How Password Protect WordPress Pro Works

Contents

How Password Protect WordPress Pro works

  • A page or post is considered “password protected” when you:
    • Change its Visibility under Edit screen from “Public” to “Password protected” – the default WordPress feature
    • Password protect by roles: set a password for a role while editing a page or post
    • Click on “Password protect this page” button under All Pages/Posts

Or when:

    • Its parent page or category is protected
    • The entire WordPress site is protected
    • Password protected group contains that page or post
  • We automatically generate a random password when protecting a page if there is no password created for that page yet.
    • Deleting or deactivating all password of a particular page doesn’t “unprotect” that page. You have to unprotect the page manually.
    • Unprotecting a page doesn’t remove all its passwords. They will reappear when protecting that page again.

How to Manage WordPress Protected Passwords

Create Passwords

  • Passwords must be unique within a protected post
    • You cannot create the same password across different password types, e.g. Global and Role, for a particular post
    • You cannot edit existing passwords
      • You can deactivate and delete them, together with changing their usage limit and expiry time.
  • Spaces are not allowed
    • While you can use spaces with WordPress default password protected feature (on Classic Editor) – which is a bug, you cannot do so with our plugin.

Manage Passwords

  • Usage limit: limit password usage or the number of clicks on quick access links
  • Password expiry: passwords will be automatically expired after a number of days. Expired passwords can no longer be used.
  • When a password is entered correctly, the users won’t have to enter it again within a preset period, i.e. 7 days by default
  • You have to re-enter the password when:
    • The password is deleted or deactivated
    • The password’s cookies whose expiration time can be set under our settings expire
  • One password may be set to multiple user roles and one role can have multiple passwords.
  • You can create the same passwords across different posts with ease under our plugin’s settings page. The password is called “Global (shared)”.
    • Use Group Protection to unlock multiple content at the same time
    • Apply Access Levels to passwords. Those with higher levels will automatically unlock content of the lower ones.
  • While a random password is auto-generated when you protect a post, removing all passwords doesn’t make that post become unprotected.

Master Passwords

There is an option to create Master passwords, which are not used to secure your pages and posts but to unlock all protected content at once.

In other words, if your posts are not protected before, you can’t assign a master password to lock it.

Sitewide Passwords

Sitewide password on the Free version is hashed (encrypted). That means you cannot see the password. In case you forget your password, you have to set a new one.

You can create as many passwords as you’d like to on our PPWP Pro version. There is an option to redirect users according to the passwords entered.

Use Password Suite extension to set password expiry and limit for the sitewide protection.

Related articles:

Lasted updated on April 27, 2020