Changeset 3259470
- Timestamp:
- 03/20/2025 11:10:30 PM (13 months ago)
- Location:
- bitspecter-suite/trunk
- Files:
-
- 4 edited
-
bitspecter-suite.php (modified) (2 diffs)
-
includes/Branding/BitspecterSuiteBranding.php (modified) (1 diff)
-
includes/Hardening/BitspecterSuiteHardening.php (modified) (2 diffs)
-
includes/Optimization/BitspecterSuiteOptimization.php (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
bitspecter-suite/trunk/bitspecter-suite.php
r3229325 r3259470 3 3 Plugin Name: Bitspecter Suite 4 4 Description: Kompletní sada nástrojů pro branding, optimalizaci a zabezpečení WordPress webů. 5 Version: 1. 0.05 Version: 1.1.0 6 6 Author: BitSpecter 7 7 Author URI: https://www.bitspecter.com … … 10 10 */ 11 11 12 if ( ! defined( 'ABSPATH' ) ) exit; 12 if (! defined('ABSPATH')) 13 exit; 13 14 14 15 define('BITSPECTER_SUITE_URL', plugin_dir_url(__FILE__)); 15 16 16 require_once __DIR__ . '/includes/autoload.php'; 17 require_once __DIR__.'/includes/Branding/BitspecterSuiteBranding.php'; 18 require_once __DIR__.'/includes/Hardening/BitspecterSuiteHardening.php'; 19 require_once __DIR__.'/includes/Optimization/BitspecterSuiteOptimization.php'; 17 20 18 21 use Bitspecter\Suite\Branding\BitspecterSuiteBranding; -
bitspecter-suite/trunk/includes/Branding/BitspecterSuiteBranding.php
r3259459 r3259470 45 45 public function removeAdminBarLogo($wp_admin_bar): void 46 46 { 47 if ( is_a($wp_admin_bar, 'WP_Admin_Bar')) {47 if ($wp_admin_bar->get_node('wp-logo')) { 48 48 $wp_admin_bar->remove_node('wp-logo'); 49 49 } -
bitspecter-suite/trunk/includes/Hardening/BitspecterSuiteHardening.php
r3259459 r3259470 25 25 add_action('init', [$this, 'removeUnnecessaryWpHeadItems']); 26 26 add_action('init', [$this, 'disableFileEditor']); 27 add_action('init', [$this, 'blockXmlRpcRequests']);28 add_action('init', [$this, 'enforceHttps']);29 27 add_action('init', [$this, 'blockAuthorScan']); 30 28 … … 96 94 public function addSecurityHeaders(): void 97 95 { 98 $headers = [ 99 'Strict-Transport-Security' => 'max-age=31536000; includeSubDomains; preload', 100 'X-Content-Type-Options' => 'nosniff', 101 'X-Frame-Options' => 'SAMEORIGIN', 102 'X-XSS-Protection' => '1; mode=block', 103 'Referrer-Policy' => 'no-referrer-when-downgrade', 104 ]; 105 106 foreach ($headers as $key => $value) { 107 header(sanitize_key($key).': '.sanitize_text_field($value)); 108 } 96 header("Strict-Transport-Security: max-age=31536000; includeSubDomains; preload"); 97 header("X-Content-Type-Options: nosniff"); 98 header("X-Frame-Options: SAMEORIGIN"); 99 header("X-XSS-Protection: 1; mode=block"); 100 header("Referrer-Policy: no-referrer-when-downgrade"); 109 101 } 110 102 111 public function blockXmlRpcRequests(): void112 {113 add_filter('xmlrpc_enabled', '__return_false');114 115 if (defined('XMLRPC_REQUEST') && XMLRPC_REQUEST) {116 wp_die(esc_html__('XML-RPC services are disabled.', 'bitspecter-suite'));117 }118 }119 120 121 public function enforceHttps(): void122 {123 if (wp_get_environment_type() !== 'production') {124 return;125 }126 127 $host = isset($_SERVER['HTTP_HOST']) ? sanitize_text_field(wp_unslash($_SERVER['HTTP_HOST'])) : '';128 $uri = isset($_SERVER['REQUEST_URI']) ? esc_url_raw(wp_unslash($_SERVER['REQUEST_URI'])) : '';129 130 if (! is_ssl() && $host && $uri) {131 wp_redirect('https://'.$host.$uri, 301);132 exit;133 }134 }135 103 136 104 public function blockAuthorScan(): void -
bitspecter-suite/trunk/includes/Optimization/BitspecterSuiteOptimization.php
r3259459 r3259470 86 86 { 87 87 wp_deregister_script('wp-embed'); 88 wp_deregister_script('jquery'); 88 89 if (!is_admin()) { 90 wp_deregister_script('jquery'); 91 } 89 92 } 90 93 }
Note: See TracChangeset
for help on using the changeset viewer.