This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
/** | |
* Perform any secondary checks before Shield verifies the 2FA nonce. | |
* If any of your checks fail, throw a new \Exception() with the error message you'd like to display to user. | |
*/ | |
add_action( 'shield/2fa/email/pre_send_email/pre_nonce_verify', function ( \WP_User $user, string $plainNonce ) { | |
// e.g. this is a trivial example and not an actual check that is required. | |
// The message 'User ID is invalid.' will be displayed to the user. | |
if ( $user->ID < 1 ) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
/** | |
* Be sure to place this in your theme's functions.php or if you're including | |
* it within a plugin, ensure that it runs before WP's 'init' action has executed. | |
* | |
* This will prevent Shield's Site Health components from executing and populating | |
* WP Site Health area with Security recommendations. | |
*/ | |
add_filter( 'shield/can_run_site_health_security', '__return_false' ); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
use FernleafSystems\Wordpress\Plugin\Shield\Modules\HackGuard\Scan\Controller; | |
/** | |
* Launching on-demand scans for Shield Security can be done using the function outlined below. | |
* It requires a single array parameter that contains the so-called "slugs" of the respective scans. | |
* | |
* Shield currently has 3 distinct scan types, namely: | |
* - AFS: file scanner, (WordPress, plugin, themes, malware scan) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
/** | |
* Easy Digital Downloads will send license expiration notices for any licenses, even if they | |
* have been refunded. This is not ideal. | |
* | |
* This filter will prevent such notices being sent if any payments associated with this | |
* license have been refunded. | |
* | |
* This may not be applicable in cases where you EDD store supports multiple products in |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
/** | |
* Use this filter to tell Shield to block a request. | |
* | |
* By default, Shield will block requests solely based on the IP reputation for that site. | |
* | |
* With this filter, you can change these criteria. | |
* | |
* In this example we want to block all access to the WP admin and WP login areas and |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php declare( strict_types=1 ); | |
/** | |
* Use this filter to tell Shield to NOT run the NotBot JS system. | |
* | |
* If you disable the NotBot JS system then you will likely lock-out visitors. | |
* | |
* Use of this filter is at your own risk. | |
*/ | |
add_filter( 'shield/can_run_antibot', function ( $canRun ) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
/** | |
* Note: Only available from Shield v11.2+ | |
* | |
* Use this filter to tell Shield whether or not the Plugin Security Badge should be displayed or not. | |
* | |
* More Info on badge here: https://getshieldsecurity.com/blog/feature-plugin-badge/ | |
* | |
* For example, you may only want to show the badge if the visitor is not on a mobile (see below). |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
/** | |
* Use this filter to tell Shield to NOT automatically whitelist certain providers. | |
* | |
* By default Shield will never block official service providers and web crawlers. You can turn off this behaviour on | |
* a per-service basis using this filter. | |
* | |
* Understand that Shield doesn't then "block" the provider, it simply no longer gives it a free pass. If it abuses your | |
* resources or performs requests that cause offenses, it may be then blocked by Shield. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
/** | |
* The Scanner cron job run by the Shield plugin is responsible for executing the scans. | |
* If you're running ShieldFREE, the scans runs automatically once per day. On ShieldPRO, it can repeat up to every hour. | |
* | |
* The Cron is configured to have a start time - i.e. the first time that the cron will execute. Then it repeats based on your settings. | |
* | |
* If the hour at which the cron is set to run is 3 a.m. (the default), it will first run the next day at 3am, and then | |
* every day thereafter at 3 a.m. If this default hour doesn't suit, you can change it using a WordPress filter. | |
* |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<?php | |
/** | |
* You may automatically add any WordPress site to your iControlWP account by using the "code run" | |
* or "code snippets" feature in ManageWP. | |
* | |
* Please follow these steps: | |
* | |
* 1) Install and activate the iControlWP plugin on your WordPress site. | |
* 2) Grab your "AUTHENTICATION_KEY" from your iControlWP account: | |
* - https://app.icontrolwp.com/profile/preferences |
NewerOlder