![GaryJones](https://avatars.githubusercontent.com/u/88371?v=4)](https://github.com/GaryJones "GaryJones (4 commits)")[![websupporter](https://avatars.githubusercontent.com/u/6458412?v=4)](https://github.com/websupporter "websupporter (3 commits)")[![steffenster](https://avatars.githubusercontent.com/u/5174030?v=4)](https://github.com/steffenster "steffenster (2 commits)") --- Tags authentificationmemberspluginwordpress ### Embed Badge ![Health badge](/badges/bueltge-authenticator/health.svg) ``` [![Health](https://phpackages.com/badges/bueltge-authenticator/health.svg)](https://phpackages.com/packages/bueltge-authenticator) ``` ### Alternatives [markstory/acl_extras Additional tools for managing DB ACL in CakePHP applications. 155311.0k](/packages/markstory-acl-extras)[rainlab/user-plugin User plugin for October CMS 11954.3k13](/packages/rainlab-user-plugin)[stuttter/wp-user-signups The best way to manage user & site sign-ups in WordPress 46208.9k3](/packages/stuttter-wp-user-signups)[winter/wn-user-plugin User plugin for Winter CMS 1233.5k13](/packages/winter-wn-user-plugin)[rainlab/userplus-plugin User plus plugin for October CMS 168.8k2](/packages/rainlab-userplus-plugin) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)