Search Over 30,000 FREE Plugins from the Official WordPress Plugin Directory Repository

HTTP Authentication By KIMoFy

HTTP Authentication lets you make a site without letting anyone view it without valid credentials. This can protect the full site or only admin pages.

The HTTP Authentication plugin allows you to use existing means of authenticating people to WordPress. This includes Apache's basic HTTP authentication module, which most servers use.

This plugin works the same way web servers would handle password protection, but in this case, WordPress handles everything.

Ordered list:

  1. Password protect a website currently in development.
  2. Secure all admin pages.
  3. Deny access to unauthorized visitors.
Author KIMoFy
Contributors kimofy
Tags .htaccess authentication, .htaccess password, admin, Auth, authentication, crawl, crawler, htpasswd, http auth, http authentication, kimofy, kimofy youtube,, locked, login, Restrict Pages, restrict site
  1. http-authentication-by-kimofy screenshot 1

    Activating The Plugin.

  2. http-authentication-by-kimofy screenshot 2

    Password Request.

  3. http-authentication-by-kimofy screenshot 3

    Unauthorized (401) Error Page.

  1. Upload "http-authentication-by-kimofy.php" to the "/wp-content/plugins/" directory.
  2. Activate the plugin through the "Plugins" menu in WordPress.
  3. Edit Plugin settings from the "HTTP Auth Settings" menu in your WordPress dashboard.


Added a more user friendly Unauthorized (401) Error page to better fit all themes. All known bugs are patched.


Minor security flaw detected and fixed. Update recommended.


Fixed a security issue allowing users tto bypass the password screen. Update immediately.


Added a more User Friendly experience.


This is the initial release of the plugin. There may be bugs or glitches with this release.

Does this work on multi-site installations of WordPress?

Yes, this plugin is compatible with all WordPress installations above WordPress 3.5

What happens if I forget my password?

If you forget your password, I will not be able to help you recover it. Please choose your password carefully.

How does this plugin work?

This plugin uses the same method any web server's configuration file would use to protect a website. All passwords are encrypted on your web server.

Version 5.6

Requires WordPress version: 3.5 or higher

Compatible up to: 4.7.2

Last Updated 16 Feb 2017

Date Added: 15 Feb 2017

Plugin Homepage


5 stars
1 ratings


Not Enough Data

Works: 0
Broken: 0