Jake Goldman by Jake Goldman download
requires 3.4+
50 votes
updated Jan 27 '13

Restricted Site Access 5.0.1 for WordPress

Restrict access to registered users and specific IP addresses. Control restriction behavior.

Limit access your site to visitors who are logged in or accessing the site from a set of specific IP addresses. Send restricted visitors to the log in page, redirect them, or display a message. A great solution for Extranets, publicly hosted Intranets, or parallel development sites.

Adds a number of new configuration options to the Privacy settings panel. From this panel you can:

Thanks to Eric Buth for adding IP range support to the code base!

  1. restricted-site-access screenshot 1

    Screenshot of settings panel (WP 3.5) with simple Restricted Site Access option (send to login page).

  2. restricted-site-access screenshot 2

    Screenshot of settings panel (WP 3.5) with restriction message option enabled

  3. restricted-site-access screenshot 3

    Plenty of inline help! Looks and behaves like native WordPress help.

134 Replies

  1. Hello, I would like to know how I can add 500 ips once a time. I don’t find where the IPs are stocked. Could you help ? Thanks.

    nathalieJuly 17, 2013 at 10:13 amReply
    • Jake Goldman

      They are stored as serialized data in the plugin’s row in the options table. Unfortunately, there’s no easy bulk import method.

      Jake GoldmanSeptember 15, 2013 at 12:30 amReply
  2. Hey Jake,

    Great little plugin here, thanks a lot. I’m trying to get a range of IPs able to access the site, and just wondering how exactly I do that.

    For instance allowing; to on subnet

    How would I do this?

    Thanks again,


    NickmJuly 22, 2013 at 8:35 pmReply
  3. Jake,

    Thanks for a great plugin. I use it primarily for restricting/redirecting access to my live development server for showing clients updates etc, and it works great.

    Now I’m currently using it to keep a site only available to an intranet and other IPs (don’t worry, security to files isn’t an issue here).

    The thing I’m trying to implement now is enabling google to index the site, while being restricted to other visitors. I’ve added in my own code to the effect of;

    if (preg_match(“/googlebot/i”, $_SERVER['HTTP_USER_AGENT'])) {

    From what I can tell it seems to work, although I’m just waiting on google to try another index that I’ve requested. What are your thoughts? I realise useragents can be spoofed, although in my application, this isn’t an issue.

    Thanks again,


    NickmJuly 24, 2013 at 1:39 amReply
  4. Have you considered a version that would simply restrict access to /wp-admin, and not the whole site? I’m looking for a solution that will do that without stomping over the other security plugins that we have active. I’m finding other plugins that have the feature, but a lot of other bloat.

    Karl JacobsJuly 30, 2013 at 3:54 pmReply
    • Jake Goldman

      Doesn’t really jive with the point of the plug-in. It’s intended to restrict the front end and *allow* visitors to log in (via wp-admin) to see the site.

      Jake GoldmanAugust 7, 2013 at 2:09 pmReply
  5. I used your plugin for my site. I then deleted it but the search engines don’t recognize my website anymore. I’m not able to see it in google and it’s been weeks since I used your plugin. What can I do about it?


    David HinseAugust 2, 2013 at 7:59 pmReply
    • Jake Goldman

      Check Settings > Reading and make sure the option to discourage search engines is off.

      Jake GoldmanAugust 7, 2013 at 2:07 pmReply
      • This option was already off. What is the next step.


        David HinseAugust 8, 2013 at 9:22 amReply
  6. The IP-Adress feature doesn’t work for me properly. When I enter my actual IP 84.254.xxx.xxx, the site is accessable from every IP I test. Except that your tool works without problems.

    ReinerAugust 6, 2013 at 3:43 amReply
    • Jake Goldman

      Are you using a page caching system?

      Jake GoldmanAugust 7, 2013 at 2:07 pmReply
  7. Hello. Great plugin.
    I have a question; I have a need to temporarily disable this plugin. I tried to simply check the box to allow search engine index but this did not work. I also deactivated the plug in but logging in is still required.
    How do I disable the plugin?

    BillAugust 8, 2013 at 10:11 amReply
    • Jake Goldman

      Just choose something other than the block site option. If that doesn’t work, there’s either a caching issue or another reason the site is blocked.

      Jake GoldmanSeptember 15, 2013 at 12:26 amReply
    • Fixed. Must have been caching. I tried on another device. Thanks!

      BillAugust 8, 2013 at 10:25 amReply
  8. Hi, Jake your plugin is really great! But i have a question: I want to give access only to people who are register in my autoresponder list (aweber), my subscribers can see all posts, but is there a way to do it automatically,? The subscribers dont need to login in my blog? Maybe recognizing IP adress or cookie…i dont know… Can you help me?

    RodrigoOctober 10, 2013 at 12:10 pmReply
    • Jake Goldman

      There may be a way, but it would take some focused consulting to figure this out. Recommend you find a developer.

      Jake GoldmanOctober 13, 2013 at 11:34 amReply
  9. Hi,
    I’m facing a problem since even with a restricted website, users who know a media file URL (eg. word, pdf…) can still have direct URL access to it. Is there a way to completely restrict the access? (eg. A old employee of an institution, without an active WP account, should not access to media directly by their URL)

    Julien Le ThuautNovember 22, 2013 at 11:47 amReply
    • Jake Goldman

      Unfortunately, the plug-in does not provide that level of buttoned up security at this time.

      Jake GoldmanDecember 1, 2013 at 7:35 pmReply
  10. Hi Jake,

    Is it possible to grant an access to an entire WP website to the African continent only ?
    Many thanks and happy new year !

    JeanPhiJanuary 1, 2014 at 10:53 amReply
Older Comments

Leave a Reply