=== Polanger Admin Suite - Control & Customize WordPress Admin ===
Contributors: polangersoft
Tags: admin bar, admin dashboard, admin menu, menu manager, login security
Requires at least: 4.7
Tested up to: 6.9
Stable tag: 1.4.2
Requires PHP: 7.0
License: GPLv3 or later
License URI: https://www.gnu.org/licenses/gpl-3.0.html

All-in-one WordPress admin control. Manage menus, dashboard, login security, activity logs, and more in one powerful plugin.

== Description ==

**Polanger - Admin Suite** is a powerful, all-in-one solution to fully control and optimize your WordPress admin experience.

Instead of installing multiple plugins for menu management, login security, dashboard cleanup, and activity tracking - Polanger brings everything together in one clean, modern interface.

Whether you're a developer, agency, or site owner, Polanger helps you create a cleaner, safer, and more controlled WordPress admin panel.

* [Live Demo](https://polanger.com/polanger-admin-suite/wp-admin)

= Why Polanger Admin Suite? =

* **All-in-One Admin Control** - Replace multiple plugins with one powerful solution
* **Clean & Organized Dashboard** - Remove clutter and simplify your workflow
* **Enhanced Security** - Protect login and track activity
* **Modern UI** - Fast, intuitive, and easy to use
* **Built for Agencies & Teams** - Perfect for multi-user environments

= Core Features =

== Admin Menu Manager ==
* Hide any admin menu or submenu item
* Role-based visibility control
* Rename menu items and submenus
* Change icons with 200+ Dashicons
* Drag & drop menu reordering
* Block direct URL access to hidden pages
* Visual indicators for hidden and modified items
* Custom admin menu builder (create your own menus)

== Admin Bar Customization ==
* Replace or remove WordPress logo
* Hide unwanted admin bar items
* Add custom links with icons
* Manage frontend and backend admin bar
* Auto-detect plugin and theme items

== Login Security & Customization ==
* Custom login URL (hide wp-login.php)
* Google reCAPTCHA v2 & v3 support
* Custom login page design (logo, colors, background)
* Brute force protection
* Secure login flow enhancements

== Two-Factor Authentication (2FA) ==
* Email-based verification codes
* Role-based enforcement
* Recovery keys for backup access
* Configurable expiration times
* Super admin protection

== Activity Log ==
* Track logins, plugin changes, content updates, and more
* Filter by user, action, and date
* Export logs (CSV)
* Email alerts for critical actions
* GDPR/KVKK compliant logging

== Dashboard Control ==
* Hide default WordPress widgets
* Hide third-party plugin widgets
* Control admin notices
* Create custom dashboard widgets
* Per-user dashboard visibility

== Multisite Control ==
* Network-wide default settings for multisite installations
* Site-level override controls for supported modules
* Lock system for Menu Manager, Admin Bar, Login Security, Activity Log, and Dashboard Center
* Network-aware addon activation support
* Developer-friendly effective settings filter architecture

== Access Control ==
* Restrict plugin access to specific users
* Read-only mode support
* Prevent unauthorized access
* Super admin safety protection

== Design System ==
* Token-based admin theming system for consistent and scalable customization
* Customize colors across admin UI (sidebar, admin bar, background, text, surfaces)
* Built-in presets (e.g. Dark, Minimal, Default) with one-click application
* Automatic CSS generation with cache-friendly performance
* Smart contrast correction for readable text on both dark and light surfaces
* Typography controls including font family and basic shape settings
* Scoped styling to avoid conflicts with WordPress core and plugins
* Extensible architecture for future themes, layouts, and design packs

= Addon Architecture =

Polanger Admin Suite includes a modular addon system designed for scalability and clarity.

== Core Addons ==
* Admin Bar
* Dashboard Center
* Admin Activity Log
* Custom Admin Menu Builder
* Multisite Control

== 3rd Party Addons ==
* Reserved for future ecosystem integrations
* Addons are managed from the built-in **Addons** tab
* Core addons and external addons are separated for easier management

= Built for Real-World Use =

Polanger is designed for:

* Agencies managing client websites
* Developers who need full admin control
* Teams working with multiple user roles
* Site owners who want a cleaner dashboard

= Lightweight & Secure =

* Built with WordPress coding standards
* Nonce verification for all actions
* Capability checks for all operations
* Sanitized inputs and secure database queries
* Optimized for performance

= Future-Ready Architecture =

Polanger is built with a modular system, making it ready for future extensions and integrations.

= Maintenance Policy (Current Phase) =

To keep the core stable and reduce long-term maintenance overhead, Polanger is currently in a maintenance-focused release phase:

* Core feature freeze: no major new core modules planned
* Priority is stability: security updates, compatibility updates, and regression fixes
* Addon-first growth model: new capabilities should be delivered through addons
* Developer extensibility remains active through hooks, filters, and addon architecture

= Available Languages =

Polanger Admin Suite currently includes translations for:

* English (default)
* Turkish (tr_TR)
* Arabic (ar)
* Russian (ru_RU)
* Chinese - Simplified (zh_CN)
* Spanish (es_ES)
* German (de_DE)

More information:

* [Live Demo](https://polanger.com/polanger-admin-suite/wp-admin)
* [Documentation](https://polanger.com/documentation/polanger-admin-suite/docs/)
* [Developer](https://polanger.com/documentation/polanger-admin-suite/developer/)

== Installation ==

1. Upload the plugin to `/wp-content/plugins/`
2. Activate it from the Plugins menu
3. Access via **Settings -> Polanger Admin**

== Frequently Asked Questions ==

= Does this replace multiple plugins? =
Yes. Polanger combines menu management, login security, dashboard control, and activity logging in one plugin.

= Can I control user access? =
Yes. You can restrict menu visibility and plugin access per user or role.

= Is it safe to use on client sites? =
Absolutely. Polanger is built with security and multi-user environments in mind.

= Will it slow down my site? =
No. The plugin is optimized to remain lightweight and efficient.

== Screenshots ==

1. Admin Suite dashboard overview
2. Menu manager with drag & drop
3. Login customization panel
4. Activity log interface
5. Dashboard widget controls

== Changelog ==

= 1.4.2 =

* New: Multisite Control addon – manage network-wide defaults, lock policies, and site-level overrides from a single system
* New: Design System addon – token-based admin theming with presets, generated CSS, and extensible architecture

* New: Network-aware settings engine with effective settings merging across supported modules
* New: Network lock support for core modules (Menu Manager, Admin Bar, Login Security, Activity Log, Dashboard Center)
* New: Site-level override indicators and network-managed notices for clearer control visibility

* New: Developer hook `polanger_admin_theme_assets` for extending admin UI styling without modifying core files

* Improved: 2FA system stability and security
  - Enhanced verification flow with stronger session and user validation
  - Secure resend flow with nonce protection and stricter token handling
  - Improved trusted device and IP resolution (proxy-aware validation)
  - Login flow now respects "Remember Me" preference
  - Safer email handling with runtime checks and fallback protection
  - Automatic reset of invalid email verification states
  - Prevents enabling 2FA when email delivery is not properly configured

* Improved: Design System readability and contrast handling
  - Automatic contrast correction for dark/light surfaces
  - Improved text visibility across admin UI components (postbox, notices, tables, forms)
  - More consistent styling across WordPress admin elements

* Improved: Addon system architecture
  - Better addon activation flow with optional network-wide activation
  - Expanded developer documentation with hooks, filters, and theming examples
  - Improved extensibility for future addon-based features

* Improved: General stability, security, and internal optimizations

= 1.4.1 =
* Improved: Activity Log export flow (CSV/JSON) output handling on Settings page for more consistent downloads
* Improved: Settings export callback visibility and `admin_init` lifecycle compatibility
* Improved: Activity Log query hardening with validated table-name usage and allowlisted `ORDER BY` handling
* Improved: 2FA verification comparison updated with timing-safe hash validation (`hash_equals`)
* Improved: Activity Log IP resolution now prefers `REMOTE_ADDR` and supports trusted-proxy based forwarded-header parsing
* Improved: Settings input validation for `allowed_users` with strict array-type guards before normalization

= 1.4.0 =
* Major update: All premium features are now available for free
* New: Full Admin Suite experience (menu, login, security, dashboard, activity log)
* New: Custom Admin Menu Builder
* New: Role-based access control improvements
* Improved: UI/UX across all modules
* Improved: Performance and stability
* Improved: Security layers and validation
* Fixed: Minor bugs and edge cases

= 1.3.1 =
* Fixed: Prevented foreach warning when settings are missing
* Improved: Stability improvements for fresh installs

== Upgrade Notice ==

= 1.4.2 =
Adds Multisite Control plus expanded 2FA security and verification flow improvements for safer multisite-ready authentication handling.

= 1.4.1 =
Maintenance release with developer-focused security and reliability improvements across Activity Log, 2FA, and Settings validation flows.

= 1.4.0 =
Major update! Polanger is now a complete Admin Suite with all features available for free. Upgrade to unlock full control over your WordPress admin experience.
