[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fKSBfggNBO0XZSLzuocQxsAaTYZRa9IK7vi7xXMLbU9o":3},{"slug":4,"display_name":5,"profile_url":6,"plugin_count":7,"total_installs":8,"avg_security_score":9,"avg_patch_time_days":10,"trust_score":11,"computed_at":12,"plugins":13},"wprosario","wp-comblock","https:\u002F\u002Fprofiles.wordpress.org\u002Fwprosario\u002F",1,0,100,30,94,"2026-04-04T14:15:29.664Z",[14],{"slug":15,"name":16,"version":17,"author":5,"author_profile":6,"description":18,"short_description":19,"active_installs":8,"downloaded":20,"rating":8,"num_ratings":8,"last_updated":21,"tested_up_to":22,"requires_at_least":23,"requires_php":24,"tags":25,"homepage":31,"download_link":32,"security_score":9,"vuln_count":8,"unpatched_count":8,"last_vuln_date":33,"fetched_at":34},"comblock-login","Comblock Login","1.0.0","\u003Cp>\u003Cstrong>Comblock Login\u003C\u002Fstrong> is a professional and secure frontend authentication system designed to provide a seamless user experience outside the WordPress admin area. Unlike standard login plugins, Comblock allows you to transform your site into a multi-level portal through dynamic \u003Cstrong>Custom Dashboards\u003C\u002Fstrong> assigned to specific user roles.\u003C\u002Fp>\n\u003Cp>The standout feature of this plugin is the \u003Cstrong>Global Logout (Logout from all devices)\u003C\u002Fstrong>: an advanced security mechanism that enables users to terminate all active sessions across all devices with a single click, ensuring total protection if credentials are compromised. Every aspect of the login process is fortified with Nonce verification (anti-CSRF) and rigorous data sanitization, utilizing native WordPress core functions for maximum reliability.\u003C\u002Fp>\n\u003Cp>With Comblock Login, you can:\u003Cbr \u002F>\n* Create \u003Cstrong>multiple private areas\u003C\u002Fstrong> by assigning each dashboard to specific user roles (RBAC).\u003Cbr \u002F>\n* Manage the entire user journey through \u003Cstrong>dynamic shortcodes\u003C\u002Fstrong> (Login, Logout, User Info).\u003Cbr \u002F>\n* Protect data privacy by filtering which metadata to display via \u003Cstrong>developer-friendly hooks\u003C\u002Fstrong>.\u003Cbr \u002F>\n* Monitor site security through integrated logging of access errors and permission violations.\u003C\u002Fp>\n\u003Cp>This plugin doesn’t just hide the backend; it creates a secure, tailored ecosystem for your members, ensuring a smooth transition between public content and private dashboards.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Col>\n\u003Cli>\u003Cstrong>Global Session Control\u003C\u002Fstrong>: A high-end security feature allowing users to perform a \u003Cstrong>simultaneous logout from all devices\u003C\u002Fstrong>, instantly terminating every active session.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multi-Dashboard Management\u003C\u002Fstrong>: Create unlimited and dynamic restricted areas (based on Custom Post Types) by assigning \u003Cstrong>granular permissions\u003C\u002Fstrong> based on user roles.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Secure Frontend Login\u003C\u002Fstrong>: A complete authentication system integrated directly into your site’s layout via shortcodes, removing the need for users to access \u003Ccode>\u002Fwp-login.php\u003C\u002Fcode>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Smart Redirect & Access Control\u003C\u002Fstrong>: Intelligent management of post-login redirects and automatic content protection, with immediate redirection for unauthorized users.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Bulletproof Security\u003C\u002Fstrong>: Advanced protection featuring \u003Cstrong>Nonce (CSRF) verification\u003C\u002Fstrong>, input sanitization, and authentication through the secure \u003Ccode>wp_signon()\u003C\u002Fcode> native function.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Extensible User Info\u003C\u002Fstrong>: A dedicated shortcode to display profile data, featuring \u003Cstrong>developer hooks\u003C\u002Fstrong> (PHP filters) to customize which meta fields are shown or hidden.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Security Error Logging\u003C\u002Fstrong>: Integrated monitoring system that records login errors and permission breaches for total security oversight.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\n\u003Cp>Use the shortcode \u003Cstrong>\u003Ccode>[comblock_login]\u003C\u002Fcode>\u003C\u002Fstrong> to display the login form. You can insert this shortcode into any page or post.\u003Cbr \u002F>\nSimple example (only required attribute):\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_login dashboard-post-id=\"8\"]\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nComplete example (with all optional attributes):\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_login id=\"subscriber-login\" class=\"subscriber-form-login\" dashboard-post-id=\"8\" privacy-page-id=\"2\"]\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nWhere:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ccode>dashboard-post-id\u003C\u002Fcode> is mandatory and represents the ID of a Dashboard post type created in the back office.  \u003C\u002Fli>\n\u003Cli>\u003Ccode>id\u003C\u002Fcode>, \u003Ccode>class\u003C\u002Fcode>, and \u003Ccode>privacy-page-id\u003C\u002Fcode> are optional, where \u003Ccode>privacy-page-id\u003C\u002Fcode> refers to the privacy policy page ID.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Use the shortcode \u003Cstrong>\u003Ccode>[comblock_logout]\u003C\u002Fcode>\u003C\u002Fstrong> only within the \u003Cstrong>\u003Ccode>dashboard\u003C\u002Fcode>\u003C\u002Fstrong> post type to display the logout link.\u003Cbr \u002F>\nSimple example (without optional attributes):\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_logout]\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nComplete example (with optional attributes):\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_logout id=\"logout-link\" class=\"btn-logout\"]\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Use the shortcode \u003Cstrong>\u003Ccode>[comblock_disconnection]\u003C\u002Fcode>\u003C\u002Fstrong> within the \u003Cstrong>\u003Ccode>dashboard\u003C\u002Fcode>\u003C\u002Fstrong> post type to display the disconnection link.\u003Cbr \u002F>\nSimple example:\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_disconnection]\u003C\u002Fcode>\u003C\u002Fstrong>\u003Cbr \u002F>\nComplete example:\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_disconnection id=\"disconn-link\" class=\"btn-disconnect\"]\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Use the shortcode \u003Cstrong>\u003Ccode>[comblock_user_info]\u003C\u002Fcode>\u003C\u002Fstrong> within the \u003Cstrong>dashboard\u003C\u002Fstrong> post type to display user information.\u003Cbr \u002F>\nComplete example:\u003Cbr \u002F>\n\u003Cstrong>\u003Ccode>[comblock_user_info title=\"Profile Details\" fields=\"display_name,user_email,billing_phone\"]\u003C\u002Fcode>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The \u003Ccode>fields\u003C\u002Fcode> attribute accepts comma-separated user meta keys. For security, you can control which fields are accessible using the following PHP filters:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ccode>comblock_login_user_ban_fields\u003C\u002Fcode>\u003C\u002Fstrong>: Add keys to this blacklist to prevent them from being displayed, even if requested in the shortcode.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ccode>comblock_login_user_info_allowed_fields\u003C\u002Fcode>\u003C\u002Fstrong>: Use this whitelist to explicitly permit custom meta keys (like WooCommerce or ACF fields).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Example: How to allow a custom field\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd this to your \u003Ccode>functions.php\u003C\u002Fcode>:\u003Cbr \u002F>\nadd_filter(‘comblock_login_user_info_allowed_fields’, function($allowed) {\u003Cbr \u002F>\n  $allowed[] = ‘billing_phone’;\u003Cbr \u002F>\n  return $allowed;\u003Cbr \u002F>\n});\u003C\u002Fp>\n\u003Cp>These hooks enable developers to customize which user data can be displayed via the shortcode while maintaining control over security and privacy.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Security\u003C\u002Fh3>\n\u003Cp>The plugin implements the following security mechanisms:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Nonce verification for all critical login and logout actions to protect against CSRF.\u003C\u002Fli>\n\u003Cli>Sanitization of input from login forms to prevent injection.\u003C\u002Fli>\n\u003Cli>Authentication via WordPress’ secure \u003Ccode>wp_signon()\u003C\u002Fcode> function.\u003C\u002Fli>\n\u003Cli>Strict session cookie management with SSL support.\u003C\u002Fli>\n\u003Cli>Granular control of access permissions based on user roles defined for each dashboard.\u003C\u002Fli>\n\u003Cli>Complete destruction of user sessions upon logout from all devices.\u003C\u002Fli>\n\u003C\u002Ful>\n","Secure frontend login\u002Flogout with user dashboards, session management, and role-based access control for WordPress sites.",155,"2026-01-29T14:23:00.000Z","6.8.5","6.8","8.3",[26,27,28,29,30],"custom-dashboard","frontend-login","logout-all-devices","secure-login","user-management","https:\u002F\u002Fgithub.com\u002Frosario-fiorella\u002Fcomblock-login\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomblock-login.1.0.0.zip",null,"2026-03-15T15:16:48.613Z"]