Webtaru Site Options and Login Security

Webtaru Site Options and Login Security is a comprehensive toolkit for WordPress administrators to manage essential site information, business hours, and visual branding, while simultaneously hardening your site's security by allowing you to change the default login URL and add CAPTCHA protection.

2.9

• NEW: Updated version to 2.9.
• IMPROVED: Expanded and updated readme files with comprehensive documentation for all plugin features, including WPBakery/Elementor integrations, 2FA, auto-logout, and caching bypasses.
• IMPROVED: Finalized packaging optimizations and cleanups.

2.8.1

• FIX: Changed 404 redirect type from 301 (Permanent) to 302 (Temporary) to prevent browser caching.
• FIX: Added programmatic cache-bypass integrations for WP Rocket, LiteSpeed Cache, SG Optimizer, and WP Engine on the custom login page.
• NEW: Added Login Secret Key (Cache-Proof) query parameter method as a robust caching-immune alternative.
• NEW: Added Caching Instructions Notice in the login settings UI.
• NEW: Added custom dynamic menu login URL redirect to support front-end login pages (like WooCommerce /my-account/) without exposing the secret admin login URL.
• IMPROVED: Removed global URL filters to prevent conflicts with WooCommerce and multi-user front-end login flows.

2.8.0

• NEW: Redesigned Maintenance Mode with a premium dark gradient theme, glowing ambient indicators, rotating SVG status cogs, and active social/phone contact options.
• NEW: Inactivity Auto Logout feature that monitors idle time across front/back end, triggers warning countdown modal overlays, and safely redirects to the login screen with a custom notice.

2.7.0

• NEW: Heartbeat Control (optimize interval and selectively disable on Frontend, Dashboard, or Editor).
• NEW: Email-based 2FA (high-level verification code for custom roles on login).
• NEW: Instant Page Prefetching (lightweight, hover-delayed client-side prefetching).
• NEW: Maintenance Mode Bypass Key (secure cookie and clean redirection to bypass maintenance screen).
• FIX: Removed default WordPress checkmark overlay on custom on/off toggles.
• UPDATED: Fully tested up to WordPress 7.0 and PHP 8.2+.
• IMPROVED: Codebase sanitation and late-stage escaping audit.

2.6.0

• IMPROVED: Full security audit with late-stage escaping for all outputs.
• IMPROVED: Enhanced input sanitization for better data integrity.
• IMPROVED: PHP 8.2 compatibility fixes.
• UPDATED: Tested up to WordPress 6.9.
• UPDATED: Plugin tags for better repository visibility.
• New: Content Protection (Disable Right-Click, Selection, and Copy-Paste).
• New: Auto-Alt Text for missing image Alt tags.
• New: Duplicate Menu functionality in the menu editor.
• New: Remove Query Strings (?ver=) for improved caching and speed scores.
• New: [wtols_copyright] shortcode for automatic copyright year updates.
• New: Login Email Alerts with custom email recipient and Site URL support.
• New: Basic Security Firewall and REST API Restriction for unauthorized users.
• New: Admin Bar Zen Mode for a distraction-free experience.
• Improved: Login alert now uses site-configured time format and provides tracking links.

2.5.0

• New: Advanced XSS Protection (Basic & Advanced modes).
• New: Disable Common Usernames feature with admin dashboard notification.
• New: Smooth Scrolling (Fluid Mousewheel) enhancement.
• Fix: Sticky Header layout overlap with WordPress admin sidebar.
• Fix: Removed incorrect references to SVG Support and Robots.txt Editor.

2.4.0

• NEW: Professional Media Replacement module with AJAX upload.
• NEW: Full SMTP mail delivery integration with test email capability.
• NEW: Admin Bar Cleanup feature to declutter the top admin bar.
• IMPROVED: Security hardening and output escaping for WordPress.org compliance.
• IMPROVED: Broadened detection for third-party Admin Bar nodes (Forms, Elementor, etc.).
• FIXED: Capturing of raw HTML in Admin Bar node titles.
• REMOVED: Prohibited update-blocking features for repository standards.

2.3.0

• NEW: SVG file upload support with strict XML tag sanitization.
• NEW: Maintenance Mode admin bar indicator and search engine visibility alerts.
• NEW: Advanced redirect controls (404 to Homepage, Custom Login/Logout redirects).
• NEW: "Disable Author Archives" for better security and SEO.
• NEW: Automated conditional Log In/Log Out menu items.
• NEW: "Open External Links in New Tab" post content filter.
• NEW: Admin functionality to manage and overwrite robots.txt output.
• IMPROVED: Login UI CSS constrained logo width and fixed background attachment.
• IMPROVED: Direct wp-admin access attempts now seamlessly redirect to the homepage.

2.2.6

• Refactored and rebranded as "Webtaru Site Options and Login Security".
• REMOVED: Prohibited arbitrary code insertion features.
• HARDENED: Security through strict input sanitization and late-stage output escaping.
• UPDATED: Documentation to disclose external service usage.

1.0.0

• Initial release of the rebranded version.