外掛說明

👑Check Out Premium Version | 📘Technical Documentation | 🧰See all Features

Looking for a one-stop solution to protect and customize your WordPress login page (wp-admin)? If that’s what you need, then Download All in One Login Plugin NOW]

Over 70,000 website owners already use All in One Login for their WordPress login security and customization. 🎉

And the reason for that is obvious! 👇

AIO Login is a top-notch WordPress admin security plugin that empowers you to secure and customize the WordPress wp-admin login page. Which means it offers robust security features and extensive customization options. 🤯

So, if you really want to level up your WordPress login security, then AIO Login is a must-have plugin. 💯

From changing the WP-Admin URL to integrating Google reCAPTCHA, AIO Login provides everything you need to secure and customize your WordPress login page.

Isn’t that amazing? Wait until you see its features❕ 😃 🚀

Key Features Our Users 🤍 About All In One Login

The All in One Login plugin includes all the essential features that ensure the best WordPress login protection and customization.

Let’s explore some of its key features: 👇

✔️ Change WP-Admin URL

Secure your site by changing the default WP-Admin URL. Hide the WordPress login page from hackers and prevent unauthorized access with a simple custom login URL.

✔️ Google reCAPTCHA

Protect your WordPress login page from spam and bots. Add Google reCAPTCHA v2 or v3 to your WP-Admin for secure authentication and reduce automated login attempts.

✔️ Limit Login Attempts

Prevent brute-force attacks by limiting failed login attempts. Lock out users after multiple failures and safeguard your WP-Admin with this WordPress limit login attempts plugin.

✔️WordPress Login Customization [Free + Pro]

Create a branded, customized WordPress login page. Use templates, custom logos, background images, and CSS to personalize the WP-Admin experience for better user engagement.

✔️ Disable Common Usernames [Pro]

Block weak or predictable usernames to improve WordPress login security. Force unique usernames and prevent attackers from exploiting common entries on your WordPress site.

✔️ Password Strength Checker [Pro]

Enforce strong passwords for WordPress users. Set minimum length, character rules, and uppercase/lowercase requirements to ensure secure credentials and prevent unauthorized WP-Admin access.

✔️ Ban User/IP Address [Pro]

Block unwanted users or IP addresses instantly. Restrict access to your WordPress login page and protect WP-Admin from hackers using this IP and user ban plugin.

✔️ App-Based 2FA [Pro]

Add two-factor authentication to WordPress login. Enhance security for WP-Admin and ensure only authorized users can access your site.

✔️ Temp Access URL [Pro]

Generate temporary access URLs for specific users. Control the number of visits and expiration to grant a short-term login without compromising WordPress site security.

✔️ Whitelist IP Addresses [Pro]

Allow only trusted IP addresses to access your WordPress login page. Restrict WP-Admin access to selected users, adding an extra security layer to your site.

✔️ Social Login Integration [Pro]

Enable users to log in with Google, Facebook, Microsoft, or LINE. Simplify WordPress and WooCommerce registration while improving security and user experience.

✔️ User Enumeration [Free + Pro]

Block attackers from discovering WordPress usernames through author or query string requests. This prevents exposure of valid usernames and strengthens login security against brute-force attacks.

✔️ WooCommerce Login Integration [Coming Soon]

Allow customers to log in with social accounts on WooCommerce checkout and account pages. Enhance login security and user experience with Google, Facebook, LinkedIn, Microsoft, or LINE.

Don’t Miss Out on Social Login Integrations

All in One Login supports social integrations with leading platforms, making sign-in faster, easier, and more secure.

Google Social Login

Let users log in with one of the most widely used authentication methods worldwide. By enabling Google login, you reduce friction for users, making registration easier.

Facebook Social Login

With billions of users globally, Facebook login is a familiar and trusted option for social logins. Allowing users to sign in with Facebook means faster onboarding and less abandonment at registration.

Microsoft Social Login

Perfect for business and education-focused websites, Microsoft login provides secure authentication. It aligns with the tools professionals already use every day.

LINE Social Login

LINE has around 184 monthly active users worldwide, which is a great option for websites targeting international audiences.

8 Key Reasons to Choose All in One Login 😎

⚡ Reason #1: Greater Security for Your WP-Admin

AIO Login provides robust security features to protect your WP Admin page.

Change WP-Admin URL: Customize the WordPress default login path.
Ban User/IP Address: Block unauthorized access instantly.
Detailed Activity Logs: Monitor all login attempts
Limit Login Attempts: Prevent brute force attacks..
Whitelist IP Addresses: Restrict access to trusted IPs.

⚡ Reason #2: Intuitive Branding and User Engagement

Create a better user experience with a customized WordPress login page.

Custom Templates: Choose from a variety of templates.
Logo and Background: Add your branding elements.
Color Customization: Personalize color schemes.
Custom CSS: Advanced customization for WP-Admin.
User Engagement: Create a more engaging login page.

⚡ Reason #3: Brute Force Protection

保護 WordPress 網站登入頁面 (wp-admin) 免受暴力密碼破解攻擊。

Failed Login Limits: Set limits on login attempts.
User Lockout: Lock out users after failed attempts.
Custom Lockout Settings: Customize lockout duration.
Prevent Unauthorized Access: Secure your WP Admin.
Real-time Monitoring: Track login attempts and threats.

⚡ Reason #4: Spam Prevention and User Verification

Prevent spam and unauthorized logins with Google reCAPTCHA integration.

reCAPTCHA Integration: Add an extra layer of security.
Customizable Settings: Choose between v2 and v3.
Bot Prevention: Keep your login page spam-free.
User Verification: Ensure only legitimate users access your site.
User Enumeration: Prevent your usernames & ID’s from millicious attacks.
Enhanced Security: Protect against automated attacks.

⚡ Reason #5: Comprehensive Activity Monitoring

Monitor all login activities for enhanced WordPress login security. See the username, IP address, date, time, lockout list, and more.

IP Address Ban: Block specific IPs.
User Ban: Prevent specific users from logging in.
Custom Messages: Display messages for banned users.
Enhanced Control: Manage who can access your site.
Immediate Action: Take action against threats swiftly.

⚡ Reason #6: Immediate Blocking of Suspicious Users

Block suspicious users instantly to prevent unauthorized access to your WordPress login page and set a custom message on display for banned users.

Real-time Logs: Track login attempts in real time.
User Activity: Monitor user activities.
IP Address Tracking: Review IP addresses.
Failed Login Attempts: Get details on failed attempts.
Security Audits: Conduct thorough security audits.

⚡ Reason #7: Additional Layer of Security with Mobile-Based 2FA

Add an extra layer of security with mobile-based 2FA.

TOTP Apps Support: Use Google Authenticator, FreeOTP, or Authy.
Two-Factor Authentication: Secure your login process.
Improved Security: Ensure only authorized access.
Convenient Setup: Easy to set up and use.
Enhanced Protection: Strengthen your WP Admin security.

⚡ Reason #8: Simplified Access with Social Login

Make logging in easier by allowing users to sign in with their existing social accounts.

Multiple Platforms Supported: Google, Facebook, LinkedIn, and Microsoft.
Faster Onboarding: Reduce friction during registration and login.
Improved User Experience: No need to remember another password.
Lower Abandonment Rates: Minimize drop-offs at sign-in.
Seamless Integration: Works smoothly with your WordPress site.

Technical Documentation

Click here to access our detailed, step-by-step technical documentation for complete security of your WordPress login page (wp-admin).

Need Help? Get Expert Assistance

Having trouble securing or customizing your WordPress login page (WP-Admin URL)? Don’t worry, our expert support team is here to help! 🤝

Our dedicated support team is here to guide you through any issues, answer your questions, and assist you in using the plugin to its full potential.

👉 Reach out by opening a support ticket, for fast and reliable help. We’re here for you!

螢幕擷圖

Your AIO Login Dashboard to access everything at a glance.
Change WP-Admin Login URL to protect WordPress login page.
Protect WP admin against brute force with limit login attempts.
Integrate Google reCAPTCHA (v2 or v3) to avoid spam
Change background image for your WordPress login page
Add custom CSS for WP-Admin for further customization

安裝方式

如需安裝並啟用外掛…

在 WordPress 管理後台中，前往 [外掛] 頁面，然後點擊 [安裝外掛]。
搜尋「AIO Login」。
僅需下載、安裝並啟用。
Get the AIO Login setting page in WordPress side menu.

常見問題集

Can I use the All in One Login plugin for free?: Yes, you can install the free version of AIO Login, which offers unique features such as the change of the WP-Admin URL, block login attempts, Google reCAPTCHA, detailed activity logs, and even custom login design for customizing and securing your WordPress login page.
Is AIO Login compatible with all WordPress themes?: Yes, you can easily customize the WordPress admin URL with AIO Login, enhancing security by making it harder for attackers to find your login page.
Can I customize the WordPress admin URL?: Yes, you can easily customize the WordPress admin URL with AIO Login, enhancing security by making it harder for attackers to find your login page.
How does App-Based 2FA protect WP-Admin?: App-Based 2FA adds an extra layer of security by requiring a second form of authentication via mobile apps like Google Authenticator. This makes unauthorized access significantly more difficult.
Is AIO Login compatible with other security plugins?: AIO Login is generally compatible with all other security plugins, such as Jetpack, Wordfence Security, Security Ninja, etc.
Which social logins are supported by All in One Login?: AIO Login supports Gmail, Microsoft, and LINE social login. These social logins simplify registration, improve user experience, and reduce abandoned accounts.
Can I track login activity with AIO Login?: Yes, AIO Login allows you to track all login attempts and activity logs in real-time. You can monitor user activity, review IP addresses, and see details on failed login attempts.
Is AIO Login required for WP-Admin security?: Even though it is not mandatory, using AIO Login can significantly enhance the security of your WP-Admin login page against unauthorized access.
What is user enumeration, and how does AIO Login prevent it?: User enumeration is when attackers try to discover valid WordPress usernames. AIO Login blocks these attempts, keeping your WP-Admin secure and preventing brute-force attacks.
How can I enhance WordPress login security with AIO Login?: You can enforce strong passwords, enable app-based 2FA, limit login attempts, whitelist IPs, and block user enumeration to fully protect your WordPress login page.
Where do I report security bugs found in this plugin?: Please report security bugs found in the source code of the Change wp-admin login plugin through the Patchstack Vulnerability Disclosure Program. The Patchstack team will assist you with verification, CVE assignment, and notify the developers of this plugin.

使用者評論

veylau 2024 年 10 月 24 日

Thanks! Aqib is offering great support!

Zumbo 2024 年 9 月 7 日 3 則留言

I used to love this plugin for its simplicity and efficiency. It performed its job flawlessly and was a great asset. However, the recent update has turned this once-free tool into a paid upgrade with numerous new features that many users may not need. This shift from a well-functioning free plugin to a feature-packed paid version feels like a betrayal to its loyal users. The essence of what made this plugin great has been lost in the quest for monetization. It’s disappointing to see such a change. RIP.

devsaredead 2024 年 9 月 4 日 1 則留言

Changing URL simply doens’t work. When the site is under maintenance one does not get to WP login page but stays under maintenance… if then one browses to /wp-admin he gets straight into the backend actually passing over the login form. Nice, ah? And by the way: when will you learn to put a “delete all plugin instances from database when unistalling” button, by default?

Andrea 2024 年 8 月 26 日 2 則留言

RIP

mklusak 2024 年 8 月 5 日 1 則留言

… And now with 2.0 update I got monstrous “get PRO” security plugin, with WP admin top level menu link (why???). I feel betrayed.

Ciprian Popescu 2024 年 7 月 18 日 1 則留言

It used to do one job, be lightweight, fast and as little code as possible. Now it’s bloated, includes Freemius library+tracking, added a new top-level menu, and includes several options that are not required. I do not recommend. I forked the old one and kept it light and fast.

閱讀全部 34 則使用者評論

參與者及開發者

以下人員參與了開源軟體〈All In One Login — 提供 WordPress 管理後台登入頁面安全性、自訂 Google eCAPTCHA、社交網路服務登入、限制登入嘗試、兩步驟驗證等功能〉的開發相關工作。

〈All In One Login — 提供 WordPress 管理後台登入頁面安全性、自訂 Google eCAPTCHA、社交網路服務登入、限制登入嘗試、兩步驟驗證等功能〉外掛目前已有 11 個本地化語言版本。感謝全部譯者為這個外掛做出的貢獻。

將〈All In One Login — 提供 WordPress 管理後台登入頁面安全性、自訂 Google eCAPTCHA、社交網路服務登入、限制登入嘗試、兩步驟驗證等功能〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣？

任何人均可瀏覽程式碼、查看 SVN 存放庫，或透過 RSS 訂閱開發記錄。

變更記錄

2.1.0 – Oct 15, 2025

New – Added User Enumeration Feature
Tweak – Added pro screen of User Enumeration logs in Activity logs

2.0.10 – Oct 06, 2025

Tweak – Separated Social Login in navigation and added Pro banner.
Improvement – Revamped Google reCAPTCHA and restructured it into a multi-step format.

2.0.9 – Aug 26, 2025

Security – Enhanced login protection to better defend against repeated failed login attempts and brute-force attacks.

2.0.8 May 21, 2025

Updated feedback SDK to latest version.

2.0.7 Apr 21, 2025

Fixed translation notice.
Tested compatibility with latest WordPress (Version 6.8)

2.0.6 Mar 13, 2025

Updated readme with a new feature.

2.0.3 Dec 02, 2024

Updated backend with VueJS to improve UX

2.0.2 Nov 21, 2024

Tested compatibility with latest WordPress (Version 6.7)
Updated – Feedback SDK to latest Version

2.0.1

New – Added multisite compatibility
New – Added button to clear all failed & lockout logs
Fix – Resolved php error for older versions

2.0.0

Fixed – Forgot password link breaking.
New – Improved the UI.
New – Added new Dashboard
New – Added Limit login Attempts feature
New – Added activity logs for failed login attempts
New – Added activity logs for lockout users
New – Added Google reCAPTCHA functionality
New – Added login page customization options

1.1.8

Fixed: compatibility issues with WPForms, WordFence

1.1.7

Fixed: Redirection to wp-admin when trying to access admin pages directly.

1.1.6

Fixed: The recent commit has been reverted to address conflicts in various cases

1.1.5

Fixed: Resolved the issue undefined is_user_logged_in() function error in certain cases.

1.1.4

Fixed: Redirection to wp-admin when trying to access admin pages directly.

1.1.3

Handover plugin

1.1.2

More Fixes for php8 warnings

1.1.1

Fix php8 warnings

1.1.0

Update WordPress API settings

1.0.9

fix security issue

1.0.8

fix security issue

1.0.7

fix missing register_setting on the add_settings_field

1.0.6

fix suppressed warning

1.0.5

add site URL before the new redirect input field

1.0.4

Add redirect custom field.
Better instructions in how to use the redirect field

1.0.3

Add redirect custom field.
When someone tries to access the wp-login.php page or the wp-admin directory while not logged in will be redirected to the page you defined on the redirect custom field.

1.0.2

Add translations

1.0.1

Add automatic redirect for when someone tries to access the wp-login.php page or the wp-admin directory while not logged in will be redirected to the website homepage.

1.0.0

Initial version.

Great

Once Perfect, Now a Paid Upgrade: A Disappointing Change

nice customization feature, very nasty login URl feature!

A great plugin has been destroyed

I just wanted “one function” plugin …

“Does one thing and does it good” – Not anymore