=== AccessDoor - Smart Admin Login & Security ===

Contributors: itpathsolutions, wpeople, drashti16, mayur8991
Tags: login url, custom login, admin login, login page, security
Requires at least: 6.0
Tested up to: 6.9
Requires PHP: 7.4
Stable tag: 1.0.3
License: GPLv2 or later
License URI: https://www.gnu.org/licenses/gpl-2.0.html

Change the default wp login URL, set role-based login slugs, update admin usernames/emails without confirmation, enable some security features and customize the login screen.

== Description ==

It allows you change the default WordPress admin login URL and create custom login links for different user roles. It helps protect your site by blocking or redirecting access to wp-login.php or wp-admin.
You can easily update admin usernames and email addresses without confirmation emails, and customize the WordPress login screen design.
Easily harden your site with 8 built-in security features, including disabling comments, XML-RPC, REST API, file editing, directory browsing, and more—all with a single click from the plugin settings.

== Key Features ==

* Change the default WordPress admin login URL (wp-admin) to a <strong>custom login URL</strong>
* Create <strong>role-based login URLs</strong> for different WordPress user roles such as Subscriber, Vendor, SEO, or any custom role
* Instantly <strong>change the admin username</strong>
* Update <strong>admin and user email addresses without confirmation emails</strong>
* Protect your site from <strong>common or predictable admin usernames and email addresses</strong>
* Customize the WordPress login page with a <strong>custom logo, background color, or background image</strong>
* <strong>Block or redirect access</strong> to wp-login.php and wp-admin for unauthorized users
* <strong>8 security features</strong> to harden your site with a single click (see below)

== Security Features ==

Easily enable or disable these 8 security features from the plugin settings:

1. Disable Comments
2. Disable XML-RPC Pingback
3. Disable REST API
4. Disable XML-RPC
5. Block Directory Browsing
6. Disable PHP Execution in Uploads folder
7. Turn Off Pingbacks
8. Disable File Editing in Dashboard

== Screenshots ==

1. AccessDoor settings page showing role-based custom login slug configuration.
2. Login screen customization options with custom logo and background settings.
3. Admin username and email update settings without confirmation emails.
4. Security features

== Installation ==

1. Upload `accessdoor-smart-admin-login-url-control` plugin to the `/wp-content/plugins/` directory.
2. Activate the plugin through the “Plugins” menu in WordPress.
3. Go to the AccessDoor settings page from your WordPress admin dashboard to configure login options.

== Important Notes ==

* This plugin is not compatible with WordPress Multisite (Network) installations. It will not work or show settings on multisite/network sites.
* This plugin does not permanently disable default WordPress login functionality.
* A fallback access method is always available to avoid accidental lockouts.
* Administrators should keep recovery access details safe.

== Frequently Asked Questions ==

= Will this plugin lock me out of my site? =
No. The plugin includes a built-in fallback mechanism to ensure administrators can always regain access.

= Does this plugin completely disable wp-login.php? =
No. Default login endpoints are redirected based on your settings but not permanently blocked.

= Can I customize the login page design? =
Yes. You can change the background, logo, and basic layout of the login page.

= Is this plugin compatible with WooCommerce? =
Yes. It supports WooCommerce roles such as Shop Manager and Customer.

== Changelog ==

= 1.0.3 =

* New: security features
* Improvement: Clear notice and safe handling for WordPress Multisite (Network) compatibility
* Enhancement: Readme and UI updated for clarity on security features

= 1.0.2 =

* Fix: Fixed logout URL handling when custom login URLs are enabled
* Fix: Fixed reset password and lost password URL handling

= 1.0.1 =

* Improvement: Added stronger validation for role-based login URL fields
* Fix: Fixed user accessibility issues related to custom login URLs
* Fix: Resolved role-based login slug conflicts with WordPress and popular plugins
* Fix: Issue with reset and lost password links for custom login URLs

= 1.0.0 =
* Initial release

== Upgrade Notice ==

= 0.0.1 =
Initial release. Configure your custom login URL, admin usernames, user and admin emails, and login page design after installation.