From fed4758ba2168fda18b72bd16e7f8e798f812735 Mon Sep 17 00:00:00 2001 From: Ben Huson Date: Thu, 29 Oct 2015 07:42:04 +0000 Subject: [PATCH] Version 2.0.2 --- password-protected.php | 4 ++-- readme.txt | 17 +++++++++++++++-- 2 files changed, 17 insertions(+), 4 deletions(-) diff --git a/password-protected.php b/password-protected.php index d9fa6c6..5008738 100644 --- a/password-protected.php +++ b/password-protected.php @@ -4,7 +4,7 @@ Plugin Name: Password Protected Plugin URI: https://wordpress.org/plugins/password-protected/ Description: A very simple way to quickly password protect your WordPress site with a single password. Please note: This plugin does not restrict access to uploaded files and images and does not work on WP Engine or with some caching setups. -Version: 2.0.1 +Version: 2.0.2 Author: Ben Huson Text Domain: password-protected Author URI: http://github.com/benhuson/password-protected/ @@ -42,7 +42,7 @@ class Password_Protected { - var $version = '2.0.1'; + var $version = '2.0.2'; var $admin = null; var $errors = null; diff --git a/readme.txt b/readme.txt index d56c17a..982b829 100644 --- a/readme.txt +++ b/readme.txt @@ -2,8 +2,8 @@ Contributors: husobj Tags: password, protect, password protect, login Requires at least: 3.5 -Tested up to: 4.2.3 -Stable tag: 2.0.1 +Tested up to: 4.3.1 +Stable tag: 2.0.2 License: GPLv2 or later A very simple way to quickly password protect your WordPress site with a single password. @@ -59,6 +59,9 @@ You must be an administrator (have the manage_options capability) and in the Pas Just add a "password-protected=logout" query to your URL. eg. http://www.example.com/?password-protected=logout += How can I redirect to a different domain name when logging out? = +If passing a redirect URL using 'redirect_to' when logging out you need you may need to use the [allowed domain names](https://codex.wordpress.org/Plugin_API/Filter_Reference/allowed_redirect_hosts) filter to allow redirecting to an external domain. + = Where can I report bugs and issues? = Please log issues and bugs on the plugin's [GitHub page](https://github.com/benhuson/password-protected/issues). You can also submit suggested enhancements if you like. @@ -77,6 +80,10 @@ More instructions can be found at [wp-translations.org](http://wp-translations.o == Changelog == += 2.0.2 = +* Only redirect to [allowed domain names](https://codex.wordpress.org/Plugin_API/Filter_Reference/allowed_redirect_hosts) when logging out. +* Check allowed IP addresses are valid when saving. + = 2.0.1 = * Security fix: Use a more complex password hash for cookie key. Props Marcin Bury, [Securitum](http://securitum.pl). * Split logout functionality into separate function. @@ -167,6 +174,12 @@ More instructions can be found at [wp-translations.org](http://wp-translations.o == Upgrade Notice == += 2.0.2 = +Only redirect to [allowed domain names](https://codex.wordpress.org/Plugin_API/Filter_Reference/allowed_redirect_hosts) when logging out. + += 2.0.1 = +Security fix: Use a more complex password hash for cookie key. + = 2.0 = Added 'password_protected_logout_link' shortcode and use 'password-protected-login.css' in theme folder if it exists.