wpdotnet-sdk
wpdotnet-sdk copied to clipboard
[Feature] protect login page
it would be good if you could change/protect/hide the login page via a configuration option; without the need to change source. IMHO this is something needed for security; maybe event placing the page behind a secured ASP.NET authenticated area could be an option have a user given TWO usernames/passwords ?
That is a nice feature. Currently, you can protect the wp-login.php
page with ASP.NET Core Authentication services and authentication middleware, or something like
app.Use((ctx, next) => {
if (!ctx.Context.User.Identity.IsAuthenticated) {
ctx.Context.Response.StatusCode = (int)HttpStatusCode.Unauthorized;
} else {
next(ctx);
}
}
eventually with the check for Request URL and redirecting to a sign in page.
This can be built in wpdotnet, just not sure for now, how to make it nicely