Comments on: Require login to view a Wordpress site

By: WP Require Auth plugin released « Johnny Chadda .se

WP Require Auth plugin released « Johnny Chadda .se — Fri, 13 Nov 2009 23:58:17 +0000

[...] effectively replaces my little hack for doing this earlier on. Tagged as: authentication, plugin, security, wordpress Leave a comment [...]

By: Johnny Chadda

Johnny Chadda — Fri, 30 Oct 2009 12:07:15 +0000

You can get the posts using the RSS feed for instance and from there, retrieve the links for different post listings. I guess there could be a plugin available that does this in a better way. I might write one otherwise, when I have time.

By: Craig Wann

Craig Wann — Thu, 29 Oct 2009 18:35:04 +0000

“Note that if you want to be completely sure that no one can retrieve any information without authenticating you need to either modify the Wordpress core files, or use some other type of authentication outside of the Wordpress code, such as a basic auth in the webserver.”

How would someone go about retrieving my information if I don’t use any outside authentication? I want to understand the vulnerabilities before I implement this.

By: Johnny Chadda

Johnny Chadda — Wed, 07 Oct 2009 19:26:53 +0000

Great that it works!

By: Tobes

Tobes — Wed, 07 Oct 2009 13:24:17 +0000

Thanks!
I used this on my blog too, like ws0×9 I had better luck with it in the header file!

By: Johnny Chadda

Johnny Chadda — Thu, 13 Aug 2009 20:44:10 +0000

It’s probably best not to modify the core files since they will be overwritten on update. Are you sure that you are putting the code at the top of the theme files? Directly after

By: ws0x9

ws0x9 — Thu, 13 Aug 2009 20:32:20 +0000

I had better luck putting your code into:

wp-blog-header.php

right uder where wordpress loads:

wp();

Putting it in the template kept giving me errors that the header was already sent.