توضیحات

Polanger – Admin Suite is a powerful, all-in-one solution to fully control and optimize your WordPress admin experience.

Instead of installing multiple plugins for menu management, login security, dashboard cleanup, and activity tracking – Polanger brings everything together in one clean, modern interface.

Whether you’re a developer, agency, or site owner, Polanger helps you create a cleaner, safer, and more controlled WordPress admin panel.

Live Demo

Why Polanger Admin Suite?

All-in-One Admin Control – Replace multiple plugins with one powerful solution
Clean & Organized Dashboard – Remove clutter and simplify your workflow
Enhanced Security – Protect login and track activity
Modern UI – Fast, intuitive, and easy to use
Built for Agencies & Teams – Perfect for multi-user environments

Core Features

Admin Menu Manager

Hide any admin menu or submenu item
Role-based visibility control
Rename menu items and submenus
Change icons with 200+ Dashicons
Drag & drop menu reordering
Block direct URL access to hidden pages
Visual indicators for hidden and modified items
Custom admin menu builder (create your own menus)

Admin Bar Customization

Replace or remove WordPress logo
Hide unwanted admin bar items
Add custom links with icons
Manage frontend and backend admin bar
Auto-detect plugin and theme items

Login Security & Customization

Custom login URL (hide wp-login.php)
Google reCAPTCHA v2 & v3 support
Custom login page design (logo, colors, background)
Brute force protection
Secure login flow enhancements

Two-Factor Authentication (2FA)

Email-based verification codes
Role-based enforcement
Recovery keys for backup access
Configurable expiration times
Super admin protection

Activity Log

Track logins, plugin changes, content updates, and more
Filter by user, action, and date
Export logs (CSV)
Email alerts for critical actions
GDPR/KVKK compliant logging

Dashboard Control

Hide default WordPress widgets
Hide third-party plugin widgets
Control admin notices
Create custom dashboard widgets
Per-user dashboard visibility

Multisite Control

Network-wide default settings for multisite installations
Site-level override controls for supported modules
Lock system for Menu Manager, Admin Bar, Login Security, Activity Log, and Dashboard Center
Network-aware addon activation support
Developer-friendly effective settings filter architecture

Access Control

Restrict plugin access to specific users
Read-only mode support
Prevent unauthorized access
Super admin safety protection

Design System

Token-based admin theming system for consistent and scalable customization
Customize colors across admin UI (sidebar, admin bar, background, text, surfaces)
Sidebar background, text color, and menu item styling
Admin bar background, text color, submenu background, and submenu text color
Built-in presets (e.g. Dark, Minimal, Default) with one-click application
Automatic CSS generation with cache-friendly performance
Smart contrast correction for readable text on both dark and light surfaces
Typography controls including font family and basic shape settings
Scoped styling to avoid conflicts with WordPress core and plugins
Extensible architecture for future themes, layouts, and design packs

Authenticator App (TOTP)

Google Authenticator and Microsoft Authenticator support
Time-based One-Time Password (TOTP) verification
Multi-user architecture with per-user enrollment
Mandatory enrollment flow for users in required roles
Profile page 2FA management (Users Profile)
Admin visibility: enrollment status only, no secret access
Safe secret rotation with pending secret system
Old authenticator remains active until new setup is verified
Secure secret storage with AES-256-CBC encryption
Manual secret entry with provisioning URI support
One-time recovery keys (10 keys per user, auto-regenerated on rotation)
Email fallback option when authenticator is unavailable
Brute-force protection with configurable lockout
Replay attack prevention with time-slice tracking
Seamless integration with core 2FA settings (roles, lockout, expiry)

reCAPTCHA Protection

Centralized Google reCAPTCHA key management (v2 and v3)
All reCAPTCHA configuration consolidated in one dedicated addon
Login form protection
Registration form protection
Lost password form protection
Comment form protection (works with Comment Security addon)
Configurable v3 score threshold
Badge position customization for v3
Automatic script loading only when needed

Addon Architecture

Polanger Admin Suite includes a modular addon system designed for scalability and clarity.

Core Addons

Admin Bar
Dashboard Center
Admin Activity Log
Custom Admin Menu Builder
Multisite Control
Design System
Comment Security Layer
Authenticator (TOTP)
reCAPTCHA

3rd Party Addons

Reserved for future ecosystem integrations
Addons are managed from the built-in Addons tab
Core addons and external addons are separated for easier management

Built for Real-World Use

Polanger is designed for:

Agencies managing client websites
Developers who need full admin control
Teams working with multiple user roles
Site owners who want a cleaner dashboard

Lightweight & Secure

Built with WordPress coding standards
Nonce verification for all actions
Capability checks for all operations
Sanitized inputs and secure database queries
Optimized for performance

Future-Ready Architecture

Polanger is built with a modular system, making it ready for future extensions and integrations.

Maintenance Policy (Current Phase)

To keep the core stable and reduce long-term maintenance overhead, Polanger is currently in a maintenance-focused release phase:

Core feature freeze: no major new core modules planned
Priority is stability: security updates, compatibility updates, and regression fixes
Addon-first growth model: new capabilities should be delivered through addons
Developer extensibility remains active through hooks, filters, and addon architecture

Available Languages

Polanger Admin Suite currently includes translations for:

English (default)
Turkish (tr_TR)
Arabic (ar)
Russian (ru_RU)
Chinese – Simplified (zh_CN)
Spanish (es_ES)
German (de_DE)

More information:

نصب

Upload the plugin to /wp-content/plugins/
Activate it from the Plugins menu
Access via Settings -> Polanger Admin

سوالات متداول

Does this replace multiple plugins?: Yes. Polanger combines menu management, login security, dashboard control, and activity logging in one plugin.
Can I control user access?: Yes. You can restrict menu visibility and plugin access per user or role.
Is it safe to use on client sites?: Absolutely. Polanger is built with security and multi-user environments in mind.
Will it slow down my site?: No. The plugin is optimized to remain lightweight and efficient.

نقد و بررسی‌ها

borkatta می 1, 2026

Finaly found a plugin that has all the admin settings in one place:)

خواندن تمامی 1 نقد و بررسی‌

توسعه دهندگان و همکاران

“Polanger Admin Suite – Control & Customize WordPress Admin” نرم افزار متن باز است. افراد زیر در این افزونه مشارکت کرده‌اند.

Polanger

ترجمه “Polanger Admin Suite – Control & Customize WordPress Admin” به زبان شما.

علاقه‌ مند به توسعه هستید؟

کد را مرور کنید, را بررسی کنید مخزن SVN, یا مشترک شوید گزارش توسعه توسط RSS.

گزارش تغییرات

1.5.1

Fixed: Resolved an issue where reCAPTCHA could fail to appear on the custom login page under certain configurations
Improved: Better integration and compatibility between Authenticator App (TOTP) and reCAPTCHA verification flows
Improved: Comment Guard reCAPTCHA integration is now more stable and reliable across comment submission scenarios
Fixed: Resolved login page logo cropping issues on responsive and custom layout configurations
Improved: On mobile devices, the login page language selector is now displayed inside a compact drawer for a cleaner layout
New: Added option to completely disable the language switcher on the login page

1.5.0

New: Authenticator App (TOTP) addon – Google/Microsoft Authenticator support with multi-user architecture, mandatory enrollment flow for required roles, profile page 2FA management, safe secret rotation (pending secret system prevents lockouts), AES-256-CBC encryption, recovery keys with auto-regeneration on rotation, trusted device memory, email fallback, and brute-force protection
New: reCAPTCHA addon – centralized Google reCAPTCHA v2/v3 key management; all reCAPTCHA configuration consolidated from multiple locations into one dedicated addon for login, registration, lost password, and comment forms
Improved: Design System – added Sidebar Background, Sidebar Text Color, Admin Bar Background, Admin Bar Text Color, Admin Bar Submenu Background, and Admin Bar Submenu Text Color customization options
Improved: Design System color compatibility – enhanced contrast handling and readability corrections across admin UI components
Improved: Menu Manager – resolved conflict issues with certain third-party plugins and themes
Improved: Mobile responsiveness – comprehensive layout and interaction improvements across all admin screens for better tablet and smartphone usability
Improved: 2FA settings form – resolved nested form submission issue for reliable Save Settings functionality

1.4.3

New: Comment Security Layer addon – multi-layer comment protection with honeypot trap, HMAC-signed timing tokens, per-IP flood control (per-minute and per-hour windows), keyword and URL blocklists, behavior scoring engine with configurable thresholds, and silent action modes (spam queue, trash, or silent drop)
Improved: Login page design – refined mobile layout with corrected form card proportions, improved spacing around inputs and buttons on small screens, and more consistent hover and focus state rendering across breakpoints
Improved: Login page background rendering – smoother gradient transitions and better full-coverage rendering for background images on narrow viewports; improved visual layering between background and form card
Improved: Admin panel mobile responsiveness – layout and spacing adjustments across Settings, Addons, and Activity Log screens; better usability on tablet and mobile viewports with more appropriate touch target sizing
Improved: Sub-tab settings saves – partial save operations now only process and re-validate the submitted field group instead of the full settings object, reducing redundant sanitization passes on every tab change
Improved: Addon list layout – card grid now wraps and spaces more cleanly on narrow viewports; improved readability of addon status indicators on mobile

1.4.2

New: Multisite Control addon – manage network-wide defaults, lock policies, and site-level overrides from a single system
New: Design System addon – token-based admin theming with presets, generated CSS, and extensible architecture
New: Network-aware settings engine with effective settings merging across supported modules
New: Network lock support for core modules (Menu Manager, Admin Bar, Login Security, Activity Log, Dashboard Center)
New: Site-level override indicators and network-managed notices for clearer control visibility
New: Developer hook polanger_admin_theme_assets for extending admin UI styling without modifying core files
Improved: 2FA system stability and security
- Enhanced verification flow with stronger session and user validation
- Secure resend flow with nonce protection and stricter token handling
- Improved trusted device and IP resolution (proxy-aware validation)
- Login flow now respects “Remember Me” preference
- Safer email handling with runtime checks and fallback protection
- Automatic reset of invalid email verification states
- Prevents enabling 2FA when email delivery is not properly configured
Improved: Design System readability and contrast handling
- Automatic contrast correction for dark/light surfaces
- Improved text visibility across admin UI components (postbox, notices, tables, forms)
- More consistent styling across WordPress admin elements
Improved: Addon system architecture
- Better addon activation flow with optional network-wide activation
- Expanded developer documentation with hooks, filters, and theming examples
- Improved extensibility for future addon-based features
Improved: General stability, security, and internal optimizations

1.4.1

Improved: Activity Log export flow (CSV/JSON) output handling on Settings page for more consistent downloads
Improved: Settings export callback visibility and admin_init lifecycle compatibility
Improved: Activity Log query hardening with validated table-name usage and allowlisted ORDER BY handling
Improved: 2FA verification comparison updated with timing-safe hash validation (hash_equals)
Improved: Activity Log IP resolution now prefers REMOTE_ADDR and supports trusted-proxy based forwarded-header parsing
Improved: Settings input validation for allowed_users with strict array-type guards before normalization

1.4.0

Major update: All premium features are now available for free
New: Full Admin Suite experience (menu, login, security, dashboard, activity log)
New: Custom Admin Menu Builder
New: Role-based access control improvements
Improved: UI/UX across all modules
Improved: Performance and stability
Improved: Security layers and validation
Fixed: Minor bugs and edge cases

1.3.1

Fixed: Prevented foreach warning when settings are missing
Improved: Stability improvements for fresh installs