Title: Private Website – Login Required Author: roehler Published: 2024 年 9 月 25 日 Last modified: 2026 年 5 月 28 日 --- 搜索插件 ![](https://ps.w.org/private-website/assets/icon-256x256.png?rev=3233234) # Private Website – Login Required 作者:[roehler](https://profiles.wordpress.org/roehler/) [下载](https://downloads.wordpress.org/plugin/private-website.0.3.1.zip) * [详情](https://cn.wordpress.org/plugins/private-website/#description) * [评价](https://cn.wordpress.org/plugins/private-website/#reviews) * [安装](https://cn.wordpress.org/plugins/private-website/#installation) * [开发进展](https://cn.wordpress.org/plugins/private-website/#developers) [支持](https://wordpress.org/support/plugin/private-website/) ## 描述 **Private Website – Login Required** is a simple and straightforward WordPress plugin designed to restrict access to your website. By activating this plugin, users must be logged in to view any content on your site. This is ideal for websites that host sensitive or exclusive content and want to ensure that only authenticated users can access it. There are no complicated settings to configure. Simply activate the plugin to enforce the login requirement and deactivate it to remove the restriction. This plugin was developed by [Robin Oehler](https://roehler.nrw). ### Privacy Policy Private Website – Login Required uses [Appsero](https://appsero.com) SDK to collect some telemetry data upon user’s confirmation. This helps us to troubleshoot problems faster & make product improvements. Appsero SDK does not gather any data by default. The SDK only starts gathering basic telemetry data when a user allows it via the admin notice. We collect the data to ensure a great user experience for all our users. Integrating Appsero SDK DOES NOT IMMEDIATELY start gathering data, without confirmation from users in any case. Learn more about how [Appsero collects and uses this data](https://appsero.com/privacy-policy/). ### Bugs & Feedback Your feedback is important to me. If you find mistakes, have wishes, ideas, or suggestions, please send an email to [mail@roehler.nrw](https://cn.wordpress.org/plugins/private-website/mail@roehler.nrw?output_format=md). Legal notice (German): [https://roehler.nrw/impressum/](https://roehler.nrw/impressum/) You are free to use it on any website across countries to protect the privacy of your users. Note: Activating this plugin cannot guarantee that your website is completely compliant with GDPR. When using Google Analytics, Facebook pixels, or other similar tools, additional measures may need to be taken. ## 安装 1. Upload the plugin files to the `/wp-content/plugins/private-website` directory, or install the plugin through the WordPress plugins screen directly. 2. Activate the plugin through the ‘Plugins’ screen in WordPress. 3. Once activated, the plugin will automatically restrict content to logged-in users only. 4. To remove the login requirement, simply deactivate the plugin. ## 常见问题 ### What does this plugin do? This plugin restricts access to your website content to only logged-in users. If a user is not logged in, they will be redirected to the login page. ### Are there any settings I need to configure? No, there are no settings to configure. Simply activate the plugin to enforce the login requirement and deactivate it if you no longer want to restrict access. ### Can I allow access to specific pages without login? Currently, the plugin does not provide the option to allow access to specific pages without login. It restricts access to the entire website. ### How do I stop the login requirement? To stop requiring a login to access your site, simply deactivate the plugin from the ‘Plugins’ screen in WordPress. ## 评价 ![](https://secure.gravatar.com/avatar/4717f2433d6587409afe1042111eb8b80c147e9e3b26268b9a2bd83f02eb87e8? s=60&d=retro&r=g) ### 󠀁[Macht, was es soll](https://wordpress.org/support/topic/macht-was-es-soll-37/)󠁿 [josephion](https://profiles.wordpress.org/josephion/) 2024 年 10 月 24 日 Super simples Plugin! Genau was ich brauchte. An machen und Homepage nur per Login sehen. [ 阅读所有1条评价 ](https://wordpress.org/support/plugin/private-website/reviews/) ## 贡献者及开发者 「Private Website – Login Required」是开源软件。 以下人员对此插件做出了贡献。 贡献者 * [ roehler ](https://profiles.wordpress.org/roehler/) [帮助将「Private Website – Login Required」翻译成简体中文。](https://translate.wordpress.org/projects/wp-plugins/private-website) ### 对开发感兴趣吗? 您可以[浏览代码](https://plugins.trac.wordpress.org/browser/private-website/),查看 [SVN仓库](https://plugins.svn.wordpress.org/private-website/),或通过[RSS](https://plugins.trac.wordpress.org/log/private-website/?limit=100&mode=stop_on_copy&format=rss) 订阅[开发日志](https://plugins.trac.wordpress.org/log/private-website/)。 ## 更新日志 #### 0.3.1 * **Security:** Block wp-comments-post.php for non-logged-in users (bypassed template_redirect). * **Security:** Block wp-admin/admin-post.php for non-logged-in users (prevents nopriv form actions). * **Security:** Block wp-mail.php for non-logged-in users. * **Compatibility:** Dynamic uploads path detection — supports custom content directories. * **Compatibility:** AJAX whitelist is now filterable via `private_website_allowed_ajax_actions`( for 2FA plugins etc.). * **Compatibility:** XML-RPC disable is now filterable via `private_website_xmlrpc_enabled`( for Jetpack etc.). * **Compatibility:** Updated “Tested up to” for WordPress 7.0. * **Compatibility:** Raised minimum PHP version to 7.4 (matching WordPress 7.0 requirements). #### 0.3.0 * **Security:** Protect direct access to uploaded files (images, PDFs, videos) via .htaccess in uploads directory. * **Security:** Restrict REST API access to authenticated users only (prevents data leaking via /wp-json/). * **Security:** Disable XML-RPC completely (prevents brute-force attacks and content leaking via xmlrpc.php). * **Security:** Block RSS/Atom feeds for non-logged-in users (prevents content leaking via /feed/). * **Security:** Restrict AJAX requests to a whitelist of allowed actions for non- logged-in users. * **Security:** Disable XML sitemaps for non-logged-in users to prevent site structure leaking. * **Security:** Make robots.txt fully restrictive (Disallow: /) to prevent search engine indexing. * **Improvement:** Creates a self-contained .htaccess in wp-content/uploads/ instead of modifying the root .htaccess. * **Improvement:** Show admin notice when .htaccess cannot be created or when Nginx is detected. * **Improvement:** Clean up .htaccess on plugin deactivation. Supports subdirectory installs. #### 0.2.9 * Ask for Appsero consent again after each admin login until consent is granted( re-prompts post-login). #### 0.2.8 * Show tracking status badge directly in the plugin description (Plugins screen). #### 0.2.7 * Add opt-in/out action link directly in the Plugins screen for this plugin (enables/ disables Appsero tracking). #### 0.2.6 * Add uninstall.php for clean uninstall (removes Appsero options and clears scheduled events; multisite-aware). #### 0.2.5 * Add Appsero SDK (opt-in telemetry only), with admin notice and weekly schedule. * Add Privacy Policy section to readme; no data is collected without consent. * Minor refactors; keep strict redirects and security hardening from 0.2.4. #### 0.2.4 * Enhanced security with better input validation and sanitization. * Improved code structure following WordPress coding standards. * Added proper internationalization support with textdomain. * Better handling of AJAX requests, REST API, and cron jobs. * Added activation checks for minimum WordPress and PHP versions. * Updated contributor information to link to author website. * More efficient redirect logic with wp_safe_redirect. #### 0.2.3 * Improved function naming to follow WordPress coding standards and prevent conflicts. * Fixed SVN repository structure and tag management. * Reduced plugin tags to comply with WordPress.org requirements (maximum 5 tags). #### 0.2.2 * Updated “Tested up to” for WordPress 6.8.1. * Minor code enhancements for redirect URL generation and logic. #### 0.2.1 * Internal code refinements and minor updates. #### 0.2.0 * Updated compatibility information (previously tested up to WordPress 6.7.2). * General maintenance and minor improvements. #### 0.1 * Initial release of the plugin. * Basic functionality to require login for viewing website content. ## 额外信息 * 版本 **0.3.1** * 最后更新:**2 周前** * 活跃安装数量 **200+** * WordPress 版本 ** 5.0 或更高版本 ** * 已测试的最高版本为 **7.0** * PHP 版本 ** 7.4 或更高版本 ** * 语言 * [English (US)](https://wordpress.org/plugins/private-website/) * 标签 * [login](https://cn.wordpress.org/plugins/tags/login/)[members](https://cn.wordpress.org/plugins/tags/members/) [private](https://cn.wordpress.org/plugins/tags/private/)[Restrict access](https://cn.wordpress.org/plugins/tags/restrict-access/) [user authentication](https://cn.wordpress.org/plugins/tags/user-authentication/) * [高级视图](https://cn.wordpress.org/plugins/private-website/advanced/) ## 评级 5 星(最高 5 星)。 * [ 1 条 5 星评价 ](https://wordpress.org/support/plugin/private-website/reviews/?filter=5) * [ 0 条 4 星评价 ](https://wordpress.org/support/plugin/private-website/reviews/?filter=4) * [ 0 条 3 星评价 ](https://wordpress.org/support/plugin/private-website/reviews/?filter=3) * [ 0 条 2 星评价 ](https://wordpress.org/support/plugin/private-website/reviews/?filter=2) * [ 0 条 1 星评价 ](https://wordpress.org/support/plugin/private-website/reviews/?filter=1) [Your review](https://wordpress.org/support/plugin/private-website/reviews/#new-post) [查看全部评论](https://wordpress.org/support/plugin/private-website/reviews/) ## 贡献者 * [ roehler ](https://profiles.wordpress.org/roehler/) ## 支持 有话要说吗?是否需要帮助? [查看支持论坛](https://wordpress.org/support/plugin/private-website/) ## 捐助 您愿意支持这个插件的发展吗? [ 捐助此插件 ](https://www.roehler.nrw)