Description
TechnologyWisdom Secure Login Path lets you change the default WordPress login URL (wp-login.php) and restrict direct access to wp-admin by replacing it with a custom slug of your choice, improving security by reducing exposure to brute-force attacks and automated bots. The plugin is lightweight, easy to configure, and does not modify any core WordPress files, ensuring safe updates and broad compatibility with themes and plugins, while also offering a cleaner and more branded login experience for administrators.
Features
- Set a custom login URL slug to replace the default WordPress login page
- Block direct access to wp-login.php to reduce unauthorized login attempts
- Restrict or protect access to wp-admin for improved backend security
- Secure logout handling to ensure sessions are properly terminated
- Fully compatible with native WordPress authentication system
- Safe redirect validation to prevent open redirect vulnerabilities
License
This plugin is licensed under the GPL-2.0+ License.
You can freely use, modify, and distribute it under the terms of this license.
Full license: https://opensource.org/licenses/GPL-2.0
Screenshots
Installation
- Upload the plugin to
/wp-content/plugins/ - Activate the plugin through the ‘Plugins’ menu in WordPress
- Go to Settings Secure Login Path
- Set your custom login slug
- Save settings
FAQ
-
What does this plugin do?
-
This plugin hides the default WordPress login URL and allows administrators
to use a custom login slug for improved security. -
Does this plugin improve WordPress security?
-
Yes. It helps reduce brute-force login attempts and automated bot attacks
by hiding the default login page. -
Can I customize the login URL?
-
Yes. You can set any custom slug such as: yourwebsite.com/my-login
instead of: yourwebsite.com/wp-login.php -
What happens to wp-login.php?
-
The plugin blocks direct access to wp-login.php and can either show a 404 page
or redirect visitors depending on your settings. -
Will this plugin affect the WordPress admin area?
-
No. Logged-in users can still access the WordPress admin dashboard normally.
-
Can users still reset their passwords?
-
Yes. Lost password and password reset functionality continue to work properly.
-
Does this plugin work with caching plugins?
-
Yes. After changing the login slug, you should clear your website cache
and resave permalinks. -
What should I do after changing the login URL?
-
Go to: Settings Permalinks and click “Save Changes” to refresh WordPress rewrite rules.
-
What if I forget my login URL?
-
Deactivate the plugin via FTP or File Manager by renaming the plugin folder,
then login normally and reactivate the plugin. -
Does this plugin replace WordPress authentication?
-
No. It uses the native WordPress login system internally.
-
What happens if I deactivate the plugin?
-
Your website automatically returns to the default WordPress login URL: /wp-login.php
-
Does this plugin require coding knowledge?
-
No. Everything can be configured directly from the WordPress admin panel.
Reviews
There are no reviews for this plugin.
Contributors & Developers
“TechnologyWisdom Secure Login Path” is open source software. The following people have contributed to this plugin.
Contributors
Translate “TechnologyWisdom Secure Login Path” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
1.0.0
- Initial release
- Custom login URL support
- wp-login.php blocking
- wp-admin protection
- Secure logout handling
- Native WordPress login integration
- Safe redirect validation