{eac}Doojigger Reference

security_extension extends abstract_extension
in package

eacDoojigger

Extensions

Extension: security - security features - {eac}Doojigger for WordPress

ALIAS


    public
        string
    ALIAS
    = 'security'

extension alias

ALLOW_ADMIN


    public
        constructor
    ALLOW_ADMIN
    = 0b1

flags (actual values subject to change)

ALLOW_ALL


    public
        mixed
    ALLOW_ALL
    = self::ALLOW_ADMIN | self::ALLOW_NETWORK | self::ALLOW_CRON | self::ALLOW_CLI

ALLOW_CLI


    public
        mixed
    ALLOW_CLI
    = 0b10000

ALLOW_CRON


    public
        mixed
    ALLOW_CRON
    = 0b1000

ALLOW_NETWORK


    public
        mixed
    ALLOW_NETWORK
    = 0b100

ALLOW_NON_PHP


    public
        mixed
    ALLOW_NON_PHP
    = 0b100000

DEFAULT_DISABLED


    public
        mixed
    DEFAULT_DISABLED
    = 0b1000000

ENABLE_OPTION


    public
        string|array<string|int, mixed>|bool
    ENABLE_OPTION
    = null

to set (or disable) default group display/switch false disable the 'Enabled'' option for this group string the label for the 'Enabled' option array override options for the 'Enabled' option (label,help,title,info, etc.)

ONLY_ADMIN


    public
        mixed
    ONLY_ADMIN
    = 0b10

TAB_NAME


    public
        string
    TAB_NAME
    = 'Security'

extension tab name

VERSION


    public
        string
    VERSION
    = '24.1113.1'

extension version

__call()

magic method to call plugin or extension methods


    public
                    __call(mixed $method, mixed $arguments) : mixed

Parameters

$method : mixed: the method name or [extension,method]
$arguments : mixed: the arguments to method name

Return values

mixed —

result of method called

__construct()

constructor method


    public
                    __construct(object $plugin) : void

Parameters

$plugin : object: main plugin object

Return values

void —

__destruct()

destructor method


    public
                    __destruct() : void

Return values

void —

__get()

magic method to call parent plugin __get()


    public
                    __get(string $property) : mixed

Parameters

$property : string: the property name or extension name

Return values

mixed —

result of plugin __get()

addActionsAndFilters()

Add filters and actions - called from main plugin


    public
                    addActionsAndFilters() : void

Return values

void —

addShortcodes()

Add extension shortcodes


    public
                    addShortcodes() : void

Called after loading, instantiating, and initializing all extensions

Return values

void —

admin_options_help()

Add help tab on admin page


    public
                    admin_options_help() : void

Return values

void —

admin_options_settings()


    public
                    admin_options_settings() : void

Return values

void —

block_ip_address()

block ip/host address


    public
                    block_ip_address() : void

Return values

void —

checkCookieFlags()

set flags in Set-Cookie headers before output (used by header_register_callback)


    public
                    checkCookieFlags() : void

Return values

void —

disable_code_edit()

disable code editor


    public
                    disable_code_edit() : void

Return values

void —

disable_code_edit_error()

DISALLOW_FILE_EDIT was already set


    public
                    disable_code_edit_error() : void

Return values

void —

disable_embeds()

disable oEmbed creds: https://kinsta.com/knowledgebase/disable-embeds-wordpress/


    public
                    disable_embeds() : void

Return values

void —

disable_file_mods()

disable file mods


    public
                    disable_file_mods() : void

Return values

void —

disable_file_mods_error()

DISALLOW_FILE_MODS was already set


    public
                    disable_file_mods_error() : void

Return values

void —

disable_invalid_json()

disable invalid json request


    public
                    disable_invalid_json() : mixed

Return values

mixed —

disable_invalid_xml()

disable invalid xml request


    public
                    disable_invalid_xml() : mixed

Return values

mixed —

disable_pings()

disable xml-rpc pings


    public
                    disable_pings(mixed $methods) : void|array<string|int, mixed>

Parameters

$methods : mixed

Return values

void|array<string|int, mixed> —

empty array of xmlrpc methods

disable_rest()

disable REST API


    public
                    disable_rest() : void

Return values

void —

disable_rest_all()

disable All REST API


    public
                    disable_rest_all(mixed $endpoints) : WP_Error

Parameters

$endpoints : mixed

Return values

WP_Error —

disable_rest_auth()

disable un-authenticated REST API


    public
                    disable_rest_auth(mixed $endpoints) : WP_Error

Parameters

$endpoints : mixed

Return values

WP_Error —

disable_rest_core()

disable WP Core REST API


    public
                    disable_rest_core(mixed $endpoints) : void

Parameters

$endpoints : mixed

Return values

void —

disable_rest_list()

disable REST API index/list


    public
                    disable_rest_list(mixed $response) : void

Parameters

$response : mixed

Return values

void —

disable_rss_feeds()

disable rss feeds


    public
                    disable_rss_feeds() : void

Return values

void —

disable_rss_response()

disable rss feeds


    public
                    disable_rss_response() : void

Return values

void —

disable_uris()

disable uri


    public
                    disable_uris() : void

Return values

void —

disable_xml()

disable xml-rpc


    public
                    disable_xml(mixed $methods) : void|array<string|int, mixed>

Parameters

$methods : mixed

Return values

void|array<string|int, mixed> —

empty array of xmlrpc methods

early_addActionsAndFilters()

Add filters and actions - called from constructor


    public
                    early_addActionsAndFilters() : mixed

Return values

mixed —

getAlias()

get the extension alias


    public
                    getAlias() : const

Return values

const —

ALIAS string

getClassName()

getClassName - get the class/extension name without namespace


    public
                    getClassName([object $class = null ]) : bool

Parameters

$class : object = null: optional class object

Return values

bool —

getVersion()

get the extension version


    public
                    getVersion() : const

Return values

const —

VERSION string

initialize()

initialize method - called from main plugin


    public
                    initialize() : void

Return values

void —

invalid_rest()

invalid rest call


    public
                    invalid_rest(mixed $args) : void|array<string|int, mixed>

Parameters

$args : mixed

Return values

void|array<string|int, mixed> —

empty array of xmlrpc methods

invalid_rest_auth()

disable un-authenticated REST API


    public
                    invalid_rest_auth(mixed $result) : WP_Error

Parameters

$result : mixed

Return values

WP_Error —

invalid_xml()

invalid xml-rpc call


    public
                    invalid_xml(mixed $args) : void|array<string|int, mixed>

Parameters

$args : mixed

Return values

void|array<string|int, mixed> —

empty array of xmlrpc methods

is_network_enabled()

is_network_enabled - set or test extension enabled for use at the network level


    public
                    is_network_enabled() : bool

Return values

bool —

is_network_option()

is this class network enabled and does option match a value


    public
                    is_network_option(string $optionName[, mixed $value = null ]) : bool|mixed

Parameters

$optionName : string: option name
$value : mixed = null: check this value

Return values

bool|mixed —

option is set and has value

isEnabled()

isEnabled - set or test extension enabled for use


    public
                    isEnabled([bool|string $enabled = null ][, bool $perm = null ]) : bool

Parameters

$enabled : bool|string = null: true|false or other extension name
$perm : bool = null: optional, to permanently set enabled option

Return values

bool —

isNetworkPolicy()

is network option set


    public
                    isNetworkPolicy(string $optionName) : bool

Parameters

$optionName : string

policy/option name

Return values

bool —

isPolicyEnabled()

is site or network option set


    public
                    isPolicyEnabled(string $optionName[, string $value = null ]) : bool

Parameters

$optionName : string

policy/option name

$value : string = null

check for specific value

Return values

bool —

match_disabled_uris()

disable uri


    public
                    match_disabled_uris(mixed $optionName) : void

Parameters

$optionName : mixed

Return values

void —

mergePolicies()

merge site and network policies


    public
                    mergePolicies(string $optionName[, mixed $default = [] ][, bool $getPost = true ]) : mixed

Parameters

$optionName : string

policy/option name

$default : mixed = []

default value & type returned

$getPost : bool = true

POSTed values

Return values

mixed —

register_risk_action()

default action for 'register_risk', overridden by risk_assessment extension action {plugin}_register_[threat|fraud|abuse|risk]


    public
                    register_risk_action([string $message = '' ], int $score[, int $http_status = 403 ]) : mixed

Parameters

$message : string = '': additional comment text
$score : int: risk score (0-100)
$http_status : int = 403: optional, set http status on die

Return values

mixed —

set_heartbeat()

heartbeat_settings


    public
                    set_heartbeat(mixed $options) : array<string|int, mixed>

Parameters

$options : mixed

Return values

array<string|int, mixed> —

heartbeat parameters (interval set)

unauthorized_rest()

unauthorized rest call


    public
                    unauthorized_rest(mixed $args) : void|array<string|int, mixed>

Parameters

$args : mixed

Return values

void|array<string|int, mixed> —

empty array of xmlrpc methods

validate_authentication_attempts()

validate authentication attempts


    public
                    validate_authentication_attempts( $user, mixed ...$args) : WP_Error

Parameters

$user :: user data
$args : mixed

Return values

WP_Error —

or $user

validate_http_header()

require a specific http header


    public
                    validate_http_header(bool $required) : void

Parameters

$required : bool

Return values

void —

validate_password_policy()

validate password policy


    public
                    validate_password_policy(WP_Error $wpErrors, mixed ...$args) : WP_Error

Parameters

$wpErrors : WP_Error
$args : mixed

Return values

WP_Error —

welcome_email_filter()

welcome email filter


    public
                    welcome_email_filter(string $content) : string

Parameters

$content : string: email message content

Return values

string —

wp_login_authenticate()

wp_login post action - validate custom nonce


    public
                    wp_login_authenticate(object $user, mixed ...$args) : object

Parameters

$user : object: wp_user or wp_error
$args : mixed

Return values

object —

$user

wp_login_filter()

wp_login filter


    public
                    wp_login_filter(string $url, string $path, string $scheme[, int|null $blogId = null ]) : string

Parameters

$url : string: complete url
$path : string: path of url
$scheme : string: http|https
$blogId : int|null = null: site id or null (current)

Return values

string —

url

wp_login_form()

wp_login form action - add custom nonce


    public
                    wp_login_form() : void

Return values

void —

wp_login_init()

wp_login init action


    public
                    wp_login_init() : void

Return values

void —

wp_login_notice()

wp_login notice


    public
                    wp_login_notice([ $newLogin = null ]) : void

Parameters

$newLogin : = null: new login url or ''

Return values

void —

wp_login_redirect()

wp_login redirect action


    public
                    wp_login_redirect(mixed $location) : void

Parameters

$location : mixed

Return values

void —

wp_nonce_failure()

wp_nonce_failure (wp_verify_nonce_failed)


    public
                    wp_nonce_failure() : void

Return values

void —

security_extension extends abstract_extension in package eacDoojigger Extensions

Tags

Table of Contents

Constants

ALIAS

ALLOW_ADMIN

ALLOW_ALL

ALLOW_CLI

ALLOW_CRON

ALLOW_NETWORK

ALLOW_NON_PHP

DEFAULT_DISABLED

ENABLE_OPTION

ONLY_ADMIN

TAB_NAME

VERSION

Methods

__call()

Parameters

Return values

__construct()

Parameters

Return values

__destruct()

Return values

__get()

Parameters

Return values

addActionsAndFilters()

Return values

addShortcodes()

Return values

admin_options_help()

Tags

Return values

admin_options_settings()

Tags

Return values

block_ip_address()

Return values

checkCookieFlags()

Return values

disable_code_edit()

Return values

disable_code_edit_error()

Return values

disable_embeds()

Return values

disable_file_mods()

Return values

disable_file_mods_error()

Return values

disable_invalid_json()

Return values

disable_invalid_xml()

Return values

disable_pings()

Parameters

Return values

disable_rest()

Return values

disable_rest_all()

Parameters

Return values

disable_rest_auth()

Parameters

Return values

disable_rest_core()

Parameters

Return values

disable_rest_list()

Parameters

Return values

disable_rss_feeds()

Return values

disable_rss_response()

Return values

disable_uris()

Return values

disable_xml()

security_extension extends abstract_extension
in package

eacDoojigger

Extensions