這個外掛並未在最新的 3 個 WordPress 主要版本上進行測試。開發者可能不再對這個外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。

Clear Logout

外掛說明

This plugin ensures that when users of your web site (including site administrators), the browsers are instructed to clear all residue such as cookies and caches to enhance the security.

Clear-Site-Data HTTP header is sent when a user logs out, which supported browsers will react by removing all existing cookies, cache, and other storage. It will not remove saved passwords, permissions, adblocker rules, and other data that are supposed to be permanent.

This plugin prevents possible security vulnerabilities such as clicking the “Back” button in the browser after logging out revealing the pages that should not have been accessible after logging out. Furthermore, this cleans the browser cache, which prevents accessing authenticated media assets (such as purchased images) from the browser cache of a victim.

安裝方式

  1. Upload the downloaded plugin directory to /wp-content/plugins/ directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin from the ‘Plugins’ screen in WordPress.
  3. You are all set! There is nothing to configure. When users logout, the Clear-Site-Data header will be sent automatically.

常見問題集

Will this plugin remove saved passwords?

No. This will clear all cookies associated with your WordPress site, but not the permanent data such as passwords, permissions, etc.

Which browsers support `Clear-Site-Data` header?

All mainstream browsers do. Google Chrome 61+, Firefox 63+, and their current mobile browsers. As of now, Microsoft Edge (non-Chrome versions) does NOT support this header.

Why does the WordPress core does not set this header by itself?

Clear-Site-Data header is a relatively new header. I will be working with WordPress core team to get this into core. Until then, we have this plugin.

使用者評論

這個外掛目前沒有任何使用者評論。

參與者及開發者

以下人員參與了開源軟體〈Clear Logout〉的開發相關工作。

參與者

將〈Clear Logout〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄

變更記錄

1.0

  • Initial release.

1.1

  • Update supported up-to version number.

1.2

  • Update supported up-to version number.