WordPress.org

Taiwan 正體中文

  • 佈景主題目錄
  • 外掛目錄
  • 最新消息
  • 技術支援
  • 關於我們
  • 團隊
  • 取得 WordPress
取得 WordPress
WordPress.org

Plugin Directory

Invalidate Logged Out Cookies

  • 提交外掛
  • 我的最愛
  • 登入
  • 提交外掛
  • 我的最愛
  • 登入

這個外掛並未在最新的 3 個 WordPress 主要版本上進行測試。開發者可能不再對這個外掛進行維護或提供技術支援,並可能會與更新版本的 WordPress 產生使用上的相容性問題。

Invalidate Logged Out Cookies

由 laceous 開發
下載
  • 詳細資料
  • 使用者評論
  • 安裝方式
  • 開發資訊
技術支援

外掛說明

Due to lack of interest (both my own and based on the number of downloads) this plugin will not be updated for WP 3.0

WordPress’ auth cookies include a built-in expiration date (either 2 or 14 days depending on if the ‘Remember Me’ option is checked). Even if you remove the client-side cookie (by manually logging out or just closing your browser if ‘Remember Me’ wasn’t checked when logging in) the data that was stored within the cookie is still valid until the expiration date is reached.

This could be an issue if someone managed to “steal” your cookie(s). They would still be able to access your website for some time into the future.

This plugin will immediately invalidate your auth cookies when you manually log out. This, of course, also means that you have to manually click ‘Log out’ for this plugin to work properly (you can’t just close your browser to remove any cookies that expire at the end of the session). This won’t prevent session hijacking, but should limit the amount of time that an attacker can access your website.

安裝方式

  1. Upload the entire invalidate-logged-out-cookies/ directory to the /wp-content/plugins/ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress
  • If upgrading manually, make sure to disable and then re-enable the plugin (upgrading through the admin interface will do this automatically)

常見問題集

Will this plugin invalidate my cookies if I logged in before the plugin was activated?

No. This plugin will only invalidate cookies that were created after activating the plugin.

Will this plugin work with non-standard auth cookies?

Most likely, no. This plugin is only meant to be used with the standard auth cookies that WordPress uses.

Known conflicts with other plugins

This plugin overrides the core wp_validate_auth_cookie function. This means that you can’t enable this plugin and another that also overrides the same function.

This is a non-comprehensive list of other plugins that also override this function (and should not be used at the same time as this plugin):

  • Safer Cookies
  • Admin SSL
  • WordPress 2.6+ and bbPress 0.9 cookie integration
  • No Login
  • Disclose-Secret
  • PhotoQ Photoblog Plugin

It’s also possible that if another plugin is overriding a related function (e.g. wp_generate_auth_cookie) that this plugin will not work correctly.

How can I know if this plugin is properly overriding the ‘wp_validate_auth_cookie’ function?

Once activated, if this plugin is NOT overriding the function, then a message will be shown to admin users towards the top of every admin page.

What if I can’t log in after activating this plugin?

Simply rename or delete the plugin so WordPress can’t find it. This step requires that you have access to the filesystem where WordPress is installed (via FTP, SFTP, etc).

There’s a small chance that this might happen. It most likely happens because of an incompatibility with another plugin that also overrides one of the core auth_cookie functions.

使用者評論

這個外掛目前沒有任何使用者評論。

參與者及開發者

以下人員參與了開源軟體〈Invalidate Logged Out Cookies〉的開發相關工作。

參與者
  • laceous

將〈Invalidate Logged Out Cookies〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄。

變更記錄

0.1.1

  • Update for WP 2.9 (supports WP 2.9 only)
  • Added the auth_cookie_invalidated_cookie action

0.1

  • Initial version (supports WP 2.8 only)

中繼資料

  • 版本 0.1.1
  • 最後更新 15 年前
  • 啟用安裝數 10+
  • WordPress 版本需求 2.9 或更新版本
  • 已測試相容的 WordPress 版本 2.9.2
  • 語言
    English (US)
  • 標籤
    cookiesloginlogoutsecurity
  • 進階檢視

評分

這個項目尚無任何評論記錄。

新增使用者評論

查看全部使用者評論

參與者

  • laceous

技術支援

使用者可在技術支援論壇提出意見反應或使用問題。

檢視技術支援論壇

  • 關於我們
  • 最新消息
  • 主機代管
  • 隱私權
  • 展示網站
  • 佈景主題目錄
  • 外掛目錄
  • 區塊版面配置目錄
  • Learn
  • 技術支援
  • 開發者資源
  • WordPress.tv ↗
  • 共同參與
  • 活動
  • 贊助基金會 ↗
  • Five for the Future
  • WordPress.com ↗
  • Matt ↗
  • bbPress ↗
  • BuddyPress ↗
WordPress.org
WordPress.org

Taiwan 正體中文

  • 查看我們的 X (之前的 Twitter) 帳號
  • Visit our Bluesky account
  • 造訪我們的 Mastodon 帳號
  • Visit our Threads account
  • 造訪我們的 Facebook 粉絲專頁
  • Visit our Instagram account
  • Visit our LinkedIn account
  • Visit our TikTok account
  • Visit our YouTube channel
  • Visit our Tumblr account
程式碼,如詩