Web-Art Login Shield with reCAPTCHA

1.1.0

• Feature: Added IP Blocking (Site-wide) with a permanent IP blocklist (HTTP 403 across the site).
• UX: Separated and standardized admin status labels (permanent vs temporary IP blocks).
• UX: Documented optional note format support (IP | reason) for reCAPTCHA allowlist and Login Protect trusted IPs.
• Security: Login Protect lockouts on wp-login.php return HTTP 429 with Retry-After header for active lockouts (POST login attempts only).
• UX: Added wp-login.php lockout countdown notice (“Try again in:”) and client-side submit blocking during lockout.
• Fix: Improved lockout messaging on the login screen to clearly indicate an active lockout when the lockout is triggered.
• Hardening: Reduced unnecessary request inspection by narrowing wp-login POST attempt detection to relevant contexts.
• Recovery: Added wp-config.php kill-switch constants to temporarily disable Advanced login URL and/or IP Blocking in emergency situations.

1.0.1

• Feature: Added visual alignment options (Left, Center, Right) for reCAPTCHA in Elementor Login and Elementor Forms.
• Security: Enhanced input sanitization standards for better FastCGI/Nginx compatibility.
• Performance: Disabled reCAPTCHA rendering in the Elementor Editor backend to improve editor performance.
• Fix: Stabilized Elementor Forms reCAPTCHA alignment in multi-column layouts when column gaps are used.
• UX: Simplified and unified configuration status labels in the admin settings.
• Tweak: General code hardening and strict type enforcement.

1.0.0

• Initial release