Plugin / Authenticator
Inpsyde GmbHInstallation
Installation
Requirements
- WordPress version 1.5 and later.
- PHP 5.2 or later.
- Single or Multisite installation.
On PHP-CGI setups:
– mod_setenvif
or mod_rewrite
(if you want to user HTTP authentication for feeds).
Installation
- Unzip the downloaded package.
- Upload folder include the file to the
/wp-content/plugins/
directory. - Activate the plugin through the
Plugins
menu in WordPress.
or use the installer via the back end of WordPress.
On PHP-CGI setups
If you want to use HTTP authentication for feeds (available since 1.1.0 as an optional feature) you have to update your .htaccess
file. If mod_setenvif is available, add the following line to your .htaccess
:
SetEnvIfNoCase ^Authorization$ "(.+)" HTTP_AUTHORIZATION=$1
Otherwise you need mod_rewrite to be enabled. In this case you have to add the following line to your .htaccess
:
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
In a typical WordPress .htaccess
it all looks like:
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteRule . /index.php [L]
</IfModule>
On a multisite installation:
# BEGIN WordPress
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
# uploaded files
RewriteRule ^files/(.+) wp-includes/ms-files.php?file=$1 [L]
RewriteCond %{REQUEST_FILENAME} -f [OR]
RewriteCond %{REQUEST_FILENAME} -d
RewriteRule ^ - [L]
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteRule . index.php [L]
# END WordPress
Settings
You can change the settings of Authenticator in Settings → Reading. The settings refer to the behavior of your blog’s feeds. They can be protected by HTTP authentication (not all feed readers support this) or by an authentication token which is added to your feed URL as a parameter. The third option is to keep everything in place. So feed URLs will be redirected to the login page if the user is not logged in (send no auth-cookie).
If you using token authentication, you can show the token to the blog users on their profile settings page by setting this option.
HTTP Auth
Users can gain access to the feed with their username and password.
Token Auth
The plugin will generate a token automatically when choosing this option. Copy this token and share it with the people who should have access to your feed. If your token is ef05aa961a0c10dce006284213727730
the feed URLs look like so:
# Main feed
https://example.com/feed/?ef05aa961a0c10dce006284213727730
# Main comment feed
https://example.com/comments/feed/?ef05aa961a0c10dce006284213727730
# Without permalinks
https://example.com/?feed=rss2&ef05aa961a0c10dce006284213727730
API
Filters
-
authenticator_get_options
gives you access to the current authentication token:<?php
$authenticator_options = apply_filters( ‘authenticator_get_options’, array() ); -
authenticator_bypass
gives you the possibility to completely bypass the authentication. No authentication will be required then.<?php
add_filter( ‘authenticator_bypass’, ‘__return_true’ ); -
authenticator_bypass_feed_auth
gives you the possibility to open the feeds for everyone. No authentication will be required then.<?php
add_filter( ‘authenticator_bypass_feed_auth’, ‘__return_true’ ); -
authenticator_exclude_pagenows
Pass an array of$GLOBALS[ 'pagenow' ]
values to it, to exclude several WordPress pages from redirecting to the login page. -
authenticator_exclude_ajax_actions
AJAX-Actions (independend of_nopriv
) which should not be authenticated (remain open for everyone) -
authenticator_exclude_posts
List of post-titles which should remain public, like the follow example source to public the ‘Contact’-page.<?php add_action( 'plugins_loaded', function() { add_filter( 'authenticator_exclude_posts', function( $titles ) { $titles[] = 'Contact'; // here goes the post-title of the post/page you want to exclude return $titles; } ); } );
Ratings
Rating breakdown
Details Information
Version
First Released
Total Downloads
Wordpress Version
Tested up to:
Require PHP Version:
Tags
Contributors
Languages
DIRECTORY DISCLAIMER
The information provided in this THEME/PLUGIN DIRECTORY is made available for information purposes only, and intended to serve as a resource to enable visitors to select a relevant theme or plugin. wpSocket gives no warranty of any kind, express or implied with regard to the information, including without limitation any warranty that the particular theme or plugin that you select is qualified on your situation.
The information in the individual theme or plugin displayed in the Directory is provided by the owners and contributors themselves. wpSocket gives no warranty as to the accuracy of the information and will not be liable to you for any loss or damage suffered by you as a consequence of your reliance on the information.
Links to respective sites are offered to assist in accessing additional information. The links may be outdated or broken. Connect to outside sites at your own risk. The Theme/Plugin Directory does not endorse the content or accuracy of any listing or external website.
While information is made available, no guarantee is given that the details provided are correct, complete or up-to-date.
wpSocket is not related to the theme or plugin, and also not responsible and expressly disclaims all liability for, damages of any kind, arising out of the use, reference to, or reliance on, any information or business listed throughout our site.