描述

This plugin protects selected WP Admin accounts, and standard posts created by those Admins, from being deleted or edited by other users. This plugin is hidden from all users other than the Admin who installs it. Only users with the “Administrator” role can be protected.

This plugin might be useful if you want to share admin access with other users (i.e. IT team, developers, etc) but don’t want to risk impacting the accounts of certain Admins. Or, perhaps you’re the developer or IT member who might need this plugin to prevent other non-technical Admins from accidentally deleting your account or key Admins on specific projects.

How It Works

As soon as the plugin is activated, it will store the ID of the user that activates the plugin. The plugin will then be hidden from all users other than this user.
You can choose which Admin accounts (yours or others) to protect. Only the Admin who activates the plugin can save its settings. Other users won’t see the Settings page or the menu.
Once protected admin accounts are selected on the Settings page, other users and admins will NOT be able to:
- delete the protected Admin accounts.
- access the profile edit page for the protected Admin accounts.
- change the role of the protected Admin accounts.
- select the protected Admin accounts in the bulk actions on users list page.
Additionally, if other users or Admins, under unlikely circumstances, are able to access the user profile page of the protected Admin accounts using other plugins, this plugin will prevent any modifications from being saved.
Similar to the above, if other users or Admins are able to change the protected Admin account’s email address via the Profile page, this plugin will revert it back to the original email address.
Also, should someone attempt to edit a protected Admin’s account, the attempted action will be logged to the database. You can view recent attempts under Logs within the plugin’s section.

Important Reminder

Once you deactivate the plugin, all users with the ability to manage plugins (activate_plugins capability) will be able to see the plugin. It is advised to only deactivate the plugin when you feel safe to do so. Otherwise you can just enable or disable protection from the plugin’s Settings page.

If you want to be extra cautious (depending on your needs), you should also manually disallow file edit. This plugin doesn’t do that because some people might still need it.

define( 'DISALLOW_FILE_EDIT', true );

This plugin has NOT been tested with other user management plugins or role editor plugins. Hence its use alongside these types of plugins is not guaranteed to work as intended.

Email Notification

You can choose to get notified by email when someone attempts to modify your protected Admin accounts. Easily enable or disable email notification when you upgrade to Protect Admin PRO.

Protect Admin PRO

Be the first to know when someone is attempting to modify your protected admin accounts.
Get access to all logs and data of users who try to modify the protected admin accounts (the FREE version only records the most recent attempt).
Protect standard posts and pages made directly by protected Admins.
See more.

螢幕截圖

Plugin setting page.
Example of users list view when protection is active.
Error displayed when someone attempts to delete the protected admin account.
Error displayed when someone attempts to change role of the protected admin account.
Error displayed when someone attempts to edit the protected admin account.

安裝

Upload plugin folder to /wp-content/plugins/ directory, or install the plugin from your WordPress dashboard Plugins>Add New.
Activate the plugin.
Go to Users>User Protection to configure the plugin.

常見問題

How can I get a notification email when someone attempts to modify my protected admin accounts?: You have to upgrade to the PRO version.
How can I see who are attempting to modify my protected admin accounts?: Login to your site, and then go to Users > User Protection. The details are shown at the bottom of the option page.
Can I protect more than one administrator account?: Yes! Since version 0.2.0, you can protect more than just one admin account.
Can I translate this plugin to my language?: Yes! You can find .pot file inside the /languages directory in the plugin’s root folder.
Does this plugin work on WordPress multisite?: This plugin has not been tested on WordPress multisite. It may or may not work on WordPress multisite.
How can I protect user with custom role or roles other than admin?: At this time, only user with administator role can be protected. This might change in future updates.

評價

Chris 2023年2月20日

Simple to use plugin and does exactly what it says. This should be party of all BuddyPress, BuddyBoss or any other membership addons. Thank you!

mickhele 2021年12月29日 1 reply

I didn't know how to protect the admin with id 1, and I solved the problem quickly and easily with this plugin. Even though I didn't need more functions, I also bought the Pro version because I wanted to thank the developer with a small donation. I hope that it will be kept up to date because of its particular function in terms of security. Thanks!

dreamsoft 2021年2月5日 1 reply

thanks for this very useful plugin!

tosasilviu 2020年3月26日

Works like a champ. Thank you.

閱讀全部4個評價

貢獻者及開發者

“Protect Admin” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

Protect Admin 外掛目前已有 1 個本地化語言版本。感謝所有譯者為這個外掛做出的貢獻。

將 Protect Admin 外掛本地化為台灣繁體中文版。

對開發相關資訊感興趣？

任何人均可瀏覽程式碼、查看 SVN 存放庫，或透過 RSS 訂閱開發記錄。

修改日誌

2.0.1

Fix: Problem in Users admin page when no configured protected users yet

2.0.0

Platform functionality integration

1.1.1

Fix: Remove “delete” link on users table

1.1.0

Fix: Translation warning messages
Fix: Fails on saving empty checkbox

1.0.1

Fix: Better new features admin notices

1.0.0

New dashboard menu.
Submenu admin pages for Settings and Logs.
Option to protect posts created by protected admins from being edited or deleted.
Updated translation file.

0.4.3

Ownership updates.
Updated translation file.

0.4.2

Ownership change.

0.4.1

Bug fixed: Existing log data not saving on options page.
Updated translation file.

0.4.0

Added ability to log to the database when someone attempts to edit the protected accounts.
Added a section on the plugin option page where admin (plugin activator) can view the last 3 attempted actions.
Updated translation file.

0.3.1

Added new option for notification email.
Updated translation (.pot) file.

0.3.0

Added new action hook before wp_die instances.
Assigned 3 useful arguments for new action hook thp_paa_before_termination_wpdie.
Updated translation (.pot) file.

0.2.1

Added an additional security check before updating options.
Added function name check to avoid function name conflict.

0.2.0

Added new option and ability to protect more than one admin account.
Changed dropdown selection to tickboxes for list of admins on plugin setting page, now uses new array to store ID of protected users.
Added additional sanitization on update options line code.
Added .pot file for translation/i18n.

0.1.0

Initial release.

描述