跳至主要內容
WordPress.org

Taiwan 正體中文

  • 佈景主題目錄
  • 外掛目錄
  • 最新消息
  • 技術支援
  • 關於我們
  • 團隊
  • 取得 WordPress
取得 WordPress
WordPress.org

Plugin Directory

Adminvoro Toolkit – Login, Redirects & Site Controls

  • 提交外掛
  • 我的最愛
  • 登入
  • 提交外掛
  • 我的最愛
  • 登入

Adminvoro Toolkit – Login, Redirects & Site Controls

由 Nexiby LLC 開發
下載
  • 詳細資料
  • 使用者評論
  • 安裝方式
  • 開發資訊
技術支援

外掛說明

Adminvoro Toolkit brings several practical WordPress administration tools into one lightweight settings screen.

Use it to create a custom login URL, personalize the login page, manage simple redirects, apply basic security hardening, disable optional WordPress assets, and replace the default admin footer text.

Custom Login URL

  • Replace the public WordPress login address with a custom login slug.
  • Block direct logged-out access to wp-login.php and protected wp-admin requests.
  • Choose what happens when the default login URL is visited: show a 404 response, redirect to the homepage, or redirect to a same-site page.
  • Keep generated WordPress login links pointed to the custom login address.
  • Recover access at any time with the ADMINVORO_DISABLE_CUSTOM_LOGIN constant.

Login Page Branding

  • Select a custom login logo from the WordPress Media Library.
  • Change the URL opened when the login logo is clicked.
  • Add formatted helper text below the logo.
  • Customize the login background, outside text, and outside link colors.
  • Control the size of the custom login message.
  • Reset login branding settings to their defaults.

Redirect Manager

  • Create and manage simple frontend redirects.
  • Choose permanent 301 or temporary 302 redirects.
  • Enable, disable, or delete individual redirect rules.
  • Use root-relative paths or valid absolute HTTP(S) URLs.
  • Skip invalid, incomplete, duplicate, and self-looping redirect rules.
  • Avoid redirect processing for WordPress admin, AJAX, cron, and REST requests.

Adminvoro uses WordPress safe redirect handling. Redirects to another domain work only when that destination host is permitted by WordPress.

Basic Security Controls

  • Disable XML-RPC requests and remove the X-Pingback response header.
  • Reduce logged-out user enumeration through author requests and public REST API user endpoints.
  • Remove WordPress generator output and the core version query string from matching script and stylesheet URLs.

These controls provide basic hardening only. Adminvoro Toolkit is not a firewall, malware scanner, backup solution, or replacement for a complete WordPress security service.

Performance Tweaks

  • Remove WordPress emoji scripts, styles, filters, TinyMCE support, and related DNS prefetch hints.
  • Remove frontend oEmbed discovery output and dequeue the wp-embed script.

Admin Branding

  • Replace the default WordPress admin footer text with your own message.
  • Use basic permitted HTML formatting in the custom footer text.

Lightweight and Focused

Adminvoro Toolkit is intended for administrators who want a focused collection of common site controls without installing a separate plugin for every small customization.

All plugin data is removed when the plugin is deleted through WordPress.

螢幕擷圖

Adminvoro Toolkit settings dashboard and navigation.
Adminvoro Toolkit settings dashboard and navigation.
Custom login URL controls and recovery information.
Custom login URL controls and recovery information.
Redirect manager with 301 and 302 rule controls.
Redirect manager with 301 and 302 rule controls.
Basic security settings for XML-RPC, user enumeration, and WordPress version output.
Basic security settings for XML-RPC, user enumeration, and WordPress version output.
Performance settings for emojis and embeds.
Performance settings for emojis and embeds.
Custom WordPress admin footer branding.
Custom WordPress admin footer branding.

安裝方式

  1. In WordPress, go to Plugins > Add New Plugin.
  2. Search for Adminvoro Toolkit, or upload the plugin ZIP file.
  3. Install and activate the plugin.
  4. Open Adminvoro Toolkit from the WordPress admin menu.
  5. Configure only the features you want to enable.

Before enabling a custom login URL, save the new login address somewhere secure.

常見問題集

How do I recover access if I forget or incorrectly configure the custom login URL?

Open your site’s wp-config.php file and add the following line above the comment that says WordPress editing should stop:

define( 'ADMINVORO_DISABLE_CUSTOM_LOGIN', true );

You can then sign in through the standard wp-login.php address. After correcting the plugin settings, remove the constant or change its value to false.

What happens to wp-login.php after I enable a custom login URL?

For logged-out visitors, direct requests to wp-login.php are handled using the action you selected: a 404 response, a homepage redirect, or a redirect to a same-site page. Logged-in users are not blocked.

Does the custom login URL replace two-factor authentication or limit login attempts?

No. Changing the public login address can reduce automated requests to the default endpoint, but it is not a substitute for strong passwords, two-factor authentication, login rate limiting, updates, backups, or a complete security solution.

Can I redirect visitors to another website?

Adminvoro accepts valid absolute HTTP(S) destination URLs, but it uses WordPress safe redirect handling. An off-site redirect will work only when WordPress allows that destination host. Same-site and root-relative destinations are the most reliable options.

Can I create both 301 and 302 redirects?

Yes. Choose 301 for a permanent redirect or 302 for a temporary redirect. Adminvoro also prevents a rule from redirecting a URL directly back to itself.

Will redirects run inside wp-admin or affect REST API requests?

No. Redirect rules are intended for normal frontend requests and are skipped for WordPress admin, AJAX, cron, and REST request contexts.

What does the user enumeration option block?

For logged-out visitors, it blocks common numeric author queries, author archive discovery, and public WordPress REST API user endpoints. It does not hide every possible place where a username may appear in site content, feeds, themes, or other plugins.

Does disabling XML-RPC affect other services?

It can. Applications or services that depend on XML-RPC, remote publishing, pingbacks, or XML-RPC authentication may stop working. Enable this option only when your site does not need those features.

Will disabling embeds remove existing embedded content?

The option removes WordPress frontend oEmbed discovery output and the wp-embed script. Content behavior can vary by block, theme, plugin, and embed provider, so test important embedded content after enabling it.

Does Adminvoro Toolkit collect data or connect to an external service?

No. The plugin does not include a telemetry, tracking, or external API service. Its settings are stored in your WordPress database.

What happens to the settings when I delete the plugin?

When Adminvoro Toolkit is deleted through the WordPress Plugins screen, its saved settings and redirect rules are removed from the database.

Does it support WordPress Multisite?

The plugin can be used on individual sites in a multisite installation. Settings are stored per site. Test custom login behavior carefully in a staging multisite environment before using it across a network.

使用者評論

這個外掛目前沒有任何使用者評論。

參與者及開發者

以下人員參與了開源軟體〈Adminvoro Toolkit – Login, Redirects & Site Controls〉的開發相關工作。

參與者
  • Nexiby LLC

將〈Adminvoro Toolkit – Login, Redirects & Site Controls〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄。

變更記錄

1.0.0

  • Initial release.
  • Added custom login URL protection with configurable blocked-request behavior.
  • Added login logo, message, color, link, and text-size branding controls.
  • Added frontend 301 and 302 redirect management.
  • Added XML-RPC, user enumeration, and WordPress version hardening controls.
  • Added emoji and embed cleanup options.
  • Added custom admin footer branding.
  • Added uninstall cleanup for plugin settings and redirect rules.

中繼資料

  • 版本 1.0.0
  • 最後更新 2 天前
  • 啟用安裝數 少於 10 次
  • WordPress 版本需求 6.0 或更新版本
  • 已測試相容的 WordPress 版本 7.0.1
  • PHP 版本需求 7.4 或更新版本
  • 語言
    English (US)
  • 標籤:
    custom loginlogin brandingperformanceredirectssecurity
  • 進階檢視

評分

這個項目尚無任何評論記錄。

Your review

查看全部使用者評論

參與者

  • Nexiby LLC

技術支援

使用者可在技術支援論壇提出意見反應或使用問題。

檢視技術支援論壇

  • 關於我們
  • 最新消息
  • 主機代管
  • 隱私權
  • 展示網站
  • 佈景主題目錄
  • 外掛目錄
  • 區塊版面配置目錄
  • Learn
  • 技術支援
  • 開發者資源
  • WordPress.tv ↗
  • 共同參與
  • 活動
  • 贊助基金會 ↗
  • Five for the Future
  • WordPress.com ↗
  • Matt ↗
  • bbPress ↗
  • BuddyPress ↗
WordPress.org
WordPress.org

Taiwan 正體中文

  • 查看我們的 X (之前的 Twitter) 帳號
  • 造訪我們的 Bluesky 帳號
  • 造訪我們的 Mastodon 帳號
  • 造訪我們的 Threads 帳號
  • 造訪我們的 Facebook 粉絲專頁
  • Visit our Instagram account
  • Visit our LinkedIn account
  • 造訪我們的 TikTok 帳號
  • Visit our YouTube channel
  • 造訪我們的 Tumblr 帳號
程式碼,如詩
The WordPress® trademark is the intellectual property of the WordPress Foundation.