Changeset 3441244

nhrrob-secure/tags/1.2.0/assets/src/components/VulnerabilityChecker.js

r3438122	r3441244
115	115	<a href="plugins.php" style={{ textDecoration: 'none', color: 'inherit' }}>
116	116	{decodeEntities(plugin.name)}
117		</a>
	117	</a>
118	118	<span style={{ fontWeight: 'normal', color: '#666' }}> ({plugin.version})</span>
119	119	</strong>

nhrrob-secure/tags/1.2.0/assets/src/index.js

-                      r3438122
+                      r3441244
 import VulnerabilityChecker from './components/VulnerabilityChecker';
 import FileScanner from './components/FileScanner';
+import Hardening from './components/Hardening';
+import SessionManager from './components/SessionManager';
+import AuditLog from './components/AuditLog';
 import './style.css';
 …
                 <CustomLoginPage settings={settings} updateSetting={updateSetting} />
                 <TwoFactorAuth settings={settings} updateSetting={updateSetting} />
+                <Hardening settings={settings} updateSetting={updateSetting} />
                 <FileProtection settings={settings} updateSetting={updateSetting} />
                 <VulnerabilityChecker />
                 <FileScanner />
+                <SessionManager settings={settings} updateSetting={updateSetting} />
+                <AuditLog settings={settings} updateSetting={updateSetting} />
             </div>
 …
     render(<SettingsApp />, rootElement);
+}

nhrrob-secure/tags/1.2.0/assets/src/style.css

-                      r3438122
+                      r3441244
+    }
+    .dark-mode .components-text-control__input {
+    .dark-mode .components-text-control__input,
+    .dark-mode .components-textarea-control__input {
         background-color: #2c3338 !important;
         border-color: #43494e !important;
         color: #f0f0f1 !important;
+    }
+    .dark-mode .components-placeholder__input::placeholder,
+    .dark-mode input::placeholder,
+    .dark-mode textarea::placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    /* Session Manager Dark Mode */
+    .dark-mode .session-item.bg-gray-50 {
+        background-color: rgba(255, 255, 255, 0.03) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item.bg-blue-50 {
+        background-color: rgba(34, 113, 177, 0.15) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item .text-gray-700 {
+        color: var(--nhrrob-secure-text) !important;
+    }
+    .dark-mode .session-item .text-gray-500 {
+        color: var(--nhrrob-secure-text-muted) !important;
+    }
+    .dark-mode .session-item .bg-blue-100 {
+        background-color: rgba(34, 113, 177, 0.3) !important;
+        color: #72aee6 !important;
+    }
+    /* Hardening Headers */
+    .nhrrob-secure-setting-subtitle {
+        @apply text-sm font-semibold mb-3 mt-0 uppercase tracking-wide opacity-80;
+        color: var(--nhrrob-secure-text-muted);
+    }
+    .dark-mode .nhrrob-secure-setting-subtitle {
+        color: #a7aaad;
+    }
 …
+    }
+}
+/* Retention Select */
+.nhrrob-secure-retention-select select {
+    @apply h-8 py-0 pr-8 pl-2 text-xs border-gray-300;
+    border-color: var(--nhrrob-secure-border);
+    color: var(--nhrrob-secure-text);
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-retention-select select {
+    background-color: #2c3338 !important;
+    /* Darker input bg */
+    border-color: var(--nhrrob-secure-border) !important;
+    color: var(--nhrrob-secure-text) !important;
+}
+.nhrrob-secure-retention-select .components-base-control__field {
+    @apply mb-0;
+}
+/* Audit Log Table */
+.nhrrob-secure-audit-table-wrapper {
+    @apply overflow-x-auto border rounded mt-5;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table {
+    @apply w-full border-collapse text-[13px];
+    background: var(--nhrrob-secure-card-bg);
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-audit-table th,
+.nhrrob-secure-audit-table td {
+    @apply p-3 text-left border-b;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table th {
+    @apply font-semibold;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+.nhrrob-secure-audit-table tr:last-child td {
+    @apply border-b-0;
+}
+.nhrrob-secure-audit-table tr:hover td {
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-badge {
+    @apply px-1.5 py-0.5 rounded text-[11px] uppercase font-medium;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+/* Dark Mode support for table */
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table-wrapper {
+    border-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table {
+    background: #1e1e1e;
+    color: #dcdcde;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table th {
+    background: #2c2c2c;
+    color: #ffffff;
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table td {
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table tr:hover td {
+    background: #2c2c2c;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-badge {
+    background: #3c434a;
+    color: #dcdcde;
+}
+.nhrrob-secure-pagination {
+    @apply flex justify-center items-center gap-4 mt-5;
+}
+.nhrrob-secure-page-info {
+    @apply text-[13px];
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-page-info {
+    color: #a7aaad;
+}
+.no-logs {
+    @apply text-center p-8 !important;
+    color: var(--nhrrob-secure-text-muted);
+}
+/* Severity indicators */
+.severity-2 td:first-child {
+    @apply border-l-4 border-l-yellow-400;
+}
+.severity-3 td:first-child {
+    @apply border-l-4 border-l-red-600;
+}

nhrrob-secure/tags/1.2.0/build/admin.asset.php

r3438122	r3441244
1		<?php return array('dependencies' => array('react', 'wp-api-fetch', 'wp-components', 'wp-element', 'wp-html-entities', 'wp-i18n'), 'version' => '~~e9b337e5f5ffe2cea663~~');
	1	<?php return array('dependencies' => array('react', 'wp-api-fetch', 'wp-components', 'wp-element', 'wp-html-entities', 'wp-i18n'), 'version' => '876f03e1a6accd816f8d');

nhrrob-secure/tags/1.2.0/build/admin.css

-                      r3438122
+                      r3441244
         justify-content: space-between;
         gap: 1rem;
+}
+    .nhrrob-secure-card-header-actions {
+        display: flex;
+        align-items: center;
+        gap: 0.75rem;
+}
 …
+    }
+    .dark-mode .components-text-control__input {
+    .dark-mode .components-text-control__input,
+    .dark-mode .components-textarea-control__input {
         background-color: #2c3338 !important;
         border-color: #43494e !important;
         color: #f0f0f1 !important;
+    }
+    .dark-mode .components-placeholder__input::-moz-placeholder, .dark-mode input::-moz-placeholder, .dark-mode textarea::-moz-placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    .dark-mode .components-placeholder__input::placeholder,
+    .dark-mode input::placeholder,
+    .dark-mode textarea::placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    /* Session Manager Dark Mode */
+    .dark-mode .session-item.bg-gray-50 {
+        background-color: rgba(255, 255, 255, 0.03) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item.bg-blue-50 {
+        background-color: rgba(34, 113, 177, 0.15) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item .text-gray-700 {
+        color: var(--nhrrob-secure-text) !important;
+    }
+    .dark-mode .session-item .text-gray-500 {
+        color: var(--nhrrob-secure-text-muted) !important;
+    }
+    .dark-mode .session-item .bg-blue-100 {
+        background-color: rgba(34, 113, 177, 0.3) !important;
+        color: #72aee6 !important;
+    }
+    /* Hardening Headers */
+    .nhrrob-secure-setting-subtitle {
+        margin-bottom: 0.75rem;
+        margin-top: 0px;
+        font-size: 0.875rem;
+        line-height: 1.25rem;
+        font-weight: 600;
+        text-transform: uppercase;
+        letter-spacing: 0.025em;
+        opacity: 0.8;
+        color: var(--nhrrob-secure-text-muted);
+}
+    .dark-mode .nhrrob-secure-setting-subtitle {
+        color: #a7aaad;
+    }
 …
+}
+    .dark-mode .session-item .nhrrob-secure-card-subtitle {
+        color: var(--nhrrob-secure-text-muted);
+    }
     .nhrrob-secure-card-subtitle {
         margin: 0px;
 …
         background-color: transparent;
+}
+    .dark-mode .session-item.nhrrob-result-group-title {
+        background-color: rgba(255, 255, 255, 0.03);
+        border-color: var(--nhrrob-secure-border);
+    }
     .nhrrob-result-group-title {
 …
+}
+    .dark-mode .nhrrob-result-row:hover.session-item {
+        background-color: rgba(255, 255, 255, 0.03);
+        border-color: var(--nhrrob-secure-border);
+    }
     .nhrrob-result-row:hover {
         --tw-bg-opacity: 1;
 …
         color: rgb(229 231 235 / var(--tw-text-opacity, 1));
+}
+    .dark-mode .session-item .nhrrob-file-meta {
+        color: var(--nhrrob-secure-text-muted);
+    }
     .nhrrob-file-meta {
 …
         margin-bottom: 1rem;
+}
+.ml-2 {
+        margin-left: 0.5rem;
+}
 .ml-5 {
         margin-left: 1.25rem;
 …
         margin-top: 0px;
+}
+.mt-1 {
+        margin-top: 0.25rem;
+}
 .mt-4 {
         margin-top: 1rem;
+}
+.block {
+        display: block;
+}
+.flex {
+        display: flex;
+}
 .table {
         display: table;
 …
         display: none;
+}
+.w-64 {
+        width: 16rem;
+}
+.w-full {
+        width: 100%;
+}
 .grid-cols-2 {
         grid-template-columns: repeat(2, minmax(0, 1fr));
+}
+.items-start {
+        align-items: flex-start;
+}
+.justify-center {
+        justify-content: center;
+}
+.justify-between {
+        justify-content: space-between;
+}
 .gap-2 {
         gap: 0.5rem;
+}
+.truncate {
+        overflow: hidden;
+        text-overflow: ellipsis;
+        white-space: nowrap;
+}
+.rounded {
+        border-radius: 0.25rem;
+}
+.rounded-full {
+        border-radius: 9999px;
+}
+.border {
+        border-width: 1px;
+}
 .border-t {
         border-top-width: 1px;
+}
+.border-blue-200 {
+        --tw-border-opacity: 1;
+        border-color: rgb(191 219 254 / var(--tw-border-opacity, 1));
+}
 .border-gray-100 {
 …
         border-color: rgb(243 244 246 / var(--tw-border-opacity, 1));
+}
+.border-gray-200 {
+        --tw-border-opacity: 1;
+        border-color: rgb(229 231 235 / var(--tw-border-opacity, 1));
+}
+.bg-blue-100 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(219 234 254 / var(--tw-bg-opacity, 1));
+}
+.bg-blue-50 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(239 246 255 / var(--tw-bg-opacity, 1));
+}
+.bg-gray-50 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(249 250 251 / var(--tw-bg-opacity, 1));
+}
+.p-3 {
+        padding: 0.75rem;
+}
+.px-2 {
+        padding-left: 0.5rem;
+        padding-right: 0.5rem;
+}
+.py-0\.5 {
+        padding-top: 0.125rem;
+        padding-bottom: 0.125rem;
+}
+.pt-3 {
+        padding-top: 0.75rem;
+}
 .pt-4 {
         padding-top: 1rem;
+}
+.font-mono {
+        font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
+}
 .text-sm {
 …
         line-height: 1rem;
+}
+.font-medium {
+        font-weight: 500;
+}
 .font-semibold {
         font-weight: 600;
+}
+.text-blue-800 {
+        --tw-text-opacity: 1;
+        color: rgb(30 64 175 / var(--tw-text-opacity, 1));
+}
+.text-gray-400 {
+        --tw-text-opacity: 1;
+        color: rgb(156 163 175 / var(--tw-text-opacity, 1));
+}
 .text-gray-500 {
         --tw-text-opacity: 1;
         color: rgb(107 114 128 / var(--tw-text-opacity, 1));
+}
+.text-gray-700 {
+        --tw-text-opacity: 1;
+        color: rgb(55 65 81 / var(--tw-text-opacity, 1));
+}
 .filter {
 …
+        }
+}
+/* Retention Select */
+.nhrrob-secure-retention-select select {
+        height: 2rem;
+        --tw-border-opacity: 1;
+        border-color: rgb(209 213 219 / var(--tw-border-opacity, 1));
+        padding-top: 0px;
+        padding-bottom: 0px;
+        padding-right: 2rem;
+        padding-left: 0.5rem;
+        font-size: 0.75rem;
+        line-height: 1rem;
+    border-color: var(--nhrrob-secure-border);
+    color: var(--nhrrob-secure-text);
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-retention-select select {
+    background-color: #2c3338 !important;
+    /* Darker input bg */
+    border-color: var(--nhrrob-secure-border) !important;
+    color: var(--nhrrob-secure-text) !important;
+}
+.nhrrob-secure-retention-select .components-base-control__field {
+        margin-bottom: 0px;
+}
+/* Audit Log Table */
+.nhrrob-secure-audit-table-wrapper {
+        margin-top: 1.25rem;
+        overflow-x: auto;
+        border-radius: 0.25rem;
+        border-width: 1px;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table {
+        width: 100%;
+        border-collapse: collapse;
+        font-size: 13px;
+    background: var(--nhrrob-secure-card-bg);
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-audit-table th,
+.nhrrob-secure-audit-table td {
+        border-bottom-width: 1px;
+        padding: 0.75rem;
+        text-align: left;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table th {
+        font-weight: 600;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+.nhrrob-secure-audit-table tr:last-child td {
+        border-bottom-width: 0px;
+}
+.nhrrob-secure-audit-table tr:hover td {
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-badge {
+        border-radius: 0.25rem;
+        padding-left: 0.375rem;
+        padding-right: 0.375rem;
+        padding-top: 0.125rem;
+        padding-bottom: 0.125rem;
+        font-size: 11px;
+        font-weight: 500;
+        text-transform: uppercase;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+/* Dark Mode support for table */
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table-wrapper {
+    border-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table {
+    background: #1e1e1e;
+    color: #dcdcde;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table th {
+    background: #2c2c2c;
+    color: #ffffff;
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table td {
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table tr:hover td {
+    background: #2c2c2c;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-badge {
+    background: #3c434a;
+    color: #dcdcde;
+}
+.nhrrob-secure-pagination {
+        margin-top: 1.25rem;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        gap: 1rem;
+}
+.nhrrob-secure-page-info {
+        font-size: 13px;
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-page-info {
+    color: #a7aaad;
+}
+.no-logs {
+        padding: 2rem !important;
+        text-align: center !important;
+    color: var(--nhrrob-secure-text-muted);
+}
+/* Severity indicators */
+.severity-2 td:first-child {
+        border-left-width: 4px;
+        --tw-border-opacity: 1;
+        border-left-color: rgb(250 204 21 / var(--tw-border-opacity, 1));
+}
+.severity-3 td:first-child {
+        border-left-width: 4px;
+        --tw-border-opacity: 1;
+        border-left-color: rgb(220 38 38 / var(--tw-border-opacity, 1));
+}

nhrrob-secure/tags/1.2.0/build/admin.js

r3438122	r3441244
1		(()=>{"use strict";var e,r={967(e,r,t){const n=window.React,a=window.wp.element,s=window.wp.components,l=window.wp.i18n,c=window.wp.apiFetch;var o=t.n(c);const i=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Login Protection","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Login Attempts Limit","nhrrob-secure"),help:(0,l.__)("Limit failed login attempts to prevent brute force attacks","nhrrob-secure"),checked:e.nhrrob_secure_limit_login_attempts,onChange:e=>r("nhrrob_secure_limit_login_attempts",e)}),e.nhrrob_secure_limit_login_attempts&&(0,n.createElement)(s.TextControl,{label:(0,l.__)("Maximum Login Attempts","nhrrob-secure"),help:(0,l.__)("Number of failed attempts before blocking (default: 5)","nhrrob-secure"),type:"number",value:e.nhrrob_secure_login_attempts_limit,onChange:e=>r("nhrrob_secure_login_attempts_limit",parseInt(e)\|\|5),min:"1",max:"20"}),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Proxy IP Detection","nhrrob-secure"),help:(0,l.__)("Detect real IP behind proxies (Cloudflare, etc.)","nhrrob-secure"),checked:e.nhrrob_secure_enable_proxy_ip,onChange:e=>r("nhrrob_secure_enable_proxy_ip",e)}))),u=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Custom Login Page","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Custom Login URL","nhrrob-secure"),help:(0,l.__)("Hide wp-login.php and use a custom login URL","nhrrob-secure"),checked:e.nhrrob_secure_custom_login_page,onChange:e=>r("nhrrob_secure_custom_login_page",e)}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)(s.TextControl,{label:(0,l.__)("Custom Login URL","nhrrob-secure"),help:(0,l.__)("Your login page will be accessible at this URL","nhrrob-secure"),value:e.nhrrob_secure_custom_login_url,onChange:e=>r("nhrrob_secure_custom_login_url",e),placeholder:"/hidden-access-52w"}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)("div",{className:"nhrrob-secure-info"},(0,n.createElement)("strong",null,(0,l.__)("Your login URL:","nhrrob-secure")),(0,n.createElement)("code",null,window.location.origin,e.nhrrob_secure_custom_login_url)))),m=({settings:e,updateSetting:r})=>{const t=e.nhrrob_secure_2fa_enforced_roles\|\|[],a=e.available_roles\|\|[];return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Two-Factor Authentication","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Global 2FA","nhrrob-secure"),help:(0,n.createElement)(n.Fragment,null,(0,l.__)("Enables Google Authenticator support for all users. Users can set it up in their ","nhrrob-secure"),(0,n.createElement)("a",{href:nhrrobSecureSettings.profile_url,target:"_blank",rel:"noreferrer"},(0,l.__)("profile page","nhrrob-secure")),"."),checked:e.nhrrob_secure_enable_2fa,onChange:e=>r("nhrrob_secure_enable_2fa",e)}),e.nhrrob_secure_enable_2fa&&(0,n.createElement)(n.Fragment,null,(0,n.createElement)("div",{className:"nhrrob-secure-2fa-method pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("2FA Method","nhrrob-secure")),(0,n.createElement)(s.RadioControl,{selected:e.nhrrob_secure_2fa_type\|\|"app",options:[{label:(0,l.__)("Authenticator App (Recommended)","nhrrob-secure"),value:"app"},{label:(0,l.__)("Email OTP","nhrrob-secure"),value:"email"}],onChange:e=>r("nhrrob_secure_2fa_type",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-enforced-roles pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Enforced 2FA by Role","nhrrob-secure")),(0,n.createElement)("p",{className:"text-xs text-gray-500 mb-4"},(0,l.__)("Users with the selected roles will be forced to set up 2FA before they can access the admin dashboard.","nhrrob-secure")),(0,n.createElement)("div",{className:"grid grid-cols-2 gap-2"},a.map(e=>(0,n.createElement)(s.CheckboxControl,{key:e.value,label:e.label,checked:t.includes(e.value),onChange:n=>((e,n)=>{const a=n?[...t,e]:t.filter(r=>r!==e);r("nhrrob_secure_2fa_enforced_roles",a)})(e.value,n)})))))))},h=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Protection","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Protect Debug Log","nhrrob-secure"),help:(0,l.__)("Block direct access to wp-content/debug.log","nhrrob-secure"),checked:e.nhrrob_secure_protect_debug_log,onChange:e=>r("nhrrob_secure_protect_debug_log",e)}))),d=window.wp.htmlEntities,b=()=>{const[e,r]=(0,a.useState)(null),[t,c]=(0,a.useState)(!0),[i,u]=(0,a.useState)(!1),[m,h]=(0,a.useState)(null);(0,a.useEffect)(()=>{b()},[]);const b=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/status"});r(e),c(!1)}catch(e){h((0,l.__)("Failed to fetch vulnerability status","nhrrob-secure")),c(!1)}};if(t)return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)(s.Spinner,null)));const _=e&&(e.core.length>0\|\|e.plugins.length>0\|\|e.themes.length>0);return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Vulnerability Checker","nhrrob-secure")),(0,n.createElement)(s.Button,{variant:"primary",onClick:async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/scan",method:"POST"});r(e)}catch(e){h((0,l.__)("Failed to run vulnerability scan","nhrrob-secure"))}finally{u(!1)}},isBusy:i,disabled:i,icon:"update",iconPosition:"right"},i?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Scan Now","nhrrob-secure"))),(0,n.createElement)("p",{className:"nhrrob-secure-last-scan"},(0,n.createElement)("strong",null,(0,l.__)("Last Scan:","nhrrob-secure"))," ",(g=e.last_scan)?new Date(1e3*g).toLocaleString():(0,l.__)("Never","nhrrob-secure")),m&&(0,n.createElement)(s.Notice,{status:"error",isDismissible:!1},m),_?(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},(0,n.createElement)(s.Notice,{status:"warning",isDismissible:!1},(0,l.__)("Vulnerabilities detected! Please review and update the items below.","nhrrob-secure")),e.core.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("WordPress Core","nhrrob-secure")),(0,n.createElement)("ul",null,e.core.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))),e.plugins.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Plugins","nhrrob-secure")),e.plugins.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,n.createElement)("a",{href:"plugins.php",style:{textDecoration:"none",color:"inherit"}},(0,d.decodeEntities)(e.name)),(0,n.createElement)("span",{style:{fontWeight:"normal",color:"#666"}}," (",e.version,")")),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))))),e.themes.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Themes","nhrrob-secure")),e.themes.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,d.decodeEntities)(e.name)," (",e.version,")"),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name)))))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No known vulnerabilities detected.","nhrrob-secure"))));var g},_=()=>{const[e,r]=(0,a.useState)(!1),[t,c]=(0,a.useState)(null),[i,u]=(0,a.useState)(null),[m,h]=(0,a.useState)("core"),d=async()=>{r(!0),u(null),c(null);try{const e="core"===m?"/nhrrob-secure/v1/scanner/core":"/nhrrob-secure/v1/scanner/malware",r=await o()({path:e,method:"POST"});c(r)}catch(e){u(e.message\|\|(0,l.__)("An error occurred during scan.","nhrrob-secure"))}finally{r(!1)}};return(0,n.createElement)("div",{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card padded-header"},(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("div",{className:"nhrrob-secure-header-content"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Scanner","nhrrob-secure")),(0,n.createElement)("p",{className:"nhrrob-secure-card-subtitle"},(0,l.__)("Scan your site for file modifications and potential malware.","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-scan-controls"},(0,n.createElement)("div",{className:"nhrrob-scan-type-toggle"},(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("core"===m?"active":""),onClick:()=>h("core"),disabled:e},(0,l.__)("Core Integrity","nhrrob-secure")),(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("malware"===m?"active":""),onClick:()=>h("malware"),disabled:e},(0,l.__)("Malware Scan","nhrrob-secure"))),(0,n.createElement)(s.Button,{variant:"primary",onClick:()=>d(),isBusy:e,disabled:e,icon:"update",iconPosition:"right"},e?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Start Scan","nhrrob-secure")))),(0,n.createElement)("div",{className:"nhrrob-card-body"},i&&(0,n.createElement)("div",{className:"notice notice-error inline-notice"},(0,n.createElement)("p",null,i)),t&&(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},("core"===m&&(t.modified?.length>0\|\|t.missing?.length>0)\|\|"malware"===m&&t.suspicious?.length>0)&&(0,n.createElement)("div",{className:"notice notice-warning inline-notice nhrrob-warning-notice"},(0,n.createElement)("p",null,(0,l.__)("Issues detected! Please review and update the items below.","nhrrob-secure"))),"core"===m&&(0,n.createElement)(n.Fragment,null,t.modified&&t.modified.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Modified Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.modified.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)),(0,n.createElement)(s.Button,{variant:"secondary",isSmall:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to repair this file? It will be overwritten with the original version.","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/repair",method:"POST",data:{file:e}}),alert((0,l.__)("File repaired successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Repair failed.","nhrrob-secure"))}})(e)},(0,l.__)("Repair","nhrrob-secure")))))),t.missing&&t.missing.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Missing Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.missing.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)))))),!t.modified?.length&&!t.missing?.length&&(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No modified core files found.","nhrrob-secure"))),"malware"===m&&(0,n.createElement)(n.Fragment,null,t.suspicious&&t.suspicious.length>0?(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Suspicious Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.suspicious.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e.file),(0,n.createElement)("span",{className:"nhrrob-file-meta"},e.reason)),(0,n.createElement)(s.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to PERMANENTLY delete this file?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/delete",method:"POST",data:{file:e}}),alert((0,l.__)("File deleted successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Delete failed.","nhrrob-secure"))}})(e.file)},(0,l.__)("Delete","nhrrob-secure")))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No suspicious files found.","nhrrob-secure")),(0,n.createElement)("p",{className:"description nhrrob-scan-count"},(0,n.createElement)("small",null,(0,l.__)("Scanned files:","nhrrob-secure")," ",t.scanned_count))))))},g=document.getElementById("nhrrob-secure-settings-root");g&&(0,a.render)((0,n.createElement)(()=>{const[e,r]=(0,a.useState)(null),[t,c]=(0,a.useState)(!0),[d,g]=(0,a.useState)(!1),[p,E]=(0,a.useState)(null);(0,a.useEffect)(()=>{v()},[]);const v=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/settings"});r(e),c(!1)}catch(e){E({type:"error",message:(0,l.__)("Failed to load settings","nhrrob-secure")}),c(!1)}},f=(t,n)=>{r({...e,[t]:n})};return(0,a.useEffect)(()=>{e?.nhrrob_secure_dark_mode?document.body.classList.add("nhrrob-secure-dark-mode-active"):document.body.classList.remove("nhrrob-secure-dark-mode-active")},[e?.nhrrob_secure_dark_mode]),t?(0,n.createElement)("div",{className:"nhrrob-secure-loading"},(0,n.createElement)(s.Spinner,null)):(0,n.createElement)("div",{className:"nhrrob-secure-settings "+(e.nhrrob_secure_dark_mode?"dark-mode":"")},(0,n.createElement)("div",{className:"nhrrob-secure-header"},(0,n.createElement)("div",{className:"nhrrob-secure-header-main"},(0,n.createElement)("h1",null,(0,l.__)("NHR Secure Settings","nhrrob-secure")),(0,n.createElement)(s.Button,{className:"nhrrob-secure-dark-mode-toggle",icon:e.nhrrob_secure_dark_mode?(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zM2 13h2c.55 0 1-.45 1-1s-.45-1-1-1H2c-.55 0-1 .45-1 1s.45 1 1 1zm18 0h2c.55 0 1-.45 1-1s-.45-1-1-1h-2c-.55 0-1 .45-1 1s.45 1 1 1zM11 2v2c0 .55.45 1 1 1s1-.45 1-1V2c0-.55-.45-1-1-1s-1 .45-1 1zm0 18v2c0 .55.45 1 1 1s1-.45 1-1v-2c0-.55-.45-1-1-1s-1 .45-1 1zM5.99 4.58a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41L5.99 4.58zm12.37 12.37a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41l-1.06-1.06zm1.06-10.96a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06zM7.05 18.36a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06z"})):(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 3c-4.97 0-9 4.03-9 9s4.03 9 9 9 9-4.03 9-9c0-.46-.04-.92-.1-1.36-.98 1.37-2.58 2.26-4.4 2.26-2.98 0-5.4-2.42-5.4-5.4 0-1.81.89-3.42 2.26-4.4-.44-.06-.9-.1-1.36-.1z"})),onClick:async()=>{const r=!e.nhrrob_secure_dark_mode;f("nhrrob_secure_dark_mode",r);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:{...e,nhrrob_secure_dark_mode:r}})}catch(e){console.error("Failed to save dark mode preference",e)}},label:(0,l.__)("Toggle Dark Mode","nhrrob-secure")})),(0,n.createElement)("p",{className:"nhrrob-secure-subtitle"},(0,l.__)("Configure security features for your WordPress site","nhrrob-secure"))),p&&(0,n.createElement)(s.Notice,{status:p.type,isDismissible:!0,onRemove:()=>E(null)},p.message),(0,n.createElement)("div",{className:"nhrrob-secure-cards"},(0,n.createElement)(i,{settings:e,updateSetting:f}),(0,n.createElement)(u,{settings:e,updateSetting:f}),(0,n.createElement)(m,{settings:e,updateSetting:f}),(0,n.createElement)(h,{settings:e,updateSetting:f}),(0,n.createElement)(b,null),(0,n.createElement)(_,null)),(0,n.createElement)("div",{className:"nhrrob-secure-actions"},(0,n.createElement)(s.Button,{variant:"primary",onClick:async()=>{g(!0),E(null);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:e}),E({type:"success",message:(0,l.__)("Settings saved successfully!","nhrrob-secure")})}catch(e){E({type:"error",message:(0,l.__)("Failed to save settings","nhrrob-secure")})}finally{g(!1)}},isBusy:d,disabled:d},d?(0,l.__)("Saving...","nhrrob-secure"):(0,l.__)("Save Settings","nhrrob-secure"))))},null),g)}},t={};function n(e){var a=t[e];if(void 0!==a)return a.exports;var s=t[e]={exports:{}};return r[e](s,s.exports,n),s.exports}n.m=r,e=[],n.O=(r,t,a,s)=>{if(!t){var l=1/0;for(u=0;u<e.length;u++){for(var[t,a,s]=e[u],c=!0,o=0;o<t.length;o++)(!1&s\|\|l>=s)&&Object.keys(n.O).every(e=>n.O[e](t[o]))?t.splice(o--,1):(c=!1,s<l&&(l=s));if(c){e.splice(u--,1);var i=a();void 0!==i&&(r=i)}}return r}s=s\|\|0;for(var u=e.length;u>0&&e[u-1][2]>s;u--)e[u]=e[u-1];e[u]=[t,a,s]},n.n=e=>{var r=e&&e.__esModule?()=>e.default:()=>e;return n.d(r,{a:r}),r},n.d=(e,r)=>{for(var t in r)n.o(r,t)&&!n.o(e,t)&&Object.defineProperty(e,t,{enumerable:!0,get:r[t]})},n.o=(e,r)=>Object.prototype.hasOwnProperty.call(e,r),(()=>{var e={884:0,15:0};n.O.j=r=>0===e[r];var r=(r,t)=>{var a,s,[l,c,o]=t,i=0;if(l.some(r=>0!==e[r])){for(a in c)n.o(c,a)&&(n.m[a]=c[a]);if(o)var u=o(n)}for(r&&r(t);i<l.length;i++)s=l[i],n.o(e,s)&&e[s]&&e[s][0](),e[s]=0;return n.O(u)},t=globalThis.webpackChunknhrrob_secure=globalThis.webpackChunknhrrob_secure\|\|[];t.forEach(r.bind(null,0)),t.push=r.bind(null,t.push.bind(t))})();var a=n.O(void 0,[15],()=>n(967));a=n.O(a)})();
	1	(()=>{"use strict";var e,r={195(e,r,t){const n=window.React,s=window.wp.element,a=window.wp.components,l=window.wp.i18n,c=window.wp.apiFetch;var o=t.n(c);const i=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Login Protection","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Login Attempts Limit","nhrrob-secure"),help:(0,l.__)("Limit failed login attempts to prevent brute force attacks","nhrrob-secure"),checked:e.nhrrob_secure_limit_login_attempts,onChange:e=>r("nhrrob_secure_limit_login_attempts",e)}),e.nhrrob_secure_limit_login_attempts&&(0,n.createElement)(a.TextControl,{label:(0,l.__)("Maximum Login Attempts","nhrrob-secure"),help:(0,l.__)("Number of failed attempts before blocking (default: 5)","nhrrob-secure"),type:"number",value:e.nhrrob_secure_login_attempts_limit,onChange:e=>r("nhrrob_secure_login_attempts_limit",parseInt(e)\|\|5),min:"1",max:"20"}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Proxy IP Detection","nhrrob-secure"),help:(0,l.__)("Detect real IP behind proxies (Cloudflare, etc.)","nhrrob-secure"),checked:e.nhrrob_secure_enable_proxy_ip,onChange:e=>r("nhrrob_secure_enable_proxy_ip",e)}))),u=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Custom Login Page","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Custom Login URL","nhrrob-secure"),help:(0,l.__)("Hide wp-login.php and use a custom login URL","nhrrob-secure"),checked:e.nhrrob_secure_custom_login_page,onChange:e=>r("nhrrob_secure_custom_login_page",e)}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)(a.TextControl,{label:(0,l.__)("Custom Login URL","nhrrob-secure"),help:(0,l.__)("Your login page will be accessible at this URL","nhrrob-secure"),value:e.nhrrob_secure_custom_login_url,onChange:e=>r("nhrrob_secure_custom_login_url",e),placeholder:"/hidden-access-52w"}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)("div",{className:"nhrrob-secure-info"},(0,n.createElement)("strong",null,(0,l.__)("Your login URL:","nhrrob-secure")),(0,n.createElement)("code",null,window.location.origin,e.nhrrob_secure_custom_login_url)))),m=({settings:e,updateSetting:r})=>{const t=e.nhrrob_secure_2fa_enforced_roles\|\|[],s=e.available_roles\|\|[];return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Two-Factor Authentication","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Global 2FA","nhrrob-secure"),help:(0,n.createElement)(n.Fragment,null,(0,l.__)("Enables Google Authenticator support for all users. Users can set it up in their ","nhrrob-secure"),(0,n.createElement)("a",{href:nhrrobSecureSettings.profile_url,target:"_blank",rel:"noreferrer"},(0,l.__)("profile page","nhrrob-secure")),"."),checked:e.nhrrob_secure_enable_2fa,onChange:e=>r("nhrrob_secure_enable_2fa",e)}),e.nhrrob_secure_enable_2fa&&(0,n.createElement)(n.Fragment,null,(0,n.createElement)("div",{className:"nhrrob-secure-2fa-method pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("2FA Method","nhrrob-secure")),(0,n.createElement)(a.RadioControl,{selected:e.nhrrob_secure_2fa_type\|\|"app",options:[{label:(0,l.__)("Authenticator App (Recommended)","nhrrob-secure"),value:"app"},{label:(0,l.__)("Email OTP","nhrrob-secure"),value:"email"}],onChange:e=>r("nhrrob_secure_2fa_type",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-enforced-roles pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Enforced 2FA by Role","nhrrob-secure")),(0,n.createElement)("p",{className:"text-xs text-gray-500 mb-4"},(0,l.__)("Users with the selected roles will be forced to set up 2FA before they can access the admin dashboard.","nhrrob-secure")),(0,n.createElement)("div",{className:"grid grid-cols-2 gap-2"},s.map(e=>(0,n.createElement)(a.CheckboxControl,{key:e.value,label:e.label,checked:t.includes(e.value),onChange:n=>((e,n)=>{const s=n?[...t,e]:t.filter(r=>r!==e);r("nhrrob_secure_2fa_enforced_roles",s)})(e.value,n)})))))))},h=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Protection","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Protect Debug Log","nhrrob-secure"),help:(0,l.__)("Block direct access to wp-content/debug.log","nhrrob-secure"),checked:e.nhrrob_secure_protect_debug_log,onChange:e=>r("nhrrob_secure_protect_debug_log",e)}))),d=window.wp.htmlEntities,b=()=>{const[e,r]=(0,s.useState)(null),[t,c]=(0,s.useState)(!0),[i,u]=(0,s.useState)(!1),[m,h]=(0,s.useState)(null);(0,s.useEffect)(()=>{b()},[]);const b=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/status"});r(e),c(!1)}catch(e){h((0,l.__)("Failed to fetch vulnerability status","nhrrob-secure")),c(!1)}};if(t)return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)(a.Spinner,null)));const _=e&&(e.core.length>0\|\|e.plugins.length>0\|\|e.themes.length>0);return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Vulnerability Checker","nhrrob-secure")),(0,n.createElement)(a.Button,{variant:"primary",onClick:async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/scan",method:"POST"});r(e)}catch(e){h((0,l.__)("Failed to run vulnerability scan","nhrrob-secure"))}finally{u(!1)}},isBusy:i,disabled:i,icon:"update",iconPosition:"right"},i?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Scan Now","nhrrob-secure"))),(0,n.createElement)("p",{className:"nhrrob-secure-last-scan"},(0,n.createElement)("strong",null,(0,l.__)("Last Scan:","nhrrob-secure"))," ",(g=e.last_scan)?new Date(1e3g).toLocaleString():(0,l.__)("Never","nhrrob-secure")),m&&(0,n.createElement)(a.Notice,{status:"error",isDismissible:!1},m),_?(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},(0,n.createElement)(a.Notice,{status:"warning",isDismissible:!1},(0,l.__)("Vulnerabilities detected! Please review and update the items below.","nhrrob-secure")),e.core.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("WordPress Core","nhrrob-secure")),(0,n.createElement)("ul",null,e.core.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))),e.plugins.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Plugins","nhrrob-secure")),e.plugins.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,n.createElement)("a",{href:"plugins.php",style:{textDecoration:"none",color:"inherit"}},(0,d.decodeEntities)(e.name)),(0,n.createElement)("span",{style:{fontWeight:"normal",color:"#666"}}," (",e.version,")")),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))))),e.themes.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Themes","nhrrob-secure")),e.themes.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,d.decodeEntities)(e.name)," (",e.version,")"),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name)))))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No known vulnerabilities detected.","nhrrob-secure"))));var g},_=()=>{const[e,r]=(0,s.useState)(!1),[t,c]=(0,s.useState)(null),[i,u]=(0,s.useState)(null),[m,h]=(0,s.useState)("core"),d=async()=>{r(!0),u(null),c(null);try{const e="core"===m?"/nhrrob-secure/v1/scanner/core":"/nhrrob-secure/v1/scanner/malware",r=await o()({path:e,method:"POST"});c(r)}catch(e){u(e.message\|\|(0,l.__)("An error occurred during scan.","nhrrob-secure"))}finally{r(!1)}};return(0,n.createElement)("div",{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card padded-header"},(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("div",{className:"nhrrob-secure-header-content"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Scanner","nhrrob-secure")),(0,n.createElement)("p",{className:"nhrrob-secure-card-subtitle"},(0,l.__)("Scan your site for file modifications and potential malware.","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-scan-controls"},(0,n.createElement)("div",{className:"nhrrob-scan-type-toggle"},(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("core"===m?"active":""),onClick:()=>h("core"),disabled:e},(0,l.__)("Core Integrity","nhrrob-secure")),(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("malware"===m?"active":""),onClick:()=>h("malware"),disabled:e},(0,l.__)("Malware Scan","nhrrob-secure"))),(0,n.createElement)(a.Button,{variant:"primary",onClick:()=>d(),isBusy:e,disabled:e,icon:"update",iconPosition:"right"},e?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Start Scan","nhrrob-secure")))),(0,n.createElement)("div",{className:"nhrrob-card-body"},i&&(0,n.createElement)("div",{className:"notice notice-error inline-notice"},(0,n.createElement)("p",null,i)),t&&(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},("core"===m&&(t.modified?.length>0\|\|t.missing?.length>0)\|\|"malware"===m&&t.suspicious?.length>0)&&(0,n.createElement)("div",{className:"notice notice-warning inline-notice nhrrob-warning-notice"},(0,n.createElement)("p",null,(0,l.__)("Issues detected! Please review and update the items below.","nhrrob-secure"))),"core"===m&&(0,n.createElement)(n.Fragment,null,t.modified&&t.modified.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Modified Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.modified.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)),(0,n.createElement)(a.Button,{variant:"secondary",isSmall:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to repair this file? It will be overwritten with the original version.","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/repair",method:"POST",data:{file:e}}),alert((0,l.__)("File repaired successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Repair failed.","nhrrob-secure"))}})(e)},(0,l.__)("Repair","nhrrob-secure")))))),t.missing&&t.missing.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Missing Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.missing.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)))))),!t.modified?.length&&!t.missing?.length&&(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No modified core files found.","nhrrob-secure"))),"malware"===m&&(0,n.createElement)(n.Fragment,null,t.suspicious&&t.suspicious.length>0?(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Suspicious Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.suspicious.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e.file),(0,n.createElement)("span",{className:"nhrrob-file-meta"},e.reason)),(0,n.createElement)(a.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to PERMANENTLY delete this file?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/delete",method:"POST",data:{file:e}}),alert((0,l.__)("File deleted successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Delete failed.","nhrrob-secure"))}})(e.file)},(0,l.__)("Delete","nhrrob-secure")))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No suspicious files found.","nhrrob-secure")),(0,n.createElement)("p",{className:"description nhrrob-scan-count"},(0,n.createElement)("small",null,(0,l.__)("Scanned files:","nhrrob-secure")," ",t.scanned_count))))))},g=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-hardening-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Hardening & Firewall","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group"},(0,n.createElement)("h3",{className:"nhrrob-secure-setting-subtitle"},(0,l.__)("General Hardening","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable XML-RPC","nhrrob-secure"),help:(0,l.__)("Prevents external systems (like mobile apps and Jetpack) from accessing your site via XML-RPC. Recommended if not used.","nhrrob-secure"),checked:e.nhrrob_secure_disable_xmlrpc,onChange:e=>r("nhrrob_secure_disable_xmlrpc",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable File Editor","nhrrob-secure"),help:(0,l.__)("Disables the built-in theme and plugin file editor to prevent code execution if an admin account is compromised.","nhrrob-secure"),checked:e.nhrrob_secure_disable_file_editor,onChange:e=>r("nhrrob_secure_disable_file_editor",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Hide WP Version","nhrrob-secure"),help:(0,l.__)("Removes WordPress version from page source and RSS feeds to make reconnaissance harder for attackers.","nhrrob-secure"),checked:e.nhrrob_secure_hide_wp_version,onChange:e=>r("nhrrob_secure_hide_wp_version",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable REST API User Enumeration","nhrrob-secure"),help:(0,l.__)("Blocks access to /wp-json/wp/v2/users to prevent attackers from listing your users.","nhrrob-secure"),checked:e.nhrrob_secure_disable_rest_users,onChange:e=>r("nhrrob_secure_disable_rest_users",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group border-t border-gray-100 pt-4 mt-4"},(0,n.createElement)("h3",{className:"nhrrob-secure-setting-subtitle"},(0,l.__)("Firewall Rules","nhrrob-secure")),(0,n.createElement)(a.TextareaControl,{label:(0,l.__)("Block User Agents","nhrrob-secure"),help:(0,l.__)('Enter one User-Agent per line to block. Case-insensitive partial match. Example: "HTTrack", "curl".',"nhrrob-secure"),value:e.nhrrob_secure_firewall_blocked_uas,onChange:e=>r("nhrrob_secure_firewall_blocked_uas",e),rows:5,placeholder:"SemrushBot\nAhrefsBot\nMJ12bot"})))),E=({settings:e,updateSetting:r})=>{const[t,c]=(0,s.useState)([]),[i,u]=(0,s.useState)(!1),[m,h]=(0,s.useState)(null);(0,s.useEffect)(()=>{d()},[]);const d=async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/sessions"});c(e)}catch(e){h(e.message\|\|(0,l.__)("Failed to load sessions.","nhrrob-secure"))}finally{u(!1)}};return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-sessions-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("User Session Management","nhrrob-secure")),(0,n.createElement)(a.Button,{variant:"primary",onClick:d,isBusy:i,disabled:i,icon:"update"},(0,l.__)("Refresh","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group"},(0,n.createElement)(a.TextControl,{label:(0,l.__)("Idle Timeout (Minutes)","nhrrob-secure"),help:(0,l.__)("Automatically log out inactive users after X minutes. Set to 0 to disable.","nhrrob-secure"),type:"number",value:e?.nhrrob_secure_idle_timeout\|\|0,onChange:e=>r("nhrrob_secure_idle_timeout",parseInt(e)\|\|0),min:"0"})),m&&(0,n.createElement)(a.Notice,{status:"error",isDismissible:!1},m),(0,n.createElement)("div",{className:"nhrrob-secure-sessions-list mt-4"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Active Sessions","nhrrob-secure")),0!==t.length\|\|i?(0,n.createElement)("div",{className:"sessions-grid"},t.map((e,r)=>(0,n.createElement)("div",{key:r,className:"session-item p-3 border rounded mb-2 "+(e.is_current?"bg-blue-50 border-blue-200":"bg-gray-50 border-gray-200")},(0,n.createElement)("div",{className:"flex justify-between items-start"},(0,n.createElement)("div",{className:"session-info"},(0,n.createElement)("div",{className:"font-medium text-gray-700"},e.ip,e.is_current&&(0,n.createElement)("span",{className:"ml-2 px-2 py-0.5 text-xs bg-blue-100 text-blue-800 rounded-full"},(0,l.__)("Current Session","nhrrob-secure"))),(0,n.createElement)("div",{className:"text-xs text-gray-500 mt-1"},(0,n.createElement)("div",null,(0,l.__)("Login:","nhrrob-secure")," ",new Date(1e3e.login).toLocaleString()),(0,n.createElement)("div",null,(0,l.__)("Expires:","nhrrob-secure")," ",new Date(1e3e.expiration).toLocaleString()),(0,n.createElement)("div",{className:"mt-1 font-mono text-gray-400 truncate w-64",title:e.ua},e.ua))),!e.is_current&&(0,n.createElement)(a.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to log out this session?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/sessions/destroy",method:"POST",data:{verifier:e}}),d()}catch(e){alert(e.message\|\|(0,l.__)("Failed to destroy session.","nhrrob-secure"))}})(e.verifier)},(0,l.__)("Logout","nhrrob-secure")))))):(0,n.createElement)("p",null,(0,l.__)("No active sessions found.","nhrrob-secure"))),t.length>1&&(0,n.createElement)("div",{className:"mt-4 pt-3 border-t"},(0,n.createElement)(a.Button,{variant:"secondary",isDestructive:!0,onClick:async()=>{if(confirm((0,l.__)("Are you sure you want to log out all other devices?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/sessions/destroy-others",method:"POST"}),d(),alert((0,l.__)("All other sessions logged out.","nhrrob-secure"))}catch(e){alert(e.message\|\|(0,l.__)("Failed to destroy sessions.","nhrrob-secure"))}},className:"w-full justify-center"},(0,l.__)("Log Out All Other Devices","nhrrob-secure")))))},p=({settings:e,updateSetting:r})=>{const[t,c]=(0,s.useState)([]),[i,u]=(0,s.useState)(!0),[m,h]=(0,s.useState)(0),[d,b]=(0,s.useState)(1);(0,s.useEffect)(()=>{_()},[d]);const _=async()=>{u(!0);try{const e=20(d-1),r=await o()({path:`/nhrrob-secure/v1/logs?limit=20&offset=${e}`});c(r.items),h(r.total)}catch(e){console.error(e)}finally{u(!1)}},g=Math.ceil(m/20);return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-audit-log-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Activity Audit Log","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-secure-card-header-actions"},e&&(0,n.createElement)(a.SelectControl,{className:"nhrrob-secure-retention-select",value:e.nhrrob_secure_log_retention_days,options:[{label:(0,l.__)("Keep logs: 7 days","nhrrob-secure"),value:7},{label:(0,l.__)("Keep logs: 30 days","nhrrob-secure"),value:30},{label:(0,l.__)("Keep logs: 90 days","nhrrob-secure"),value:90},{label:(0,l.__)("Keep logs: 1 year","nhrrob-secure"),value:365}],onChange:e=>r("nhrrob_secure_log_retention_days",parseInt(e))}),(0,n.createElement)(a.Button,{variant:"primary",onClick:_,disabled:i,isBusy:i,icon:"update",iconPosition:"right"},(0,l.__)("Refresh","nhrrob-secure")))),i&&(0,n.createElement)("div",{className:"nhrrob-secure-loading-overlay"},(0,n.createElement)(a.Spinner,null)),(0,n.createElement)("div",{className:"nhrrob-secure-audit-table-wrapper"},(0,n.createElement)("table",{className:"nhrrob-secure-audit-table"},(0,n.createElement)("thead",null,(0,n.createElement)("tr",null,(0,n.createElement)("th",null,(0,l.__)("Date","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("User","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Context","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Action","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Item","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("IP Address","nhrrob-secure")))),(0,n.createElement)("tbody",null,t.length>0?t.map(e=>(0,n.createElement)("tr",{key:e.id,className:`severity-${e.severity}`},(0,n.createElement)("td",null,new Date(e.date).toLocaleString()),(0,n.createElement)("td",null,e.user),(0,n.createElement)("td",null,(0,n.createElement)("span",{className:"nhrrob-secure-badge"},e.context)),(0,n.createElement)("td",null,e.action),(0,n.createElement)("td",null,e.label),(0,n.createElement)("td",null,e.ip))):(0,n.createElement)("tr",null,(0,n.createElement)("td",{colSpan:"6",className:"no-logs"},!i&&(0,l.__)("No activity logs found.","nhrrob-secure")))))),g>1&&(0,n.createElement)("div",{className:"nhrrob-secure-pagination"},(0,n.createElement)(a.Button,{isSmall:!0,disabled:1===d\|\|i,onClick:()=>b(d-1)},"« ",(0,l.__)("Prev","nhrrob-secure")),(0,n.createElement)("span",{className:"nhrrob-secure-page-info"},(0,l.__)("Page","nhrrob-secure")," ",d," ",(0,l.__)("of","nhrrob-secure")," ",g),(0,n.createElement)(a.Button,{isSmall:!0,disabled:d===g\|\|i,onClick:()=>b(d+1)},(0,l.__)("Next","nhrrob-secure")," »"))))},v=document.getElementById("nhrrob-secure-settings-root");v&&(0,s.render)((0,n.createElement)(()=>{const[e,r]=(0,s.useState)(null),[t,c]=(0,s.useState)(!0),[d,v]=(0,s.useState)(!1),[y,f]=(0,s.useState)(null);(0,s.useEffect)(()=>{N()},[]);const N=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/settings"});r(e),c(!1)}catch(e){f({type:"error",message:(0,l.__)("Failed to load settings","nhrrob-secure")}),c(!1)}},w=(t,n)=>{r({...e,[t]:n})};return(0,s.useEffect)(()=>{e?.nhrrob_secure_dark_mode?document.body.classList.add("nhrrob-secure-dark-mode-active"):document.body.classList.remove("nhrrob-secure-dark-mode-active")},[e?.nhrrob_secure_dark_mode]),t?(0,n.createElement)("div",{className:"nhrrob-secure-loading"},(0,n.createElement)(a.Spinner,null)):(0,n.createElement)("div",{className:"nhrrob-secure-settings "+(e.nhrrob_secure_dark_mode?"dark-mode":"")},(0,n.createElement)("div",{className:"nhrrob-secure-header"},(0,n.createElement)("div",{className:"nhrrob-secure-header-main"},(0,n.createElement)("h1",null,(0,l.__)("NHR Secure Settings","nhrrob-secure")),(0,n.createElement)(a.Button,{className:"nhrrob-secure-dark-mode-toggle",icon:e.nhrrob_secure_dark_mode?(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zM2 13h2c.55 0 1-.45 1-1s-.45-1-1-1H2c-.55 0-1 .45-1 1s.45 1 1 1zm18 0h2c.55 0 1-.45 1-1s-.45-1-1-1h-2c-.55 0-1 .45-1 1s.45 1 1 1zM11 2v2c0 .55.45 1 1 1s1-.45 1-1V2c0-.55-.45-1-1-1s-1 .45-1 1zm0 18v2c0 .55.45 1 1 1s1-.45 1-1v-2c0-.55-.45-1-1-1s-1 .45-1 1zM5.99 4.58a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41L5.99 4.58zm12.37 12.37a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41l-1.06-1.06zm1.06-10.96a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06zM7.05 18.36a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06z"})):(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 3c-4.97 0-9 4.03-9 9s4.03 9 9 9 9-4.03 9-9c0-.46-.04-.92-.1-1.36-.98 1.37-2.58 2.26-4.4 2.26-2.98 0-5.4-2.42-5.4-5.4 0-1.81.89-3.42 2.26-4.4-.44-.06-.9-.1-1.36-.1z"})),onClick:async()=>{const r=!e.nhrrob_secure_dark_mode;w("nhrrob_secure_dark_mode",r);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:{...e,nhrrob_secure_dark_mode:r}})}catch(e){console.error("Failed to save dark mode preference",e)}},label:(0,l.__)("Toggle Dark Mode","nhrrob-secure")})),(0,n.createElement)("p",{className:"nhrrob-secure-subtitle"},(0,l.__)("Configure security features for your WordPress site","nhrrob-secure"))),y&&(0,n.createElement)(a.Notice,{status:y.type,isDismissible:!0,onRemove:()=>f(null)},y.message),(0,n.createElement)("div",{className:"nhrrob-secure-cards"},(0,n.createElement)(i,{settings:e,updateSetting:w}),(0,n.createElement)(u,{settings:e,updateSetting:w}),(0,n.createElement)(m,{settings:e,updateSetting:w}),(0,n.createElement)(g,{settings:e,updateSetting:w}),(0,n.createElement)(h,{settings:e,updateSetting:w}),(0,n.createElement)(b,null),(0,n.createElement)(_,null),(0,n.createElement)(E,{settings:e,updateSetting:w}),(0,n.createElement)(p,{settings:e,updateSetting:w})),(0,n.createElement)("div",{className:"nhrrob-secure-actions"},(0,n.createElement)(a.Button,{variant:"primary",onClick:async()=>{v(!0),f(null);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:e}),f({type:"success",message:(0,l.__)("Settings saved successfully!","nhrrob-secure")})}catch(e){f({type:"error",message:(0,l.__)("Failed to save settings","nhrrob-secure")})}finally{v(!1)}},isBusy:d,disabled:d},d?(0,l.__)("Saving...","nhrrob-secure"):(0,l.__)("Save Settings","nhrrob-secure"))))},null),v)}},t={};function n(e){var s=t[e];if(void 0!==s)return s.exports;var a=t[e]={exports:{}};return r[e](a,a.exports,n),a.exports}n.m=r,e=[],n.O=(r,t,s,a)=>{if(!t){var l=1/0;for(u=0;u<e.length;u++){for(var[t,s,a]=e[u],c=!0,o=0;o<t.length;o++)(!1&a\|\|l>=a)&&Object.keys(n.O).every(e=>n.O[e](t[o]))?t.splice(o--,1):(c=!1,a<l&&(l=a));if(c){e.splice(u--,1);var i=s();void 0!==i&&(r=i)}}return r}a=a\|\|0;for(var u=e.length;u>0&&e[u-1][2]>a;u--)e[u]=e[u-1];e[u]=[t,s,a]},n.n=e=>{var r=e&&e.__esModule?()=>e.default:()=>e;return n.d(r,{a:r}),r},n.d=(e,r)=>{for(var t in r)n.o(r,t)&&!n.o(e,t)&&Object.defineProperty(e,t,{enumerable:!0,get:r[t]})},n.o=(e,r)=>Object.prototype.hasOwnProperty.call(e,r),(()=>{var e={884:0,15:0};n.O.j=r=>0===e[r];var r=(r,t)=>{var s,a,[l,c,o]=t,i=0;if(l.some(r=>0!==e[r])){for(s in c)n.o(c,s)&&(n.m[s]=c[s]);if(o)var u=o(n)}for(r&&r(t);i<l.length;i++)a=l[i],n.o(e,a)&&e[a]&&e[a][0](),e[a]=0;return n.O(u)},t=globalThis.webpackChunknhrrob_secure=globalThis.webpackChunknhrrob_secure\|\|[];t.forEach(r.bind(null,0)),t.push=r.bind(null,t.push.bind(t))})();var s=n.O(void 0,[15],()=>n(195));s=n.O(s)})();

nhrrob-secure/tags/1.2.0/build/profile.asset.php

r3436910	r3441244
1		<?php return array('dependencies' => array(), 'version' => '~~60edf98ad68210cc7955~~');
	1	<?php return array('dependencies' => array(), 'version' => 'b365bbc000a0d9a2f03a');

nhrrob-secure/tags/1.2.0/build/profile.css

-                      r3436910
+                      r3441244
     margin-bottom: 1rem
+}
+.ml-2 {
+    margin-left: 0.5rem
+}
 .ml-5 {
 …
     margin-top: 0px
+}
+.mt-1 {
+    margin-top: 0.25rem
+}
 .mt-4 {
     margin-top: 1rem
+}
+.block {
+    display: block
+}
+.flex {
+    display: flex
+}
 .table {
 …
     display: none
+}
+.w-64 {
+    width: 16rem
+}
+.w-full {
+    width: 100%
+}
 .grid-cols-2 {
     grid-template-columns: repeat(2, minmax(0, 1fr))
+}
+.items-start {
+    align-items: flex-start
+}
+.justify-center {
+    justify-content: center
+}
+.justify-between {
+    justify-content: space-between
+}
 .gap-2 {
     gap: 0.5rem
+}
+.truncate {
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap
+}
+.rounded {
+    border-radius: 0.25rem
+}
+.rounded-full {
+    border-radius: 9999px
+}
+.border {
+    border-width: 1px
+}
 .border-t {
     border-top-width: 1px
+}
+.border-blue-200 {
+    --tw-border-opacity: 1;
+    border-color: rgb(191 219 254 / var(--tw-border-opacity, 1))
+}
 .border-gray-100 {
 …
     border-color: rgb(243 244 246 / var(--tw-border-opacity, 1))
+}
+.border-gray-200 {
+    --tw-border-opacity: 1;
+    border-color: rgb(229 231 235 / var(--tw-border-opacity, 1))
+}
+.bg-blue-100 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(219 234 254 / var(--tw-bg-opacity, 1))
+}
+.bg-blue-50 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(239 246 255 / var(--tw-bg-opacity, 1))
+}
+.bg-gray-50 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(249 250 251 / var(--tw-bg-opacity, 1))
+}
+.p-3 {
+    padding: 0.75rem
+}
+.px-2 {
+    padding-left: 0.5rem;
+    padding-right: 0.5rem
+}
+.py-0\.5 {
+    padding-top: 0.125rem;
+    padding-bottom: 0.125rem
+}
+.pt-3 {
+    padding-top: 0.75rem
+}
 .pt-4 {
     padding-top: 1rem
+}
+.font-mono {
+    font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace
+}
 .text-sm {
 …
     line-height: 1rem
+}
+.font-medium {
+    font-weight: 500
+}
 .font-semibold {
     font-weight: 600
+}
+.text-blue-800 {
+    --tw-text-opacity: 1;
+    color: rgb(30 64 175 / var(--tw-text-opacity, 1))
+}
+.text-gray-400 {
+    --tw-text-opacity: 1;
+    color: rgb(156 163 175 / var(--tw-text-opacity, 1))
+}
 .text-gray-500 {
 …
     color: rgb(107 114 128 / var(--tw-text-opacity, 1))
+}
+.text-gray-700 {
+    --tw-text-opacity: 1;
+    color: rgb(55 65 81 / var(--tw-text-opacity, 1))
+}
 .filter {

nhrrob-secure/tags/1.2.0/includes/Admin/Api.php

-                      r3438122
+                      r3441244
                     'sanitize_callback' => 'rest_sanitize_boolean',
                 ],
+                'nhrrob_secure_log_retention_days' => [
+                    'type' => 'integer',
+                    'sanitize_callback' => 'absint',
+                ],
+                'nhrrob_secure_disable_xmlrpc' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_disable_file_editor' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_hide_wp_version' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_disable_rest_users' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_firewall_blocked_uas' => [
+                    'type' => 'string',
+                    'sanitize_callback' => 'sanitize_textarea_field',
+                ],
+                'nhrrob_secure_idle_timeout' => [
+                    'type' => 'integer',
+                    'sanitize_callback' => 'absint',
+                ],
             ],
         ]);
 …
         ]);
+        // Get audit logs
+        register_rest_route('nhrrob-secure/v1', '/logs', [
+            'methods' => 'GET',
+            'callback' => [$this, 'get_logs'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+        // Get sessions
+        register_rest_route('nhrrob-secure/v1', '/sessions', [
+            'methods' => 'GET',
+            'callback' => [$this, 'get_sessions_list'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+        // Destroy session
+        register_rest_route('nhrrob-secure/v1', '/sessions/destroy', [
+            'methods' => 'POST',
+            'callback' => [$this, 'destroy_session'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+            'args' => [
+                'verifier' => [
+                    'required' => true,
+                    'type' => 'string',
+                    'sanitize_callback' => 'sanitize_text_field',
+                ],
+            ],
+        ]);
+        // Destroy other sessions
+        register_rest_route('nhrrob-secure/v1', '/sessions/destroy-others', [
+            'methods' => 'POST',
+            'callback' => [$this, 'destroy_other_sessions'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+    }
 …
             'nhrrob_secure_2fa_type' => get_option('nhrrob_secure_2fa_type', 'app'),
             'nhrrob_secure_dark_mode' => (bool) get_option('nhrrob_secure_dark_mode', false),
+            'nhrrob_secure_log_retention_days' => (int) get_option('nhrrob_secure_log_retention_days', 30),
+            'nhrrob_secure_disable_xmlrpc' => (bool) get_option('nhrrob_secure_disable_xmlrpc', false),
+            'nhrrob_secure_disable_file_editor' => (bool) get_option('nhrrob_secure_disable_file_editor', false),
+            'nhrrob_secure_hide_wp_version' => (bool) get_option('nhrrob_secure_hide_wp_version', false),
+            'nhrrob_secure_disable_rest_users' => (bool) get_option('nhrrob_secure_disable_rest_users', false),
+            'nhrrob_secure_firewall_blocked_uas' => get_option('nhrrob_secure_firewall_blocked_uas', ''),
+            'nhrrob_secure_idle_timeout' => (int) get_option('nhrrob_secure_idle_timeout', 0),
             'available_roles' => $this->get_available_roles(),
         ];
 …
         $scanner = new \NHRRob\Secure\FileScanner();
         $result = $scanner->repair_core_file($file);
         if (is_wp_error($result)) {
             return $result;
+        }
         return ['success' => true, 'message' => 'File repaired successfully.'];
+    }
 …
         $file = $request->get_param('file');
         $scanner = new \NHRRob\Secure\FileScanner();
         // Security check: ensure file is inside WP_CONTENT_DIR
         if (strpos($file, WP_CONTENT_DIR) !== 0) {
 …
         if ($scanner->delete_file($file)) {
              return ['success' => true, 'message' => 'File deleted successfully.'];
+        }
+            return ['success' => true, 'message' => 'File deleted successfully.'];
+        }
         return new \WP_Error('delete_failed', 'Could not delete file.');
+    }
+    /**
+     * Get audit logs
+     */
+    public function get_logs($request)
+    {
+        $limit = $request->get_param('limit') ? (int) $request->get_param('limit') : 20;
+        $offset = $request->get_param('offset') ? (int) $request->get_param('offset') : 0;
+        $audit_log = new \NHRRob\Secure\AuditLog();
+        return $audit_log->get_logs($limit, $offset);
+    }
+    /**
+     * Get sessions list
+     */
+    public function get_sessions_list()
+    {
+        $manager = new \NHRRob\Secure\SessionManager();
+        $sessions = $manager->get_sessions(get_current_user_id());
+        $current_token = wp_get_session_token();
+        $formatted = [];
+        foreach ($sessions as $verifier => $session) {
+            $formatted[] = [
+                'verifier' => $verifier,
+                'ip' => $session['ip'],
+                'ua' => $session['ua'],
+                'login' => $session['login'],
+                'expiration' => $session['expiration'],
+                'is_current' => $verifier === $current_token,
+            ];
+        }
+        return $formatted;
+    }
+    /**
+     * Destroy session
+     */
+    public function destroy_session($request)
+    {
+        $verifier = $request->get_param('verifier');
+        $manager = new \NHRRob\Secure\SessionManager();
+        $manager->destroy_session(get_current_user_id(), $verifier);
+        return ['success' => true];
+    }
+    /**
+     * Destroy other sessions
+     */
+    public function destroy_other_sessions()
+    {
+        $manager = new \NHRRob\Secure\SessionManager();
+        $manager->destroy_other_sessions(get_current_user_id());
+        return ['success' => true];
+    }
+}

nhrrob-secure/tags/1.2.0/includes/App.php

-                      r3435758
+                      r3441244
  * App base class
  */
+class App {
+class App
+{
+    /**
+     * Initialize the class
+     */
+    public function __construct()
+    {
+        // Base init
+    }
     /**
      * Render a template
 …
      * @param array $args
      */
+    public function render( $name, $args = [] ) {
+        extract( $args );
+    public function render($name, $args = [])
+    {
+        extract($args);
         $template = NHRROB_SECURE_PATH . '/templates/' . $name . '.php';
         if ( file_exists( $template ) ) {
+        if (file_exists($template)) {
             include $template;
+        }

nhrrob-secure/tags/1.2.0/nhrrob-secure.php

-                      r3438122
+                      r3441244
 <?php
 /**
  * Plugin Name: NHR Secure – Hide Admin, Limit Login, 2FA & Vulnerability Checker
+ * Plugin Name: NHR Secure – Login Security, Firewall, 2FA & Audit Log
  * Plugin URI: http://wordpress.org/plugins/nhrrob-secure/
  * Description: Lightweight WordPress security plugin that protects your admin area, hides debug logs, limits login attempts, and checks for vulnerabilities. Minimal code, maximum protection.
  * Author: Nazmul Hasan Robin
  * Author URI: https://profiles.wordpress.org/nhrrob/
  * Version: 1.1.0
+ * Version: 1.2.0
  * Requires at least: 6.0
  * Requires PHP: 7.4
 …
      * @var string
      */
     const version = '1.1.0';
+    const version = '1.2.0';
     /**
 …
         new \NHRRob\Secure\FileScanner();
+        // Initialize hardening and firewall
+        new \NHRRob\Secure\Hardening();
+        // Initialize session manager
+        new \NHRRob\Secure\SessionManager();
+        // Initialize audit log
+        new \NHRRob\Secure\AuditLog();
         // Initialize admin menu
         if (is_admin()) {
 …
             wp_schedule_event(time(), 'daily', 'nhrrob_secure_vulnerability_scan_cron');
+        }
+        if (!wp_next_scheduled('nhrrob_secure_daily_cleanup')) {
+            wp_schedule_event(time(), 'daily', 'nhrrob_secure_daily_cleanup');
+        }
+        // Create audit log table
+        (new \NHRRob\Secure\AuditLog())->maybe_install_schema();
+    }
 …
+    {
         wp_clear_scheduled_hook('nhrrob_secure_vulnerability_scan_cron');
+        wp_clear_scheduled_hook('nhrrob_secure_daily_cleanup');
+    }
+}

nhrrob-secure/tags/1.2.0/readme.txt

-                      r3438122
+                      r3441244
 === NHR Secure – Hide Admin, Limit Login, 2FA & Vulnerability Checker ===
+=== NHR Secure – Login Security, Firewall, 2FA & Audit Log ===
 Contributors: nhrrob
 Tags: security, hide admin, login protection, debug log, 2fa
 …
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 1.1.0
+Stable tag: 1.2.0
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 - Check file integrity
+### 🖥️ User Session Management
+Monitor and control active user sessions to prevent unauthorized access.
+- **View Active Sessions:** See IP, location, device, and login time for all logged-in users.
+- **Remote Logout:** Instantly log out suspicious sessions or all other devices.
+- **Idle Timeout:** Automatically log out inactive users after a set period.
+### 🧱 Hardening & Firewall
+Essential security hardening to lock down your WordPress site.
+- **Disable XML-RPC:** Prevent remote attacks and brute-force attempts.
+- **Disable File Editor:** Stop file modifications from the dashboard.
+- **Hide WP Version:** Obscure your WordPress version from attackers.
+- **Block User-Agents:** Prevent bad bots and scrapers from accessing your site.
+- **Disable User Enumeration:** Stop attackers from harvesting usernames via REST API.
+### 📝 Activity Audit Log
+Keep a record of important security events on your site.
+- Tracks logins, failed attempts, file changes, and settings updates.
+- View user, IP, and event details.
+- Configurable log retention policy.
 ### ⚡ Lightweight & Minimal
 Designed to deliver maximum security with minimal code. No bloat, no complexity.
 …
 == Changelog ==
+= 1.2.0 - 17/01/2026 =
+- Added: User Session Management (View active sessions, remote logout, idle timeout)
+- Added: Hardening & Firewall (Disable XML-RPC, File Editor, Version Hiding, User Enumeration)
+- Added: User-Agent Blocking
+- Added: Audit Logs for security events
+- Fixed: Dark mode improvements
+- Improved: UI enhancements
 = 1.1.0 - 13/01/2026 =
 - Added: Vulnerability Checker

nhrrob-secure/trunk/assets/src/components/VulnerabilityChecker.js

r3438122	r3441244
115	115	<a href="plugins.php" style={{ textDecoration: 'none', color: 'inherit' }}>
116	116	{decodeEntities(plugin.name)}
117		</a>
	117	</a>
118	118	<span style={{ fontWeight: 'normal', color: '#666' }}> ({plugin.version})</span>
119	119	</strong>

nhrrob-secure/trunk/assets/src/index.js

-                      r3438122
+                      r3441244
 import VulnerabilityChecker from './components/VulnerabilityChecker';
 import FileScanner from './components/FileScanner';
+import Hardening from './components/Hardening';
+import SessionManager from './components/SessionManager';
+import AuditLog from './components/AuditLog';
 import './style.css';
 …
                 <CustomLoginPage settings={settings} updateSetting={updateSetting} />
                 <TwoFactorAuth settings={settings} updateSetting={updateSetting} />
+                <Hardening settings={settings} updateSetting={updateSetting} />
                 <FileProtection settings={settings} updateSetting={updateSetting} />
                 <VulnerabilityChecker />
                 <FileScanner />
+                <SessionManager settings={settings} updateSetting={updateSetting} />
+                <AuditLog settings={settings} updateSetting={updateSetting} />
             </div>
 …
     render(<SettingsApp />, rootElement);
+}

nhrrob-secure/trunk/assets/src/style.css

-                      r3438122
+                      r3441244
+    }
+    .dark-mode .components-text-control__input {
+    .dark-mode .components-text-control__input,
+    .dark-mode .components-textarea-control__input {
         background-color: #2c3338 !important;
         border-color: #43494e !important;
         color: #f0f0f1 !important;
+    }
+    .dark-mode .components-placeholder__input::placeholder,
+    .dark-mode input::placeholder,
+    .dark-mode textarea::placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    /* Session Manager Dark Mode */
+    .dark-mode .session-item.bg-gray-50 {
+        background-color: rgba(255, 255, 255, 0.03) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item.bg-blue-50 {
+        background-color: rgba(34, 113, 177, 0.15) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item .text-gray-700 {
+        color: var(--nhrrob-secure-text) !important;
+    }
+    .dark-mode .session-item .text-gray-500 {
+        color: var(--nhrrob-secure-text-muted) !important;
+    }
+    .dark-mode .session-item .bg-blue-100 {
+        background-color: rgba(34, 113, 177, 0.3) !important;
+        color: #72aee6 !important;
+    }
+    /* Hardening Headers */
+    .nhrrob-secure-setting-subtitle {
+        @apply text-sm font-semibold mb-3 mt-0 uppercase tracking-wide opacity-80;
+        color: var(--nhrrob-secure-text-muted);
+    }
+    .dark-mode .nhrrob-secure-setting-subtitle {
+        color: #a7aaad;
+    }
 …
+    }
+}
+/* Retention Select */
+.nhrrob-secure-retention-select select {
+    @apply h-8 py-0 pr-8 pl-2 text-xs border-gray-300;
+    border-color: var(--nhrrob-secure-border);
+    color: var(--nhrrob-secure-text);
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-retention-select select {
+    background-color: #2c3338 !important;
+    /* Darker input bg */
+    border-color: var(--nhrrob-secure-border) !important;
+    color: var(--nhrrob-secure-text) !important;
+}
+.nhrrob-secure-retention-select .components-base-control__field {
+    @apply mb-0;
+}
+/* Audit Log Table */
+.nhrrob-secure-audit-table-wrapper {
+    @apply overflow-x-auto border rounded mt-5;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table {
+    @apply w-full border-collapse text-[13px];
+    background: var(--nhrrob-secure-card-bg);
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-audit-table th,
+.nhrrob-secure-audit-table td {
+    @apply p-3 text-left border-b;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table th {
+    @apply font-semibold;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+.nhrrob-secure-audit-table tr:last-child td {
+    @apply border-b-0;
+}
+.nhrrob-secure-audit-table tr:hover td {
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-badge {
+    @apply px-1.5 py-0.5 rounded text-[11px] uppercase font-medium;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+/* Dark Mode support for table */
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table-wrapper {
+    border-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table {
+    background: #1e1e1e;
+    color: #dcdcde;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table th {
+    background: #2c2c2c;
+    color: #ffffff;
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table td {
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table tr:hover td {
+    background: #2c2c2c;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-badge {
+    background: #3c434a;
+    color: #dcdcde;
+}
+.nhrrob-secure-pagination {
+    @apply flex justify-center items-center gap-4 mt-5;
+}
+.nhrrob-secure-page-info {
+    @apply text-[13px];
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-page-info {
+    color: #a7aaad;
+}
+.no-logs {
+    @apply text-center p-8 !important;
+    color: var(--nhrrob-secure-text-muted);
+}
+/* Severity indicators */
+.severity-2 td:first-child {
+    @apply border-l-4 border-l-yellow-400;
+}
+.severity-3 td:first-child {
+    @apply border-l-4 border-l-red-600;
+}

nhrrob-secure/trunk/build/admin.asset.php

r3438122	r3441244
1		<?php return array('dependencies' => array('react', 'wp-api-fetch', 'wp-components', 'wp-element', 'wp-html-entities', 'wp-i18n'), 'version' => '~~e9b337e5f5ffe2cea663~~');
	1	<?php return array('dependencies' => array('react', 'wp-api-fetch', 'wp-components', 'wp-element', 'wp-html-entities', 'wp-i18n'), 'version' => '876f03e1a6accd816f8d');

nhrrob-secure/trunk/build/admin.css

-                      r3438122
+                      r3441244
         justify-content: space-between;
         gap: 1rem;
+}
+    .nhrrob-secure-card-header-actions {
+        display: flex;
+        align-items: center;
+        gap: 0.75rem;
+}
 …
+    }
+    .dark-mode .components-text-control__input {
+    .dark-mode .components-text-control__input,
+    .dark-mode .components-textarea-control__input {
         background-color: #2c3338 !important;
         border-color: #43494e !important;
         color: #f0f0f1 !important;
+    }
+    .dark-mode .components-placeholder__input::-moz-placeholder, .dark-mode input::-moz-placeholder, .dark-mode textarea::-moz-placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    .dark-mode .components-placeholder__input::placeholder,
+    .dark-mode input::placeholder,
+    .dark-mode textarea::placeholder {
+        color: rgba(240, 240, 241, 0.6) !important;
+    }
+    /* Session Manager Dark Mode */
+    .dark-mode .session-item.bg-gray-50 {
+        background-color: rgba(255, 255, 255, 0.03) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item.bg-blue-50 {
+        background-color: rgba(34, 113, 177, 0.15) !important;
+        border-color: var(--nhrrob-secure-border) !important;
+    }
+    .dark-mode .session-item .text-gray-700 {
+        color: var(--nhrrob-secure-text) !important;
+    }
+    .dark-mode .session-item .text-gray-500 {
+        color: var(--nhrrob-secure-text-muted) !important;
+    }
+    .dark-mode .session-item .bg-blue-100 {
+        background-color: rgba(34, 113, 177, 0.3) !important;
+        color: #72aee6 !important;
+    }
+    /* Hardening Headers */
+    .nhrrob-secure-setting-subtitle {
+        margin-bottom: 0.75rem;
+        margin-top: 0px;
+        font-size: 0.875rem;
+        line-height: 1.25rem;
+        font-weight: 600;
+        text-transform: uppercase;
+        letter-spacing: 0.025em;
+        opacity: 0.8;
+        color: var(--nhrrob-secure-text-muted);
+}
+    .dark-mode .nhrrob-secure-setting-subtitle {
+        color: #a7aaad;
+    }
 …
+}
+    .dark-mode .session-item .nhrrob-secure-card-subtitle {
+        color: var(--nhrrob-secure-text-muted);
+    }
     .nhrrob-secure-card-subtitle {
         margin: 0px;
 …
         background-color: transparent;
+}
+    .dark-mode .session-item.nhrrob-result-group-title {
+        background-color: rgba(255, 255, 255, 0.03);
+        border-color: var(--nhrrob-secure-border);
+    }
     .nhrrob-result-group-title {
 …
+}
+    .dark-mode .nhrrob-result-row:hover.session-item {
+        background-color: rgba(255, 255, 255, 0.03);
+        border-color: var(--nhrrob-secure-border);
+    }
     .nhrrob-result-row:hover {
         --tw-bg-opacity: 1;
 …
         color: rgb(229 231 235 / var(--tw-text-opacity, 1));
+}
+    .dark-mode .session-item .nhrrob-file-meta {
+        color: var(--nhrrob-secure-text-muted);
+    }
     .nhrrob-file-meta {
 …
         margin-bottom: 1rem;
+}
+.ml-2 {
+        margin-left: 0.5rem;
+}
 .ml-5 {
         margin-left: 1.25rem;
 …
         margin-top: 0px;
+}
+.mt-1 {
+        margin-top: 0.25rem;
+}
 .mt-4 {
         margin-top: 1rem;
+}
+.block {
+        display: block;
+}
+.flex {
+        display: flex;
+}
 .table {
         display: table;
 …
         display: none;
+}
+.w-64 {
+        width: 16rem;
+}
+.w-full {
+        width: 100%;
+}
 .grid-cols-2 {
         grid-template-columns: repeat(2, minmax(0, 1fr));
+}
+.items-start {
+        align-items: flex-start;
+}
+.justify-center {
+        justify-content: center;
+}
+.justify-between {
+        justify-content: space-between;
+}
 .gap-2 {
         gap: 0.5rem;
+}
+.truncate {
+        overflow: hidden;
+        text-overflow: ellipsis;
+        white-space: nowrap;
+}
+.rounded {
+        border-radius: 0.25rem;
+}
+.rounded-full {
+        border-radius: 9999px;
+}
+.border {
+        border-width: 1px;
+}
 .border-t {
         border-top-width: 1px;
+}
+.border-blue-200 {
+        --tw-border-opacity: 1;
+        border-color: rgb(191 219 254 / var(--tw-border-opacity, 1));
+}
 .border-gray-100 {
 …
         border-color: rgb(243 244 246 / var(--tw-border-opacity, 1));
+}
+.border-gray-200 {
+        --tw-border-opacity: 1;
+        border-color: rgb(229 231 235 / var(--tw-border-opacity, 1));
+}
+.bg-blue-100 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(219 234 254 / var(--tw-bg-opacity, 1));
+}
+.bg-blue-50 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(239 246 255 / var(--tw-bg-opacity, 1));
+}
+.bg-gray-50 {
+        --tw-bg-opacity: 1;
+        background-color: rgb(249 250 251 / var(--tw-bg-opacity, 1));
+}
+.p-3 {
+        padding: 0.75rem;
+}
+.px-2 {
+        padding-left: 0.5rem;
+        padding-right: 0.5rem;
+}
+.py-0\.5 {
+        padding-top: 0.125rem;
+        padding-bottom: 0.125rem;
+}
+.pt-3 {
+        padding-top: 0.75rem;
+}
 .pt-4 {
         padding-top: 1rem;
+}
+.font-mono {
+        font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace;
+}
 .text-sm {
 …
         line-height: 1rem;
+}
+.font-medium {
+        font-weight: 500;
+}
 .font-semibold {
         font-weight: 600;
+}
+.text-blue-800 {
+        --tw-text-opacity: 1;
+        color: rgb(30 64 175 / var(--tw-text-opacity, 1));
+}
+.text-gray-400 {
+        --tw-text-opacity: 1;
+        color: rgb(156 163 175 / var(--tw-text-opacity, 1));
+}
 .text-gray-500 {
         --tw-text-opacity: 1;
         color: rgb(107 114 128 / var(--tw-text-opacity, 1));
+}
+.text-gray-700 {
+        --tw-text-opacity: 1;
+        color: rgb(55 65 81 / var(--tw-text-opacity, 1));
+}
 .filter {
 …
+        }
+}
+/* Retention Select */
+.nhrrob-secure-retention-select select {
+        height: 2rem;
+        --tw-border-opacity: 1;
+        border-color: rgb(209 213 219 / var(--tw-border-opacity, 1));
+        padding-top: 0px;
+        padding-bottom: 0px;
+        padding-right: 2rem;
+        padding-left: 0.5rem;
+        font-size: 0.75rem;
+        line-height: 1rem;
+    border-color: var(--nhrrob-secure-border);
+    color: var(--nhrrob-secure-text);
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-retention-select select {
+    background-color: #2c3338 !important;
+    /* Darker input bg */
+    border-color: var(--nhrrob-secure-border) !important;
+    color: var(--nhrrob-secure-text) !important;
+}
+.nhrrob-secure-retention-select .components-base-control__field {
+        margin-bottom: 0px;
+}
+/* Audit Log Table */
+.nhrrob-secure-audit-table-wrapper {
+        margin-top: 1.25rem;
+        overflow-x: auto;
+        border-radius: 0.25rem;
+        border-width: 1px;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table {
+        width: 100%;
+        border-collapse: collapse;
+        font-size: 13px;
+    background: var(--nhrrob-secure-card-bg);
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-audit-table th,
+.nhrrob-secure-audit-table td {
+        border-bottom-width: 1px;
+        padding: 0.75rem;
+        text-align: left;
+    border-color: var(--nhrrob-secure-border);
+}
+.nhrrob-secure-audit-table th {
+        font-weight: 600;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+.nhrrob-secure-audit-table tr:last-child td {
+        border-bottom-width: 0px;
+}
+.nhrrob-secure-audit-table tr:hover td {
+    background-color: var(--nhrrob-secure-bg);
+}
+.nhrrob-secure-badge {
+        border-radius: 0.25rem;
+        padding-left: 0.375rem;
+        padding-right: 0.375rem;
+        padding-top: 0.125rem;
+        padding-bottom: 0.125rem;
+        font-size: 11px;
+        font-weight: 500;
+        text-transform: uppercase;
+    background-color: var(--nhrrob-secure-bg);
+    color: var(--nhrrob-secure-text);
+}
+/* Dark Mode support for table */
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table-wrapper {
+    border-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table {
+    background: #1e1e1e;
+    color: #dcdcde;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table th {
+    background: #2c2c2c;
+    color: #ffffff;
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table td {
+    border-bottom-color: #3c434a;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-audit-table tr:hover td {
+    background: #2c2c2c;
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-badge {
+    background: #3c434a;
+    color: #dcdcde;
+}
+.nhrrob-secure-pagination {
+        margin-top: 1.25rem;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        gap: 1rem;
+}
+.nhrrob-secure-page-info {
+        font-size: 13px;
+    color: var(--nhrrob-secure-text-muted);
+}
+.nhrrob-secure-settings.dark-mode .nhrrob-secure-page-info {
+    color: #a7aaad;
+}
+.no-logs {
+        padding: 2rem !important;
+        text-align: center !important;
+    color: var(--nhrrob-secure-text-muted);
+}
+/* Severity indicators */
+.severity-2 td:first-child {
+        border-left-width: 4px;
+        --tw-border-opacity: 1;
+        border-left-color: rgb(250 204 21 / var(--tw-border-opacity, 1));
+}
+.severity-3 td:first-child {
+        border-left-width: 4px;
+        --tw-border-opacity: 1;
+        border-left-color: rgb(220 38 38 / var(--tw-border-opacity, 1));
+}

nhrrob-secure/trunk/build/admin.js

r3438122	r3441244
1		(()=>{"use strict";var e,r={967(e,r,t){const n=window.React,a=window.wp.element,s=window.wp.components,l=window.wp.i18n,c=window.wp.apiFetch;var o=t.n(c);const i=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Login Protection","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Login Attempts Limit","nhrrob-secure"),help:(0,l.__)("Limit failed login attempts to prevent brute force attacks","nhrrob-secure"),checked:e.nhrrob_secure_limit_login_attempts,onChange:e=>r("nhrrob_secure_limit_login_attempts",e)}),e.nhrrob_secure_limit_login_attempts&&(0,n.createElement)(s.TextControl,{label:(0,l.__)("Maximum Login Attempts","nhrrob-secure"),help:(0,l.__)("Number of failed attempts before blocking (default: 5)","nhrrob-secure"),type:"number",value:e.nhrrob_secure_login_attempts_limit,onChange:e=>r("nhrrob_secure_login_attempts_limit",parseInt(e)\|\|5),min:"1",max:"20"}),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Proxy IP Detection","nhrrob-secure"),help:(0,l.__)("Detect real IP behind proxies (Cloudflare, etc.)","nhrrob-secure"),checked:e.nhrrob_secure_enable_proxy_ip,onChange:e=>r("nhrrob_secure_enable_proxy_ip",e)}))),u=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Custom Login Page","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Custom Login URL","nhrrob-secure"),help:(0,l.__)("Hide wp-login.php and use a custom login URL","nhrrob-secure"),checked:e.nhrrob_secure_custom_login_page,onChange:e=>r("nhrrob_secure_custom_login_page",e)}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)(s.TextControl,{label:(0,l.__)("Custom Login URL","nhrrob-secure"),help:(0,l.__)("Your login page will be accessible at this URL","nhrrob-secure"),value:e.nhrrob_secure_custom_login_url,onChange:e=>r("nhrrob_secure_custom_login_url",e),placeholder:"/hidden-access-52w"}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)("div",{className:"nhrrob-secure-info"},(0,n.createElement)("strong",null,(0,l.__)("Your login URL:","nhrrob-secure")),(0,n.createElement)("code",null,window.location.origin,e.nhrrob_secure_custom_login_url)))),m=({settings:e,updateSetting:r})=>{const t=e.nhrrob_secure_2fa_enforced_roles\|\|[],a=e.available_roles\|\|[];return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Two-Factor Authentication","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Enable Global 2FA","nhrrob-secure"),help:(0,n.createElement)(n.Fragment,null,(0,l.__)("Enables Google Authenticator support for all users. Users can set it up in their ","nhrrob-secure"),(0,n.createElement)("a",{href:nhrrobSecureSettings.profile_url,target:"_blank",rel:"noreferrer"},(0,l.__)("profile page","nhrrob-secure")),"."),checked:e.nhrrob_secure_enable_2fa,onChange:e=>r("nhrrob_secure_enable_2fa",e)}),e.nhrrob_secure_enable_2fa&&(0,n.createElement)(n.Fragment,null,(0,n.createElement)("div",{className:"nhrrob-secure-2fa-method pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("2FA Method","nhrrob-secure")),(0,n.createElement)(s.RadioControl,{selected:e.nhrrob_secure_2fa_type\|\|"app",options:[{label:(0,l.__)("Authenticator App (Recommended)","nhrrob-secure"),value:"app"},{label:(0,l.__)("Email OTP","nhrrob-secure"),value:"email"}],onChange:e=>r("nhrrob_secure_2fa_type",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-enforced-roles pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Enforced 2FA by Role","nhrrob-secure")),(0,n.createElement)("p",{className:"text-xs text-gray-500 mb-4"},(0,l.__)("Users with the selected roles will be forced to set up 2FA before they can access the admin dashboard.","nhrrob-secure")),(0,n.createElement)("div",{className:"grid grid-cols-2 gap-2"},a.map(e=>(0,n.createElement)(s.CheckboxControl,{key:e.value,label:e.label,checked:t.includes(e.value),onChange:n=>((e,n)=>{const a=n?[...t,e]:t.filter(r=>r!==e);r("nhrrob_secure_2fa_enforced_roles",a)})(e.value,n)})))))))},h=({settings:e,updateSetting:r})=>(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Protection","nhrrob-secure")),(0,n.createElement)(s.ToggleControl,{label:(0,l.__)("Protect Debug Log","nhrrob-secure"),help:(0,l.__)("Block direct access to wp-content/debug.log","nhrrob-secure"),checked:e.nhrrob_secure_protect_debug_log,onChange:e=>r("nhrrob_secure_protect_debug_log",e)}))),d=window.wp.htmlEntities,b=()=>{const[e,r]=(0,a.useState)(null),[t,c]=(0,a.useState)(!0),[i,u]=(0,a.useState)(!1),[m,h]=(0,a.useState)(null);(0,a.useEffect)(()=>{b()},[]);const b=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/status"});r(e),c(!1)}catch(e){h((0,l.__)("Failed to fetch vulnerability status","nhrrob-secure")),c(!1)}};if(t)return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)(s.Spinner,null)));const _=e&&(e.core.length>0\|\|e.plugins.length>0\|\|e.themes.length>0);return(0,n.createElement)(s.Card,{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card"},(0,n.createElement)(s.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Vulnerability Checker","nhrrob-secure")),(0,n.createElement)(s.Button,{variant:"primary",onClick:async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/scan",method:"POST"});r(e)}catch(e){h((0,l.__)("Failed to run vulnerability scan","nhrrob-secure"))}finally{u(!1)}},isBusy:i,disabled:i,icon:"update",iconPosition:"right"},i?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Scan Now","nhrrob-secure"))),(0,n.createElement)("p",{className:"nhrrob-secure-last-scan"},(0,n.createElement)("strong",null,(0,l.__)("Last Scan:","nhrrob-secure"))," ",(g=e.last_scan)?new Date(1e3*g).toLocaleString():(0,l.__)("Never","nhrrob-secure")),m&&(0,n.createElement)(s.Notice,{status:"error",isDismissible:!1},m),_?(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},(0,n.createElement)(s.Notice,{status:"warning",isDismissible:!1},(0,l.__)("Vulnerabilities detected! Please review and update the items below.","nhrrob-secure")),e.core.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("WordPress Core","nhrrob-secure")),(0,n.createElement)("ul",null,e.core.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))),e.plugins.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Plugins","nhrrob-secure")),e.plugins.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,n.createElement)("a",{href:"plugins.php",style:{textDecoration:"none",color:"inherit"}},(0,d.decodeEntities)(e.name)),(0,n.createElement)("span",{style:{fontWeight:"normal",color:"#666"}}," (",e.version,")")),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))))),e.themes.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Themes","nhrrob-secure")),e.themes.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,d.decodeEntities)(e.name)," (",e.version,")"),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name)))))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No known vulnerabilities detected.","nhrrob-secure"))));var g},_=()=>{const[e,r]=(0,a.useState)(!1),[t,c]=(0,a.useState)(null),[i,u]=(0,a.useState)(null),[m,h]=(0,a.useState)("core"),d=async()=>{r(!0),u(null),c(null);try{const e="core"===m?"/nhrrob-secure/v1/scanner/core":"/nhrrob-secure/v1/scanner/malware",r=await o()({path:e,method:"POST"});c(r)}catch(e){u(e.message\|\|(0,l.__)("An error occurred during scan.","nhrrob-secure"))}finally{r(!1)}};return(0,n.createElement)("div",{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card padded-header"},(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("div",{className:"nhrrob-secure-header-content"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Scanner","nhrrob-secure")),(0,n.createElement)("p",{className:"nhrrob-secure-card-subtitle"},(0,l.__)("Scan your site for file modifications and potential malware.","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-scan-controls"},(0,n.createElement)("div",{className:"nhrrob-scan-type-toggle"},(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("core"===m?"active":""),onClick:()=>h("core"),disabled:e},(0,l.__)("Core Integrity","nhrrob-secure")),(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("malware"===m?"active":""),onClick:()=>h("malware"),disabled:e},(0,l.__)("Malware Scan","nhrrob-secure"))),(0,n.createElement)(s.Button,{variant:"primary",onClick:()=>d(),isBusy:e,disabled:e,icon:"update",iconPosition:"right"},e?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Start Scan","nhrrob-secure")))),(0,n.createElement)("div",{className:"nhrrob-card-body"},i&&(0,n.createElement)("div",{className:"notice notice-error inline-notice"},(0,n.createElement)("p",null,i)),t&&(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},("core"===m&&(t.modified?.length>0\|\|t.missing?.length>0)\|\|"malware"===m&&t.suspicious?.length>0)&&(0,n.createElement)("div",{className:"notice notice-warning inline-notice nhrrob-warning-notice"},(0,n.createElement)("p",null,(0,l.__)("Issues detected! Please review and update the items below.","nhrrob-secure"))),"core"===m&&(0,n.createElement)(n.Fragment,null,t.modified&&t.modified.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Modified Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.modified.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)),(0,n.createElement)(s.Button,{variant:"secondary",isSmall:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to repair this file? It will be overwritten with the original version.","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/repair",method:"POST",data:{file:e}}),alert((0,l.__)("File repaired successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Repair failed.","nhrrob-secure"))}})(e)},(0,l.__)("Repair","nhrrob-secure")))))),t.missing&&t.missing.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Missing Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.missing.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)))))),!t.modified?.length&&!t.missing?.length&&(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No modified core files found.","nhrrob-secure"))),"malware"===m&&(0,n.createElement)(n.Fragment,null,t.suspicious&&t.suspicious.length>0?(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Suspicious Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.suspicious.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e.file),(0,n.createElement)("span",{className:"nhrrob-file-meta"},e.reason)),(0,n.createElement)(s.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to PERMANENTLY delete this file?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/delete",method:"POST",data:{file:e}}),alert((0,l.__)("File deleted successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Delete failed.","nhrrob-secure"))}})(e.file)},(0,l.__)("Delete","nhrrob-secure")))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No suspicious files found.","nhrrob-secure")),(0,n.createElement)("p",{className:"description nhrrob-scan-count"},(0,n.createElement)("small",null,(0,l.__)("Scanned files:","nhrrob-secure")," ",t.scanned_count))))))},g=document.getElementById("nhrrob-secure-settings-root");g&&(0,a.render)((0,n.createElement)(()=>{const[e,r]=(0,a.useState)(null),[t,c]=(0,a.useState)(!0),[d,g]=(0,a.useState)(!1),[p,E]=(0,a.useState)(null);(0,a.useEffect)(()=>{v()},[]);const v=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/settings"});r(e),c(!1)}catch(e){E({type:"error",message:(0,l.__)("Failed to load settings","nhrrob-secure")}),c(!1)}},f=(t,n)=>{r({...e,[t]:n})};return(0,a.useEffect)(()=>{e?.nhrrob_secure_dark_mode?document.body.classList.add("nhrrob-secure-dark-mode-active"):document.body.classList.remove("nhrrob-secure-dark-mode-active")},[e?.nhrrob_secure_dark_mode]),t?(0,n.createElement)("div",{className:"nhrrob-secure-loading"},(0,n.createElement)(s.Spinner,null)):(0,n.createElement)("div",{className:"nhrrob-secure-settings "+(e.nhrrob_secure_dark_mode?"dark-mode":"")},(0,n.createElement)("div",{className:"nhrrob-secure-header"},(0,n.createElement)("div",{className:"nhrrob-secure-header-main"},(0,n.createElement)("h1",null,(0,l.__)("NHR Secure Settings","nhrrob-secure")),(0,n.createElement)(s.Button,{className:"nhrrob-secure-dark-mode-toggle",icon:e.nhrrob_secure_dark_mode?(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zM2 13h2c.55 0 1-.45 1-1s-.45-1-1-1H2c-.55 0-1 .45-1 1s.45 1 1 1zm18 0h2c.55 0 1-.45 1-1s-.45-1-1-1h-2c-.55 0-1 .45-1 1s.45 1 1 1zM11 2v2c0 .55.45 1 1 1s1-.45 1-1V2c0-.55-.45-1-1-1s-1 .45-1 1zm0 18v2c0 .55.45 1 1 1s1-.45 1-1v-2c0-.55-.45-1-1-1s-1 .45-1 1zM5.99 4.58a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41L5.99 4.58zm12.37 12.37a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41l-1.06-1.06zm1.06-10.96a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06zM7.05 18.36a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06z"})):(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 3c-4.97 0-9 4.03-9 9s4.03 9 9 9 9-4.03 9-9c0-.46-.04-.92-.1-1.36-.98 1.37-2.58 2.26-4.4 2.26-2.98 0-5.4-2.42-5.4-5.4 0-1.81.89-3.42 2.26-4.4-.44-.06-.9-.1-1.36-.1z"})),onClick:async()=>{const r=!e.nhrrob_secure_dark_mode;f("nhrrob_secure_dark_mode",r);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:{...e,nhrrob_secure_dark_mode:r}})}catch(e){console.error("Failed to save dark mode preference",e)}},label:(0,l.__)("Toggle Dark Mode","nhrrob-secure")})),(0,n.createElement)("p",{className:"nhrrob-secure-subtitle"},(0,l.__)("Configure security features for your WordPress site","nhrrob-secure"))),p&&(0,n.createElement)(s.Notice,{status:p.type,isDismissible:!0,onRemove:()=>E(null)},p.message),(0,n.createElement)("div",{className:"nhrrob-secure-cards"},(0,n.createElement)(i,{settings:e,updateSetting:f}),(0,n.createElement)(u,{settings:e,updateSetting:f}),(0,n.createElement)(m,{settings:e,updateSetting:f}),(0,n.createElement)(h,{settings:e,updateSetting:f}),(0,n.createElement)(b,null),(0,n.createElement)(_,null)),(0,n.createElement)("div",{className:"nhrrob-secure-actions"},(0,n.createElement)(s.Button,{variant:"primary",onClick:async()=>{g(!0),E(null);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:e}),E({type:"success",message:(0,l.__)("Settings saved successfully!","nhrrob-secure")})}catch(e){E({type:"error",message:(0,l.__)("Failed to save settings","nhrrob-secure")})}finally{g(!1)}},isBusy:d,disabled:d},d?(0,l.__)("Saving...","nhrrob-secure"):(0,l.__)("Save Settings","nhrrob-secure"))))},null),g)}},t={};function n(e){var a=t[e];if(void 0!==a)return a.exports;var s=t[e]={exports:{}};return r[e](s,s.exports,n),s.exports}n.m=r,e=[],n.O=(r,t,a,s)=>{if(!t){var l=1/0;for(u=0;u<e.length;u++){for(var[t,a,s]=e[u],c=!0,o=0;o<t.length;o++)(!1&s\|\|l>=s)&&Object.keys(n.O).every(e=>n.O[e](t[o]))?t.splice(o--,1):(c=!1,s<l&&(l=s));if(c){e.splice(u--,1);var i=a();void 0!==i&&(r=i)}}return r}s=s\|\|0;for(var u=e.length;u>0&&e[u-1][2]>s;u--)e[u]=e[u-1];e[u]=[t,a,s]},n.n=e=>{var r=e&&e.__esModule?()=>e.default:()=>e;return n.d(r,{a:r}),r},n.d=(e,r)=>{for(var t in r)n.o(r,t)&&!n.o(e,t)&&Object.defineProperty(e,t,{enumerable:!0,get:r[t]})},n.o=(e,r)=>Object.prototype.hasOwnProperty.call(e,r),(()=>{var e={884:0,15:0};n.O.j=r=>0===e[r];var r=(r,t)=>{var a,s,[l,c,o]=t,i=0;if(l.some(r=>0!==e[r])){for(a in c)n.o(c,a)&&(n.m[a]=c[a]);if(o)var u=o(n)}for(r&&r(t);i<l.length;i++)s=l[i],n.o(e,s)&&e[s]&&e[s][0](),e[s]=0;return n.O(u)},t=globalThis.webpackChunknhrrob_secure=globalThis.webpackChunknhrrob_secure\|\|[];t.forEach(r.bind(null,0)),t.push=r.bind(null,t.push.bind(t))})();var a=n.O(void 0,[15],()=>n(967));a=n.O(a)})();
	1	(()=>{"use strict";var e,r={195(e,r,t){const n=window.React,s=window.wp.element,a=window.wp.components,l=window.wp.i18n,c=window.wp.apiFetch;var o=t.n(c);const i=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Login Protection","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Login Attempts Limit","nhrrob-secure"),help:(0,l.__)("Limit failed login attempts to prevent brute force attacks","nhrrob-secure"),checked:e.nhrrob_secure_limit_login_attempts,onChange:e=>r("nhrrob_secure_limit_login_attempts",e)}),e.nhrrob_secure_limit_login_attempts&&(0,n.createElement)(a.TextControl,{label:(0,l.__)("Maximum Login Attempts","nhrrob-secure"),help:(0,l.__)("Number of failed attempts before blocking (default: 5)","nhrrob-secure"),type:"number",value:e.nhrrob_secure_login_attempts_limit,onChange:e=>r("nhrrob_secure_login_attempts_limit",parseInt(e)\|\|5),min:"1",max:"20"}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Proxy IP Detection","nhrrob-secure"),help:(0,l.__)("Detect real IP behind proxies (Cloudflare, etc.)","nhrrob-secure"),checked:e.nhrrob_secure_enable_proxy_ip,onChange:e=>r("nhrrob_secure_enable_proxy_ip",e)}))),u=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Custom Login Page","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Custom Login URL","nhrrob-secure"),help:(0,l.__)("Hide wp-login.php and use a custom login URL","nhrrob-secure"),checked:e.nhrrob_secure_custom_login_page,onChange:e=>r("nhrrob_secure_custom_login_page",e)}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)(a.TextControl,{label:(0,l.__)("Custom Login URL","nhrrob-secure"),help:(0,l.__)("Your login page will be accessible at this URL","nhrrob-secure"),value:e.nhrrob_secure_custom_login_url,onChange:e=>r("nhrrob_secure_custom_login_url",e),placeholder:"/hidden-access-52w"}),e.nhrrob_secure_custom_login_page&&(0,n.createElement)("div",{className:"nhrrob-secure-info"},(0,n.createElement)("strong",null,(0,l.__)("Your login URL:","nhrrob-secure")),(0,n.createElement)("code",null,window.location.origin,e.nhrrob_secure_custom_login_url)))),m=({settings:e,updateSetting:r})=>{const t=e.nhrrob_secure_2fa_enforced_roles\|\|[],s=e.available_roles\|\|[];return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Two-Factor Authentication","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Enable Global 2FA","nhrrob-secure"),help:(0,n.createElement)(n.Fragment,null,(0,l.__)("Enables Google Authenticator support for all users. Users can set it up in their ","nhrrob-secure"),(0,n.createElement)("a",{href:nhrrobSecureSettings.profile_url,target:"_blank",rel:"noreferrer"},(0,l.__)("profile page","nhrrob-secure")),"."),checked:e.nhrrob_secure_enable_2fa,onChange:e=>r("nhrrob_secure_enable_2fa",e)}),e.nhrrob_secure_enable_2fa&&(0,n.createElement)(n.Fragment,null,(0,n.createElement)("div",{className:"nhrrob-secure-2fa-method pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("2FA Method","nhrrob-secure")),(0,n.createElement)(a.RadioControl,{selected:e.nhrrob_secure_2fa_type\|\|"app",options:[{label:(0,l.__)("Authenticator App (Recommended)","nhrrob-secure"),value:"app"},{label:(0,l.__)("Email OTP","nhrrob-secure"),value:"email"}],onChange:e=>r("nhrrob_secure_2fa_type",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-enforced-roles pt-4 border-t border-gray-100"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Enforced 2FA by Role","nhrrob-secure")),(0,n.createElement)("p",{className:"text-xs text-gray-500 mb-4"},(0,l.__)("Users with the selected roles will be forced to set up 2FA before they can access the admin dashboard.","nhrrob-secure")),(0,n.createElement)("div",{className:"grid grid-cols-2 gap-2"},s.map(e=>(0,n.createElement)(a.CheckboxControl,{key:e.value,label:e.label,checked:t.includes(e.value),onChange:n=>((e,n)=>{const s=n?[...t,e]:t.filter(r=>r!==e);r("nhrrob_secure_2fa_enforced_roles",s)})(e.value,n)})))))))},h=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Protection","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Protect Debug Log","nhrrob-secure"),help:(0,l.__)("Block direct access to wp-content/debug.log","nhrrob-secure"),checked:e.nhrrob_secure_protect_debug_log,onChange:e=>r("nhrrob_secure_protect_debug_log",e)}))),d=window.wp.htmlEntities,b=()=>{const[e,r]=(0,s.useState)(null),[t,c]=(0,s.useState)(!0),[i,u]=(0,s.useState)(!1),[m,h]=(0,s.useState)(null);(0,s.useEffect)(()=>{b()},[]);const b=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/status"});r(e),c(!1)}catch(e){h((0,l.__)("Failed to fetch vulnerability status","nhrrob-secure")),c(!1)}};if(t)return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)(a.Spinner,null)));const _=e&&(e.core.length>0\|\|e.plugins.length>0\|\|e.themes.length>0);return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Vulnerability Checker","nhrrob-secure")),(0,n.createElement)(a.Button,{variant:"primary",onClick:async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/vulnerability/scan",method:"POST"});r(e)}catch(e){h((0,l.__)("Failed to run vulnerability scan","nhrrob-secure"))}finally{u(!1)}},isBusy:i,disabled:i,icon:"update",iconPosition:"right"},i?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Scan Now","nhrrob-secure"))),(0,n.createElement)("p",{className:"nhrrob-secure-last-scan"},(0,n.createElement)("strong",null,(0,l.__)("Last Scan:","nhrrob-secure"))," ",(g=e.last_scan)?new Date(1e3g).toLocaleString():(0,l.__)("Never","nhrrob-secure")),m&&(0,n.createElement)(a.Notice,{status:"error",isDismissible:!1},m),_?(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},(0,n.createElement)(a.Notice,{status:"warning",isDismissible:!1},(0,l.__)("Vulnerabilities detected! Please review and update the items below.","nhrrob-secure")),e.core.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("WordPress Core","nhrrob-secure")),(0,n.createElement)("ul",null,e.core.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))),e.plugins.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Plugins","nhrrob-secure")),e.plugins.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,n.createElement)("a",{href:"plugins.php",style:{textDecoration:"none",color:"inherit"}},(0,d.decodeEntities)(e.name)),(0,n.createElement)("span",{style:{fontWeight:"normal",color:"#666"}}," (",e.version,")")),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name))))))),e.themes.length>0&&(0,n.createElement)("div",{className:"vulnerability-section"},(0,n.createElement)("h3",null,(0,l.__)("Themes","nhrrob-secure")),e.themes.map((e,r)=>(0,n.createElement)("div",{key:r,className:"vulnerability-item"},(0,n.createElement)("strong",null,(0,d.decodeEntities)(e.name)," (",e.version,")"),(0,n.createElement)("ul",null,e.vulnerabilities.map((e,r)=>(0,n.createElement)("li",{key:r},(0,d.decodeEntities)(e.name)))))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No known vulnerabilities detected.","nhrrob-secure"))));var g},_=()=>{const[e,r]=(0,s.useState)(!1),[t,c]=(0,s.useState)(null),[i,u]=(0,s.useState)(null),[m,h]=(0,s.useState)("core"),d=async()=>{r(!0),u(null),c(null);try{const e="core"===m?"/nhrrob-secure/v1/scanner/core":"/nhrrob-secure/v1/scanner/malware",r=await o()({path:e,method:"POST"});c(r)}catch(e){u(e.message\|\|(0,l.__)("An error occurred during scan.","nhrrob-secure"))}finally{r(!1)}};return(0,n.createElement)("div",{className:"nhrrob-secure-card nhrrob-secure-vulnerability-card padded-header"},(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("div",{className:"nhrrob-secure-header-content"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("File Scanner","nhrrob-secure")),(0,n.createElement)("p",{className:"nhrrob-secure-card-subtitle"},(0,l.__)("Scan your site for file modifications and potential malware.","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-scan-controls"},(0,n.createElement)("div",{className:"nhrrob-scan-type-toggle"},(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("core"===m?"active":""),onClick:()=>h("core"),disabled:e},(0,l.__)("Core Integrity","nhrrob-secure")),(0,n.createElement)("button",{className:"nhrrob-scan-toggle-btn "+("malware"===m?"active":""),onClick:()=>h("malware"),disabled:e},(0,l.__)("Malware Scan","nhrrob-secure"))),(0,n.createElement)(a.Button,{variant:"primary",onClick:()=>d(),isBusy:e,disabled:e,icon:"update",iconPosition:"right"},e?(0,l.__)("Scanning...","nhrrob-secure"):(0,l.__)("Start Scan","nhrrob-secure")))),(0,n.createElement)("div",{className:"nhrrob-card-body"},i&&(0,n.createElement)("div",{className:"notice notice-error inline-notice"},(0,n.createElement)("p",null,i)),t&&(0,n.createElement)("div",{className:"nhrrob-secure-vulnerability-list"},("core"===m&&(t.modified?.length>0\|\|t.missing?.length>0)\|\|"malware"===m&&t.suspicious?.length>0)&&(0,n.createElement)("div",{className:"notice notice-warning inline-notice nhrrob-warning-notice"},(0,n.createElement)("p",null,(0,l.__)("Issues detected! Please review and update the items below.","nhrrob-secure"))),"core"===m&&(0,n.createElement)(n.Fragment,null,t.modified&&t.modified.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Modified Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.modified.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)),(0,n.createElement)(a.Button,{variant:"secondary",isSmall:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to repair this file? It will be overwritten with the original version.","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/repair",method:"POST",data:{file:e}}),alert((0,l.__)("File repaired successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Repair failed.","nhrrob-secure"))}})(e)},(0,l.__)("Repair","nhrrob-secure")))))),t.missing&&t.missing.length>0&&(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Missing Core Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.missing.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e)))))),!t.modified?.length&&!t.missing?.length&&(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No modified core files found.","nhrrob-secure"))),"malware"===m&&(0,n.createElement)(n.Fragment,null,t.suspicious&&t.suspicious.length>0?(0,n.createElement)("div",{className:"nhrrob-result-group"},(0,n.createElement)("h3",{className:"nhrrob-result-group-title"},(0,l.__)("Suspicious Files","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-result-list"},t.suspicious.map((e,r)=>(0,n.createElement)("div",{key:r,className:"nhrrob-result-row"},(0,n.createElement)("div",{className:"nhrrob-file-info"},(0,n.createElement)("strong",null,e.file),(0,n.createElement)("span",{className:"nhrrob-file-meta"},e.reason)),(0,n.createElement)(a.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to PERMANENTLY delete this file?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/scanner/delete",method:"POST",data:{file:e}}),alert((0,l.__)("File deleted successfully.","nhrrob-secure")),d()}catch(e){alert(e.message\|\|(0,l.__)("Delete failed.","nhrrob-secure"))}})(e.file)},(0,l.__)("Delete","nhrrob-secure")))))):(0,n.createElement)("div",{className:"nhrrob-secure-status-success"},(0,n.createElement)("span",{className:"dashicons dashicons-yes-alt"}),(0,l.__)("No suspicious files found.","nhrrob-secure")),(0,n.createElement)("p",{className:"description nhrrob-scan-count"},(0,n.createElement)("small",null,(0,l.__)("Scanned files:","nhrrob-secure")," ",t.scanned_count))))))},g=({settings:e,updateSetting:r})=>(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-hardening-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Hardening & Firewall","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group"},(0,n.createElement)("h3",{className:"nhrrob-secure-setting-subtitle"},(0,l.__)("General Hardening","nhrrob-secure")),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable XML-RPC","nhrrob-secure"),help:(0,l.__)("Prevents external systems (like mobile apps and Jetpack) from accessing your site via XML-RPC. Recommended if not used.","nhrrob-secure"),checked:e.nhrrob_secure_disable_xmlrpc,onChange:e=>r("nhrrob_secure_disable_xmlrpc",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable File Editor","nhrrob-secure"),help:(0,l.__)("Disables the built-in theme and plugin file editor to prevent code execution if an admin account is compromised.","nhrrob-secure"),checked:e.nhrrob_secure_disable_file_editor,onChange:e=>r("nhrrob_secure_disable_file_editor",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Hide WP Version","nhrrob-secure"),help:(0,l.__)("Removes WordPress version from page source and RSS feeds to make reconnaissance harder for attackers.","nhrrob-secure"),checked:e.nhrrob_secure_hide_wp_version,onChange:e=>r("nhrrob_secure_hide_wp_version",e)}),(0,n.createElement)(a.ToggleControl,{label:(0,l.__)("Disable REST API User Enumeration","nhrrob-secure"),help:(0,l.__)("Blocks access to /wp-json/wp/v2/users to prevent attackers from listing your users.","nhrrob-secure"),checked:e.nhrrob_secure_disable_rest_users,onChange:e=>r("nhrrob_secure_disable_rest_users",e)})),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group border-t border-gray-100 pt-4 mt-4"},(0,n.createElement)("h3",{className:"nhrrob-secure-setting-subtitle"},(0,l.__)("Firewall Rules","nhrrob-secure")),(0,n.createElement)(a.TextareaControl,{label:(0,l.__)("Block User Agents","nhrrob-secure"),help:(0,l.__)('Enter one User-Agent per line to block. Case-insensitive partial match. Example: "HTTrack", "curl".',"nhrrob-secure"),value:e.nhrrob_secure_firewall_blocked_uas,onChange:e=>r("nhrrob_secure_firewall_blocked_uas",e),rows:5,placeholder:"SemrushBot\nAhrefsBot\nMJ12bot"})))),E=({settings:e,updateSetting:r})=>{const[t,c]=(0,s.useState)([]),[i,u]=(0,s.useState)(!1),[m,h]=(0,s.useState)(null);(0,s.useEffect)(()=>{d()},[]);const d=async()=>{u(!0),h(null);try{const e=await o()({path:"/nhrrob-secure/v1/sessions"});c(e)}catch(e){h(e.message\|\|(0,l.__)("Failed to load sessions.","nhrrob-secure"))}finally{u(!1)}};return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-sessions-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("User Session Management","nhrrob-secure")),(0,n.createElement)(a.Button,{variant:"primary",onClick:d,isBusy:i,disabled:i,icon:"update"},(0,l.__)("Refresh","nhrrob-secure"))),(0,n.createElement)("div",{className:"nhrrob-secure-setting-group"},(0,n.createElement)(a.TextControl,{label:(0,l.__)("Idle Timeout (Minutes)","nhrrob-secure"),help:(0,l.__)("Automatically log out inactive users after X minutes. Set to 0 to disable.","nhrrob-secure"),type:"number",value:e?.nhrrob_secure_idle_timeout\|\|0,onChange:e=>r("nhrrob_secure_idle_timeout",parseInt(e)\|\|0),min:"0"})),m&&(0,n.createElement)(a.Notice,{status:"error",isDismissible:!1},m),(0,n.createElement)("div",{className:"nhrrob-secure-sessions-list mt-4"},(0,n.createElement)("h3",{className:"text-sm font-semibold mb-3"},(0,l.__)("Active Sessions","nhrrob-secure")),0!==t.length\|\|i?(0,n.createElement)("div",{className:"sessions-grid"},t.map((e,r)=>(0,n.createElement)("div",{key:r,className:"session-item p-3 border rounded mb-2 "+(e.is_current?"bg-blue-50 border-blue-200":"bg-gray-50 border-gray-200")},(0,n.createElement)("div",{className:"flex justify-between items-start"},(0,n.createElement)("div",{className:"session-info"},(0,n.createElement)("div",{className:"font-medium text-gray-700"},e.ip,e.is_current&&(0,n.createElement)("span",{className:"ml-2 px-2 py-0.5 text-xs bg-blue-100 text-blue-800 rounded-full"},(0,l.__)("Current Session","nhrrob-secure"))),(0,n.createElement)("div",{className:"text-xs text-gray-500 mt-1"},(0,n.createElement)("div",null,(0,l.__)("Login:","nhrrob-secure")," ",new Date(1e3e.login).toLocaleString()),(0,n.createElement)("div",null,(0,l.__)("Expires:","nhrrob-secure")," ",new Date(1e3e.expiration).toLocaleString()),(0,n.createElement)("div",{className:"mt-1 font-mono text-gray-400 truncate w-64",title:e.ua},e.ua))),!e.is_current&&(0,n.createElement)(a.Button,{variant:"link",isDestructive:!0,onClick:()=>(async e=>{if(confirm((0,l.__)("Are you sure you want to log out this session?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/sessions/destroy",method:"POST",data:{verifier:e}}),d()}catch(e){alert(e.message\|\|(0,l.__)("Failed to destroy session.","nhrrob-secure"))}})(e.verifier)},(0,l.__)("Logout","nhrrob-secure")))))):(0,n.createElement)("p",null,(0,l.__)("No active sessions found.","nhrrob-secure"))),t.length>1&&(0,n.createElement)("div",{className:"mt-4 pt-3 border-t"},(0,n.createElement)(a.Button,{variant:"secondary",isDestructive:!0,onClick:async()=>{if(confirm((0,l.__)("Are you sure you want to log out all other devices?","nhrrob-secure")))try{await o()({path:"/nhrrob-secure/v1/sessions/destroy-others",method:"POST"}),d(),alert((0,l.__)("All other sessions logged out.","nhrrob-secure"))}catch(e){alert(e.message\|\|(0,l.__)("Failed to destroy sessions.","nhrrob-secure"))}},className:"w-full justify-center"},(0,l.__)("Log Out All Other Devices","nhrrob-secure")))))},p=({settings:e,updateSetting:r})=>{const[t,c]=(0,s.useState)([]),[i,u]=(0,s.useState)(!0),[m,h]=(0,s.useState)(0),[d,b]=(0,s.useState)(1);(0,s.useEffect)(()=>{_()},[d]);const _=async()=>{u(!0);try{const e=20(d-1),r=await o()({path:`/nhrrob-secure/v1/logs?limit=20&offset=${e}`});c(r.items),h(r.total)}catch(e){console.error(e)}finally{u(!1)}},g=Math.ceil(m/20);return(0,n.createElement)(a.Card,{className:"nhrrob-secure-card nhrrob-secure-audit-log-card"},(0,n.createElement)(a.CardBody,null,(0,n.createElement)("div",{className:"nhrrob-secure-card-header-flex"},(0,n.createElement)("h2",{className:"nhrrob-secure-card-title"},(0,l.__)("Activity Audit Log","nhrrob-secure")),(0,n.createElement)("div",{className:"nhrrob-secure-card-header-actions"},e&&(0,n.createElement)(a.SelectControl,{className:"nhrrob-secure-retention-select",value:e.nhrrob_secure_log_retention_days,options:[{label:(0,l.__)("Keep logs: 7 days","nhrrob-secure"),value:7},{label:(0,l.__)("Keep logs: 30 days","nhrrob-secure"),value:30},{label:(0,l.__)("Keep logs: 90 days","nhrrob-secure"),value:90},{label:(0,l.__)("Keep logs: 1 year","nhrrob-secure"),value:365}],onChange:e=>r("nhrrob_secure_log_retention_days",parseInt(e))}),(0,n.createElement)(a.Button,{variant:"primary",onClick:_,disabled:i,isBusy:i,icon:"update",iconPosition:"right"},(0,l.__)("Refresh","nhrrob-secure")))),i&&(0,n.createElement)("div",{className:"nhrrob-secure-loading-overlay"},(0,n.createElement)(a.Spinner,null)),(0,n.createElement)("div",{className:"nhrrob-secure-audit-table-wrapper"},(0,n.createElement)("table",{className:"nhrrob-secure-audit-table"},(0,n.createElement)("thead",null,(0,n.createElement)("tr",null,(0,n.createElement)("th",null,(0,l.__)("Date","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("User","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Context","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Action","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("Item","nhrrob-secure")),(0,n.createElement)("th",null,(0,l.__)("IP Address","nhrrob-secure")))),(0,n.createElement)("tbody",null,t.length>0?t.map(e=>(0,n.createElement)("tr",{key:e.id,className:`severity-${e.severity}`},(0,n.createElement)("td",null,new Date(e.date).toLocaleString()),(0,n.createElement)("td",null,e.user),(0,n.createElement)("td",null,(0,n.createElement)("span",{className:"nhrrob-secure-badge"},e.context)),(0,n.createElement)("td",null,e.action),(0,n.createElement)("td",null,e.label),(0,n.createElement)("td",null,e.ip))):(0,n.createElement)("tr",null,(0,n.createElement)("td",{colSpan:"6",className:"no-logs"},!i&&(0,l.__)("No activity logs found.","nhrrob-secure")))))),g>1&&(0,n.createElement)("div",{className:"nhrrob-secure-pagination"},(0,n.createElement)(a.Button,{isSmall:!0,disabled:1===d\|\|i,onClick:()=>b(d-1)},"« ",(0,l.__)("Prev","nhrrob-secure")),(0,n.createElement)("span",{className:"nhrrob-secure-page-info"},(0,l.__)("Page","nhrrob-secure")," ",d," ",(0,l.__)("of","nhrrob-secure")," ",g),(0,n.createElement)(a.Button,{isSmall:!0,disabled:d===g\|\|i,onClick:()=>b(d+1)},(0,l.__)("Next","nhrrob-secure")," »"))))},v=document.getElementById("nhrrob-secure-settings-root");v&&(0,s.render)((0,n.createElement)(()=>{const[e,r]=(0,s.useState)(null),[t,c]=(0,s.useState)(!0),[d,v]=(0,s.useState)(!1),[y,f]=(0,s.useState)(null);(0,s.useEffect)(()=>{N()},[]);const N=async()=>{try{const e=await o()({path:"/nhrrob-secure/v1/settings"});r(e),c(!1)}catch(e){f({type:"error",message:(0,l.__)("Failed to load settings","nhrrob-secure")}),c(!1)}},w=(t,n)=>{r({...e,[t]:n})};return(0,s.useEffect)(()=>{e?.nhrrob_secure_dark_mode?document.body.classList.add("nhrrob-secure-dark-mode-active"):document.body.classList.remove("nhrrob-secure-dark-mode-active")},[e?.nhrrob_secure_dark_mode]),t?(0,n.createElement)("div",{className:"nhrrob-secure-loading"},(0,n.createElement)(a.Spinner,null)):(0,n.createElement)("div",{className:"nhrrob-secure-settings "+(e.nhrrob_secure_dark_mode?"dark-mode":"")},(0,n.createElement)("div",{className:"nhrrob-secure-header"},(0,n.createElement)("div",{className:"nhrrob-secure-header-main"},(0,n.createElement)("h1",null,(0,l.__)("NHR Secure Settings","nhrrob-secure")),(0,n.createElement)(a.Button,{className:"nhrrob-secure-dark-mode-toggle",icon:e.nhrrob_secure_dark_mode?(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 7c-2.76 0-5 2.24-5 5s2.24 5 5 5 5-2.24 5-5-2.24-5-5-5zM2 13h2c.55 0 1-.45 1-1s-.45-1-1-1H2c-.55 0-1 .45-1 1s.45 1 1 1zm18 0h2c.55 0 1-.45 1-1s-.45-1-1-1h-2c-.55 0-1 .45-1 1s.45 1 1 1zM11 2v2c0 .55.45 1 1 1s1-.45 1-1V2c0-.55-.45-1-1-1s-1 .45-1 1zm0 18v2c0 .55.45 1 1 1s1-.45 1-1v-2c0-.55-.45-1-1-1s-1 .45-1 1zM5.99 4.58a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41L5.99 4.58zm12.37 12.37a.996.996 0 00-1.41 0 .996.996 0 000 1.41l1.06 1.06c.39.39 1.03.39 1.41 0s.39-1.03 0-1.41l-1.06-1.06zm1.06-10.96a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06zM7.05 18.36a.996.996 0 00-1.41-1.41l-1.06 1.06c-.39.39-.39 1.03 0 1.41s1.03.39 1.41 0l1.06-1.06z"})):(0,n.createElement)("svg",{xmlns:"http://www.w3.org/2000/svg",viewBox:"0 0 24 24",fill:"currentColor",width:"20",height:"20"},(0,n.createElement)("path",{d:"M12 3c-4.97 0-9 4.03-9 9s4.03 9 9 9 9-4.03 9-9c0-.46-.04-.92-.1-1.36-.98 1.37-2.58 2.26-4.4 2.26-2.98 0-5.4-2.42-5.4-5.4 0-1.81.89-3.42 2.26-4.4-.44-.06-.9-.1-1.36-.1z"})),onClick:async()=>{const r=!e.nhrrob_secure_dark_mode;w("nhrrob_secure_dark_mode",r);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:{...e,nhrrob_secure_dark_mode:r}})}catch(e){console.error("Failed to save dark mode preference",e)}},label:(0,l.__)("Toggle Dark Mode","nhrrob-secure")})),(0,n.createElement)("p",{className:"nhrrob-secure-subtitle"},(0,l.__)("Configure security features for your WordPress site","nhrrob-secure"))),y&&(0,n.createElement)(a.Notice,{status:y.type,isDismissible:!0,onRemove:()=>f(null)},y.message),(0,n.createElement)("div",{className:"nhrrob-secure-cards"},(0,n.createElement)(i,{settings:e,updateSetting:w}),(0,n.createElement)(u,{settings:e,updateSetting:w}),(0,n.createElement)(m,{settings:e,updateSetting:w}),(0,n.createElement)(g,{settings:e,updateSetting:w}),(0,n.createElement)(h,{settings:e,updateSetting:w}),(0,n.createElement)(b,null),(0,n.createElement)(_,null),(0,n.createElement)(E,{settings:e,updateSetting:w}),(0,n.createElement)(p,{settings:e,updateSetting:w})),(0,n.createElement)("div",{className:"nhrrob-secure-actions"},(0,n.createElement)(a.Button,{variant:"primary",onClick:async()=>{v(!0),f(null);try{await o()({path:"/nhrrob-secure/v1/settings",method:"POST",data:e}),f({type:"success",message:(0,l.__)("Settings saved successfully!","nhrrob-secure")})}catch(e){f({type:"error",message:(0,l.__)("Failed to save settings","nhrrob-secure")})}finally{v(!1)}},isBusy:d,disabled:d},d?(0,l.__)("Saving...","nhrrob-secure"):(0,l.__)("Save Settings","nhrrob-secure"))))},null),v)}},t={};function n(e){var s=t[e];if(void 0!==s)return s.exports;var a=t[e]={exports:{}};return r[e](a,a.exports,n),a.exports}n.m=r,e=[],n.O=(r,t,s,a)=>{if(!t){var l=1/0;for(u=0;u<e.length;u++){for(var[t,s,a]=e[u],c=!0,o=0;o<t.length;o++)(!1&a\|\|l>=a)&&Object.keys(n.O).every(e=>n.O[e](t[o]))?t.splice(o--,1):(c=!1,a<l&&(l=a));if(c){e.splice(u--,1);var i=s();void 0!==i&&(r=i)}}return r}a=a\|\|0;for(var u=e.length;u>0&&e[u-1][2]>a;u--)e[u]=e[u-1];e[u]=[t,s,a]},n.n=e=>{var r=e&&e.__esModule?()=>e.default:()=>e;return n.d(r,{a:r}),r},n.d=(e,r)=>{for(var t in r)n.o(r,t)&&!n.o(e,t)&&Object.defineProperty(e,t,{enumerable:!0,get:r[t]})},n.o=(e,r)=>Object.prototype.hasOwnProperty.call(e,r),(()=>{var e={884:0,15:0};n.O.j=r=>0===e[r];var r=(r,t)=>{var s,a,[l,c,o]=t,i=0;if(l.some(r=>0!==e[r])){for(s in c)n.o(c,s)&&(n.m[s]=c[s]);if(o)var u=o(n)}for(r&&r(t);i<l.length;i++)a=l[i],n.o(e,a)&&e[a]&&e[a][0](),e[a]=0;return n.O(u)},t=globalThis.webpackChunknhrrob_secure=globalThis.webpackChunknhrrob_secure\|\|[];t.forEach(r.bind(null,0)),t.push=r.bind(null,t.push.bind(t))})();var s=n.O(void 0,[15],()=>n(195));s=n.O(s)})();

nhrrob-secure/trunk/build/profile.asset.php

r3436910	r3441244
1		<?php return array('dependencies' => array(), 'version' => '~~60edf98ad68210cc7955~~');
	1	<?php return array('dependencies' => array(), 'version' => 'b365bbc000a0d9a2f03a');

nhrrob-secure/trunk/build/profile.css

-                      r3436910
+                      r3441244
     margin-bottom: 1rem
+}
+.ml-2 {
+    margin-left: 0.5rem
+}
 .ml-5 {
 …
     margin-top: 0px
+}
+.mt-1 {
+    margin-top: 0.25rem
+}
 .mt-4 {
     margin-top: 1rem
+}
+.block {
+    display: block
+}
+.flex {
+    display: flex
+}
 .table {
 …
     display: none
+}
+.w-64 {
+    width: 16rem
+}
+.w-full {
+    width: 100%
+}
 .grid-cols-2 {
     grid-template-columns: repeat(2, minmax(0, 1fr))
+}
+.items-start {
+    align-items: flex-start
+}
+.justify-center {
+    justify-content: center
+}
+.justify-between {
+    justify-content: space-between
+}
 .gap-2 {
     gap: 0.5rem
+}
+.truncate {
+    overflow: hidden;
+    text-overflow: ellipsis;
+    white-space: nowrap
+}
+.rounded {
+    border-radius: 0.25rem
+}
+.rounded-full {
+    border-radius: 9999px
+}
+.border {
+    border-width: 1px
+}
 .border-t {
     border-top-width: 1px
+}
+.border-blue-200 {
+    --tw-border-opacity: 1;
+    border-color: rgb(191 219 254 / var(--tw-border-opacity, 1))
+}
 .border-gray-100 {
 …
     border-color: rgb(243 244 246 / var(--tw-border-opacity, 1))
+}
+.border-gray-200 {
+    --tw-border-opacity: 1;
+    border-color: rgb(229 231 235 / var(--tw-border-opacity, 1))
+}
+.bg-blue-100 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(219 234 254 / var(--tw-bg-opacity, 1))
+}
+.bg-blue-50 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(239 246 255 / var(--tw-bg-opacity, 1))
+}
+.bg-gray-50 {
+    --tw-bg-opacity: 1;
+    background-color: rgb(249 250 251 / var(--tw-bg-opacity, 1))
+}
+.p-3 {
+    padding: 0.75rem
+}
+.px-2 {
+    padding-left: 0.5rem;
+    padding-right: 0.5rem
+}
+.py-0\.5 {
+    padding-top: 0.125rem;
+    padding-bottom: 0.125rem
+}
+.pt-3 {
+    padding-top: 0.75rem
+}
 .pt-4 {
     padding-top: 1rem
+}
+.font-mono {
+    font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", "Courier New", monospace
+}
 .text-sm {
 …
     line-height: 1rem
+}
+.font-medium {
+    font-weight: 500
+}
 .font-semibold {
     font-weight: 600
+}
+.text-blue-800 {
+    --tw-text-opacity: 1;
+    color: rgb(30 64 175 / var(--tw-text-opacity, 1))
+}
+.text-gray-400 {
+    --tw-text-opacity: 1;
+    color: rgb(156 163 175 / var(--tw-text-opacity, 1))
+}
 .text-gray-500 {
 …
     color: rgb(107 114 128 / var(--tw-text-opacity, 1))
+}
+.text-gray-700 {
+    --tw-text-opacity: 1;
+    color: rgb(55 65 81 / var(--tw-text-opacity, 1))
+}
 .filter {

nhrrob-secure/trunk/includes/Admin/Api.php

-                      r3438122
+                      r3441244
                     'sanitize_callback' => 'rest_sanitize_boolean',
                 ],
+                'nhrrob_secure_log_retention_days' => [
+                    'type' => 'integer',
+                    'sanitize_callback' => 'absint',
+                ],
+                'nhrrob_secure_disable_xmlrpc' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_disable_file_editor' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_hide_wp_version' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_disable_rest_users' => [
+                    'type' => 'boolean',
+                    'sanitize_callback' => 'rest_sanitize_boolean',
+                ],
+                'nhrrob_secure_firewall_blocked_uas' => [
+                    'type' => 'string',
+                    'sanitize_callback' => 'sanitize_textarea_field',
+                ],
+                'nhrrob_secure_idle_timeout' => [
+                    'type' => 'integer',
+                    'sanitize_callback' => 'absint',
+                ],
             ],
         ]);
 …
         ]);
+        // Get audit logs
+        register_rest_route('nhrrob-secure/v1', '/logs', [
+            'methods' => 'GET',
+            'callback' => [$this, 'get_logs'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+        // Get sessions
+        register_rest_route('nhrrob-secure/v1', '/sessions', [
+            'methods' => 'GET',
+            'callback' => [$this, 'get_sessions_list'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+        // Destroy session
+        register_rest_route('nhrrob-secure/v1', '/sessions/destroy', [
+            'methods' => 'POST',
+            'callback' => [$this, 'destroy_session'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+            'args' => [
+                'verifier' => [
+                    'required' => true,
+                    'type' => 'string',
+                    'sanitize_callback' => 'sanitize_text_field',
+                ],
+            ],
+        ]);
+        // Destroy other sessions
+        register_rest_route('nhrrob-secure/v1', '/sessions/destroy-others', [
+            'methods' => 'POST',
+            'callback' => [$this, 'destroy_other_sessions'],
+            'permission_callback' => function () {
+                return current_user_can('manage_options');
+            },
+        ]);
+    }
 …
             'nhrrob_secure_2fa_type' => get_option('nhrrob_secure_2fa_type', 'app'),
             'nhrrob_secure_dark_mode' => (bool) get_option('nhrrob_secure_dark_mode', false),
+            'nhrrob_secure_log_retention_days' => (int) get_option('nhrrob_secure_log_retention_days', 30),
+            'nhrrob_secure_disable_xmlrpc' => (bool) get_option('nhrrob_secure_disable_xmlrpc', false),
+            'nhrrob_secure_disable_file_editor' => (bool) get_option('nhrrob_secure_disable_file_editor', false),
+            'nhrrob_secure_hide_wp_version' => (bool) get_option('nhrrob_secure_hide_wp_version', false),
+            'nhrrob_secure_disable_rest_users' => (bool) get_option('nhrrob_secure_disable_rest_users', false),
+            'nhrrob_secure_firewall_blocked_uas' => get_option('nhrrob_secure_firewall_blocked_uas', ''),
+            'nhrrob_secure_idle_timeout' => (int) get_option('nhrrob_secure_idle_timeout', 0),
             'available_roles' => $this->get_available_roles(),
         ];
 …
         $scanner = new \NHRRob\Secure\FileScanner();
         $result = $scanner->repair_core_file($file);
         if (is_wp_error($result)) {
             return $result;
+        }
         return ['success' => true, 'message' => 'File repaired successfully.'];
+    }
 …
         $file = $request->get_param('file');
         $scanner = new \NHRRob\Secure\FileScanner();
         // Security check: ensure file is inside WP_CONTENT_DIR
         if (strpos($file, WP_CONTENT_DIR) !== 0) {
 …
         if ($scanner->delete_file($file)) {
              return ['success' => true, 'message' => 'File deleted successfully.'];
+        }
+            return ['success' => true, 'message' => 'File deleted successfully.'];
+        }
         return new \WP_Error('delete_failed', 'Could not delete file.');
+    }
+    /**
+     * Get audit logs
+     */
+    public function get_logs($request)
+    {
+        $limit = $request->get_param('limit') ? (int) $request->get_param('limit') : 20;
+        $offset = $request->get_param('offset') ? (int) $request->get_param('offset') : 0;
+        $audit_log = new \NHRRob\Secure\AuditLog();
+        return $audit_log->get_logs($limit, $offset);
+    }
+    /**
+     * Get sessions list
+     */
+    public function get_sessions_list()
+    {
+        $manager = new \NHRRob\Secure\SessionManager();
+        $sessions = $manager->get_sessions(get_current_user_id());
+        $current_token = wp_get_session_token();
+        $formatted = [];
+        foreach ($sessions as $verifier => $session) {
+            $formatted[] = [
+                'verifier' => $verifier,
+                'ip' => $session['ip'],
+                'ua' => $session['ua'],
+                'login' => $session['login'],
+                'expiration' => $session['expiration'],
+                'is_current' => $verifier === $current_token,
+            ];
+        }
+        return $formatted;
+    }
+    /**
+     * Destroy session
+     */
+    public function destroy_session($request)
+    {
+        $verifier = $request->get_param('verifier');
+        $manager = new \NHRRob\Secure\SessionManager();
+        $manager->destroy_session(get_current_user_id(), $verifier);
+        return ['success' => true];
+    }
+    /**
+     * Destroy other sessions
+     */
+    public function destroy_other_sessions()
+    {
+        $manager = new \NHRRob\Secure\SessionManager();
+        $manager->destroy_other_sessions(get_current_user_id());
+        return ['success' => true];
+    }
+}

nhrrob-secure/trunk/includes/App.php

-                      r3435758
+                      r3441244
  * App base class
  */
+class App {
+class App
+{
+    /**
+     * Initialize the class
+     */
+    public function __construct()
+    {
+        // Base init
+    }
     /**
      * Render a template
 …
      * @param array $args
      */
+    public function render( $name, $args = [] ) {
+        extract( $args );
+    public function render($name, $args = [])
+    {
+        extract($args);
         $template = NHRROB_SECURE_PATH . '/templates/' . $name . '.php';
         if ( file_exists( $template ) ) {
+        if (file_exists($template)) {
             include $template;
+        }

nhrrob-secure/trunk/nhrrob-secure.php

-                      r3438122
+                      r3441244
 <?php
 /**
  * Plugin Name: NHR Secure – Hide Admin, Limit Login, 2FA & Vulnerability Checker
+ * Plugin Name: NHR Secure – Login Security, Firewall, 2FA & Audit Log
  * Plugin URI: http://wordpress.org/plugins/nhrrob-secure/
  * Description: Lightweight WordPress security plugin that protects your admin area, hides debug logs, limits login attempts, and checks for vulnerabilities. Minimal code, maximum protection.
  * Author: Nazmul Hasan Robin
  * Author URI: https://profiles.wordpress.org/nhrrob/
  * Version: 1.1.0
+ * Version: 1.2.0
  * Requires at least: 6.0
  * Requires PHP: 7.4
 …
      * @var string
      */
     const version = '1.1.0';
+    const version = '1.2.0';
     /**
 …
         new \NHRRob\Secure\FileScanner();
+        // Initialize hardening and firewall
+        new \NHRRob\Secure\Hardening();
+        // Initialize session manager
+        new \NHRRob\Secure\SessionManager();
+        // Initialize audit log
+        new \NHRRob\Secure\AuditLog();
         // Initialize admin menu
         if (is_admin()) {
 …
             wp_schedule_event(time(), 'daily', 'nhrrob_secure_vulnerability_scan_cron');
+        }
+        if (!wp_next_scheduled('nhrrob_secure_daily_cleanup')) {
+            wp_schedule_event(time(), 'daily', 'nhrrob_secure_daily_cleanup');
+        }
+        // Create audit log table
+        (new \NHRRob\Secure\AuditLog())->maybe_install_schema();
+    }
 …
+    {
         wp_clear_scheduled_hook('nhrrob_secure_vulnerability_scan_cron');
+        wp_clear_scheduled_hook('nhrrob_secure_daily_cleanup');
+    }
+}

nhrrob-secure/trunk/readme.txt

-                      r3438122
+                      r3441244
 === NHR Secure – Hide Admin, Limit Login, 2FA & Vulnerability Checker ===
+=== NHR Secure – Login Security, Firewall, 2FA & Audit Log ===
 Contributors: nhrrob
 Tags: security, hide admin, login protection, debug log, 2fa
 …
 Tested up to: 6.9
 Requires PHP: 7.4
 Stable tag: 1.1.0
+Stable tag: 1.2.0
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 - Check file integrity
+### 🖥️ User Session Management
+Monitor and control active user sessions to prevent unauthorized access.
+- **View Active Sessions:** See IP, location, device, and login time for all logged-in users.
+- **Remote Logout:** Instantly log out suspicious sessions or all other devices.
+- **Idle Timeout:** Automatically log out inactive users after a set period.
+### 🧱 Hardening & Firewall
+Essential security hardening to lock down your WordPress site.
+- **Disable XML-RPC:** Prevent remote attacks and brute-force attempts.
+- **Disable File Editor:** Stop file modifications from the dashboard.
+- **Hide WP Version:** Obscure your WordPress version from attackers.
+- **Block User-Agents:** Prevent bad bots and scrapers from accessing your site.
+- **Disable User Enumeration:** Stop attackers from harvesting usernames via REST API.
+### 📝 Activity Audit Log
+Keep a record of important security events on your site.
+- Tracks logins, failed attempts, file changes, and settings updates.
+- View user, IP, and event details.
+- Configurable log retention policy.
 ### ⚡ Lightweight & Minimal
 Designed to deliver maximum security with minimal code. No bloat, no complexity.
 …
 == Changelog ==
+= 1.2.0 - 17/01/2026 =
+- Added: User Session Management (View active sessions, remote logout, idle timeout)
+- Added: Hardening & Firewall (Disable XML-RPC, File Editor, Version Hiding, User Enumeration)
+- Added: User-Agent Blocking
+- Added: Audit Logs for security events
+- Fixed: Dark mode improvements
+- Improved: UI enhancements
 = 1.1.0 - 13/01/2026 =
 - Added: Vulnerability Checker

Plugin Directory

Context Navigation

Legend:

nhrrob-secure/tags/1.2.0/assets/src/components/VulnerabilityChecker.js

nhrrob-secure/tags/1.2.0/assets/src/index.js

nhrrob-secure/tags/1.2.0/assets/src/style.css

nhrrob-secure/tags/1.2.0/build/admin.asset.php

nhrrob-secure/tags/1.2.0/build/admin.css

nhrrob-secure/tags/1.2.0/build/admin.js

nhrrob-secure/tags/1.2.0/build/profile.asset.php

nhrrob-secure/tags/1.2.0/build/profile.css

nhrrob-secure/tags/1.2.0/includes/Admin/Api.php

nhrrob-secure/tags/1.2.0/includes/App.php

nhrrob-secure/tags/1.2.0/nhrrob-secure.php

nhrrob-secure/tags/1.2.0/readme.txt

nhrrob-secure/trunk/assets/src/components/VulnerabilityChecker.js

nhrrob-secure/trunk/assets/src/index.js

nhrrob-secure/trunk/assets/src/style.css

nhrrob-secure/trunk/build/admin.asset.php

nhrrob-secure/trunk/build/admin.css

nhrrob-secure/trunk/build/admin.js

nhrrob-secure/trunk/build/profile.asset.php

nhrrob-secure/trunk/build/profile.css

nhrrob-secure/trunk/includes/Admin/Api.php

nhrrob-secure/trunk/includes/App.php

nhrrob-secure/trunk/nhrrob-secure.php

nhrrob-secure/trunk/readme.txt

Download in other formats: