Hello,
There is a plugin of multisite-auth:https://www.ads-software.com/plugins/multisite-auth/, which support assign one of any subsite as login/register/reset password site.
So, now with the advantage of Multisite-auth, it is possible to completely hide the main/root site and redirect users to a subsite based on roles/visiter, since administrator can login site on any one of subsite, and then go to main site dashboard.
It would be great if network Privacy support redirect any visitors and other user roles to customed URL both frontend and backend.
Would you please let me know whether it is possible to do, thanks, and have a nice day.
Alex
]]>Hi there,
The robots.txt file generated by the plugin is considered too restrictive these days. Ideally nothing is blocked but here’s a good post by Yoast outlining the case with regards to WP.
It seems your plugin has the following by default:
'',
'/wp-admin',
'/wp-includes',
'/wp-login.php',
'/wp-content/plugins',
'/wp-content/cache',
'/wp-content/themes',
'/trackback',
'/comments'All in all, by default, WP doesn’t block anything anymore expect access to /wp-admin/ while still granting access to admin-ajax.php:
User-agent: *
Disallow: /wp-admin/
Allow: /wp-admin/admin-ajax.phpHowever the biggest issue is blocking access to /wp-content/themes. This effectively disables Google bot’s ability to render pages properly which certainly hurts SEO.
You provide a filter the change the values and that is great, but I would recommend you follow the WP defaults and let devs be more restrictive if they please.
In any case, thanks for the plugin, it’s really helpful for our uses!
]]>Hi,
I am working on a multi-site platform and trying to figure out how to allow certain user-types to have access to a specific site(s).
For example, I like to give access to roles “authors” and “sellers” to MyDomain.com/Site1 and for roles “customers” and “authors” to MyDomain.com/Site2
Will your plugin help me to accomplish what I need?
Any tips will greatly be appreciated.
Cheers!
]]>Plugin seems to be working ok for pages and posts.
But google has indexed media content inside a blog configured as “subscriber’s only”. Now google shows “protected” blog images when searching for images with domain as keyword.
Any suggestion?
]]>Hi,
Great plugin and it works great. Though after installation the statistics stoped working totally.
Can this be fixed?
Yoni
]]>Hi There,
Could you make the plugin translatable?
We would provide German translation in return.
Cheers, T
]]>I have a WP Network Sub-directories install.
In the mysite.com/community/ I have this plugins activated and configured:
– Invite Anyone 1.3.7 and configured: ”Allow email invitations to be accepted even when site registration is disabled”
– BuddyPress 2.2.3.1
Network activated:
Network Privacy 0.1.4: ”I would like my site to be visible only to Registered network users.”
The link in the invitation email:
https://mysite.com/community/register/?iaaction=accept-invitation&email=test@test@com
Now, the registration page display the registration form, but when I click the ”Complete Sing Up” button… the page redirects to the login page instead of showing the confirmation message: “Check Your Email To Activate Your Account!”.
Maybe someone have a workaround…
Thank you for taking the time with this.
https://www.ads-software.com/plugins/network-privacy/
https://www.ads-software.com/plugins/invite-anyone/
I am wondering if this plugin can help us deal with part of a larger problem described below.
If I first use a plugin to have a new user become registered for all subsites, can I then make some of those subsites private using your Network Privacy plugin?
I am looking at:
https://www.ads-software.com/plugins/multisite-user-management/
and
https://www.ads-software.com/support/plugin/join-my-multisite
OUR LARGER PROBLEM:
Need to improve User Experience during registration for a sub-site in a Multisite installation with a single BuddyPress social network. We want the Platform to be a unified social network. Sub-sites serve special purposes.
WHAT WE CAN DO:
If someone enters the Multisite platform by registering for the Primary site it is possible to have them join a BuddyPress Group and be registered for the Group Blog (Multisite sub-site) that has been associated with the Group.
THE BAD USER EXPERIENCE WE WANT TO IMPROVE:
If someone comes to the sub-site first and wants to register, they are taken to the registration form on the Primary site that has them fill out fields for the BuddyPress extended profile. At both that point and after authenticating by answering the email sent to them, they are in a different place (Primary Site) from where they started and there is no help for how to get back to where they started.
SUGGESTIONS?
I have to believe others have solved this problem, but I have been unable to uncover solutions.
Plugin works nicely – tested with 4.1.1
However I noticed a few issues. I went ahead and fixed them locally – thought I’d post them here in case you wanted to update the plugin – although I see it is no longer maintained.
* Blog name on login page has unneccessary linebreak. This is because bloginfo echoes. SHould use get_bloginfo instead.
* CSS wasn’t loading on redirect page.
* Escaped things on output to.
https://dl.dropboxusercontent.com/u/21013057/network-privacy.zip
]]>I am trying to decide if this approach will be acceptable for home owners association. Where does a site subscriber get their ID? Is it a site ID or an ID for all www.ads-software.com sites? Assuming there is an “I want to be a subscriber” link, can the associated signup email messages be customized to relate to the site?
Is there an “Invite users” capability?
Thanks
]]>Hello, can a version that is compatible with 4.0 be rolled out? This plugin is showing that it hasnt been updated in 2 years, but it has been working fine through all those versions… would be good to roll out and just a compatibility declared version to update it.
]]>Hey Ron/Andrea,
We (The CTLT team at UBC) recently began updating all of our plugins to ensure they have no warnings when WP_DEBUG is turned on. We noticed that this plugin was causing a couple, so we went ahead and fixed them.
They’re relatively minor, but have gone ahead and threw them up on github (hopefully easier to see that way)
https://github.com/ubc/ra-network-privacy/commit/018d893a906fea6e0301d5abd8855abbde370345
Thanks for a great plugin!
]]>Hi everyone!
One question… Is it possible to index just the login area of my website?? Ok, i explain myself.
I have a private website just for subscribers (who the admins register first) and we send the passwords and users to theirs emails… the problem comes when the people use to tip the page in google and we dont appear there… do you know what i mean?? some people tip the pages in google, not directly at the url place… so when they do that we do not appear, because we use (and love) your plugin… so my question again.. is it possible just to index the login page in order to get at least that on google?? Thank you!
]]>Hey Ron – I just noticed that when you have NP enabled at the network level, the individual site setting “Discourage search engines from indexing this site” that’s on the Settings ? Reading page will not save when checked. You can check it all you want, hit save, but the checkbox returns to unchecked each time.
Confusing usability, even tho the option is, at that point, irrelevant.
]]>Thanks for the excellent plugin! I ran into an issue with the robots.txt file not pointing to our custom content directory and made a quick change to the plugin (at line 100) to check to see if WP_CONTENT_DIR is defined, and if so to use that instead of wp-content.
if ( WP_CONTENT_DIR ) {
$dirs = pathinfo( WP_CONTENT_DIR );
$dir = $dirs['basename'];
} else {
$dir = 'wp-content';
}
echo "Disallow:\n";
echo "Disallow: /wp-admin\n";
echo "Disallow: /wp-includes\n";
echo "Disallow: /wp-login.php\n";
echo "Disallow: /" . $dir . "/plugins\n";
echo "Disallow: /" . $dir . "/cache\n";
echo "Disallow: /" . $dir . "/themes\n";
echo "Disallow: /trackback\n";
echo "Disallow: /comments\n";Hi,
I have the network privacy plugin activated on subsite of my multisite. As woocommerce is activated, there is a conflict with redirect to lost password page and the redirection ends to wp-login.php. Now woocommerce is redirecting lost password to mydomain/my-account/lost-password. As the site pages is not accessible to non subscribers, I am unable to help my site users to change password when these two plugins are activated. help will be highly appreciated. Thanks
Cheers
Satish
Hello All,
I am running this plugin with WP 3.5.2 and BuddyPress 1.8.
I would like the entire site to be protected from access by non-logged in users. However, if you navigate to https://sitename/groups the page is displayed.
Can this plugin be modified to protect the BuddyPress pages?
]]>Has anyone else encountered an issue with mod_security logging each page view as an unsuccessful login attempt? My host keeps locking me out of one of the sites on which I have this plugin installed, because mod_security is logging an unsuccessful login attempt every time I load a page in WordPress after logging in.
Following is an excerpt from the log information my host provided me:
[Mon May 06 07:49:57 2013] [error] [client XXX.XX.XXX.XX] ModSecurity: Warning. Operator GT matched 0 at USER:bf_block. [file "/usr/local/apache/conf/includes/pre-virtual.d/modsec_custom.conf"] [line "13"] [id "2"] [msg "ip address blocked for 5 minutes, more than 15 login attempts in 3 minutes."] [hostname "subdomain.example.com"] [uri "/wp-login.php"] [unique_id "UYem9TIXyfQAAC3GW0AAAABC"]
[Mon May 06 11:26:56 2013] [error] [client XXX.XX.XXX.XX] ModSecurity: Warning. Operator GT matched 5 at IP:bf_counter. [file "/usr/local/apache/conf/includes/pre-virtual.d/modsec_custom.conf"] [line "18"] [id "4"] [msg "failed wp-login login attempt"] [hostname "subdomain.example.com"] [uri "/wp-login.php"] [unique_id "UYfZ0DIXyfQAAEfMFdcAAAAb"]
[Mon May 06 11:28:01 2013] [error] [client XXX.XX.XXX.XX] ModSecurity: Warning. Operator GT matched 0 at USER:bf_block. [file "/usr/local/apache/conf/includes/pre-virtual.d/modsec_custom.conf"] [line "13"] [id "2"] [msg "ip address blocked for 5 minutes, more than 15 login attempts in 3 minutes."] [hostname "subdomain.example.com"] [uri "/wp-login.php"] [unique_id "UYfaETIXyfQAAFYqqikAAAA0"]If I disable the Network Privacy plugin, I don’t seem to get locked out by my host.
Is this some sort of an issue with the way the plugin and/or WordPress runs the authentication verification, or is this possibly something mis-configured in my host’s mod_security settings (they supposedly have it set up so that multiple unsuccessful login attempts from the same IP automatically lock that IP out of the site for a period of time)?
Thanks for any advice or direction you can provide.
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hello,
Is it possible to add another available page (terms and conditions before signup?)
Maybe I could write this into the code?
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hi Ron,
I would like to redirect a user visiting another website on the network to his/hers own login screen. This instead of the ‘refresh’ screen which is confusing for the user in my case. I’ve been trying to customize the code myself, I expect it’s just a line, but I’m not much of a coder…
Could you help me out?
Thanks,
Nick
https://www.ads-software.com/extend/plugins/network-privacy/
]]>I’m using buddy press for the first time and wondered with this privacy Network Privacy can I use a social log-I system like
https://www.ads-software.com/extend/plugins/loginradius-for-wordpress/
or other social log-in’s
Thanks
Kimberly
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hello, I set the network to Must be registered user which is what I want. I want a person to have to be registered and approved by admin to see the site. However on the log in page when you click registered it stays on the log in page. It will give me forgot password but won’t allow people to register.
How do I keep the site private but allow people to registered so can approve them?
Thanks
Kimberly
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hi,
I propose changing the do_robots function to get the robots_txt filter back like this:
function do_robots() {
remove_action( 'do_robots', 'do_robots' );
header( 'Content-Type: text/plain; charset=utf-8' );
do_action( 'do_robotstxt' );
$output = "User-agent: *\n";
$public = get_option( 'blog_public' );
if ( '1' != $public ) {
$output .= "Disallow: /\n";
} else {
$output .= "Disallow:\n";
$output .= "Disallow: /wp-admin\n";
$output .= "Disallow: /wp-includes\n";
$output .= "Disallow: /wp-login.php\n";
$output .= "Disallow: /wp-content/plugins\n";
$output .= "Disallow: /wp-content/cache\n";
$output .= "Disallow: /wp-content/themes\n";
$output .= "Disallow: /trackback\n";
$output .= "Disallow: /comments\n";
}
echo apply_filters('robots_txt', $output, $public);
}Cheers ??
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hi Ron, Curtiss, Scribu and (if you’re listening – I added a tag) Otto,
I just ran in to a little snag with a site on a network installation where I have Simple Google Connect running to allow users to identify with SSO. But now the site needs to go behind a login and I tried Network Privacy which works great except when trying to connect through SSO.
Whet happens is this: the login screen comes up and after hitting the SSO button the popup window with Google login form comes up (all normal here still) but after login, the popup window does not disappear like normal (redirecting to the dashboard) but instead shows the WordPress login form where my username is filled in. Nothing to indicate that there was a successful connection, nor any error messages.
The funny thing is that the connection was in fact successful because when I close the popup (ignoring the login form in that window) and hit the “Return to site” link below the original login form, the site is suddenly accessible and I’m connected ??
So it seems to be just a redirection problem.
I have activated Network Privacy on the network with the default empty setting (meaning ‘all open’, I presume?) and then set this particular site to allow only Subscribers (and up, I presume?).
Note: I also tried the plugins More Privacy Options and Multisite Privacy (from WPMUDEV) but these two actually do NOT work at all in combination with SSO by Simple Google Connect.
https://www.ads-software.com/extend/plugins/network-privacy/
]]>I am trying to configure the plugin across the network but where is Super User > Options referred to in the Plugin home page?
https://www.ads-software.com/extend/plugins/network-privacy/
]]>I am cross-posting this to the Active Directory Authentication Integration support and the Network Privacy support, as the problem exists only when both are active.
I have a multisite installation of WordPress 3.4.2 with the Active Directory Authentication Integration plugin (v0.6) and the Network Privacy plugin (v0.1.3).
The main site (which basically houses a list of sub-sites) (i.e. mysite.com) is set with ADAI to allow any AD user to login. The Network Privacy plugin is set to only show the site to site subscribers (or above). This works well to allow all faculty/staff/students to access the list of available sites.
Each sub-site is locked down to a particular AD group (department, class, etc.). For example, site mysite.com/test1 is set to only allow logins from the group “ITsupport” (and maps that group to “editors” for the test1 sub-site) and Network Privacy is set to allow site subscribers (and above) to access the site.
AD login works well, but I am having the following problem when I have Network Privacy installed:
UserA is a member of ITSupport in AD. He has never logged in to mysite.com or the mysite.com/test1 sub-site. When he goes to mysite.com, Network Privacy kicks him to the login screen, where he is able to successfully login with his AD credentials, because he is a member of the “Domain Users” group that is allowed to mysite.com via ADAI. So now he is logged into the WordPress Network. However, if he now goes to mysite.com/test1, Network Privacy does not let him in. Looking at the back end, this attempt to access mysite.com/test1 has not triggered ADAI’s function to create the user/role for this sub-site.
If UserA logs out of mysite.com and goes directly to mysite.com/test, he is able to login (ADAI creates the user/role on the sub-site) and he doesn’t have a problem with mysite.com/test1 in the future. He still has the same problem with any other sub-site that he has not DIRECTLY logged in to.
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hello,
I just installed Network Privacy on my blog and made the latter visible only to admins. I would like for people accessing my URL to see a message written by me (something like: “temporarily offline as I improve”), with perhaps a link to another site. Is this possible?
As of now, this is what everyone sees when accessing kamoweb.org: https://www.kamoweb.org/wp-login.php?redirect_to=%2F
Thanks for any info/suggestions.
Katherine
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hi Ron,
Our site uses an external auth (Shibboleth) to authenticate users. I ended up hacking your plugin to use wp_login_url. So the login_url filter used by Shibboleth still functioned. I didn’t change any of the other wp-login.php references because the Shibboleth plugin would create access once authenticated defeating the purpose of your plugin. I thought this post might help others or you might want to include the change in your next revision.
201c201
< header( ‘Location: ‘ . add_query_arg(‘redirect_to’, urlencode($$_SERVER[‘REQUEST_URI’]), wp_login_url()));
—
> header( ‘Location: ‘ . get_settings( ‘siteurl’ ) . ‘/wp-login.php?redirect_to=’ . urlencode( $_SERVER[‘REQUEST_URI’] ) );
Either way great plugin.
-Chris
https://www.ads-software.com/extend/plugins/network-privacy/
]]>Hi Ron,
Your plugin works great. Maybe even to well. My site is setup with subdirectories, which I want to network activate the subscribers only privacy setting. However I want to know if there is a way to exclude the root site? I tried setting privacy from the root site’s dashboard but the subscribers only setting is overriding it.
-Chris
https://www.ads-software.com/extend/plugins/network-privacy/
]]>What about an option to block search engines for all sites in the network?
Settings > Privacy > Site Visibility > Ask search engines not to index this site.
Now I have to go to every site and block it one by one. I think it should be nice to have an option to set the visibility for all, maybe even with exceptions.
And when I want to unblock them, I also have to go back and set it one by one. Time saving required, I guess ??
Thank you!
https://www.ads-software.com/extend/plugins/network-privacy/
]]>