The Joomla! Extensions Directory ™

jSecure ComponentPlugin


Drawback: Joomla has one drawback, any web user can easily know the site is created in Joomla! by typing the URL to access the administration area (i.e. This makes hackers hack the site easily once they crack id and password for Joomla!. Information: jSecure Authentication module prevents access to administration (back end) login page without appropriate access key.

Easy to install, jSecure adds a higher level of security to your Joomla website.

jSecure Authentication 3.0 has a range of improvements including:

Note : Only for joomla! version 2.5.x and 3.x

A.Multiple Userkeys
Assign multiple userkeys to different users whom you wish to grant access to your joomla! backend without sharing your master passkey.

B.Form Based Authentication
Changed the look & feel of form based authentication page.

Fixed the Resource not found (404) console error for the file jsecure.css in jSecure login form.

A. Auto Ban I.P Address
Auto Ban IP Feature. Blacklist vulnerable IP addresses automatically.

B. Manage IP's
With this feature you can simply add/remove Blacklisted IP's from "View Log".

A. Secure Components
Now with jSecure you can password protect installed components in admin area.

B. Access Graph
Graphical representation of correct v/s wrong access for different segments of time.

3.0 (19-Dec-2012):
Added Security Features:
A. Master Password:
You can block access to the jSecure component from other administrator. Setting to "Yes", allows you to create a password that will be required when any administrator tries to access the jSecure configuration settings in the Joomla administration area.
If you do not enter a master password, the default password will be "jSecure". Provides options to include particular sections of the component in master password.
B. Master Login Control:
Login control to restrict multiple users from logging into the site using same username and password.
C. Admin Password Protection:
Added password protection to add extra security layer over the administrator folder using htaccess and htpassword.
D. Directory Listing:
Directory listing to show list of all files and folders with their permissions on the site.

Added Tools:
A. Black Listed/ White Listed IP's:
Now range of IPs can be black listed or white listed by using format '192.*.*.*'. Warning !!! Use of '*.*.*.*' is not permitted. !!!
B. Meta Tag Controller:
Meta tag controller to override metadata of Joomla.
C. Purge Sessions:
Using this option will cleanup session of all logged-in users and they let logged-out.
* Improved backend presentation
* Improved support on our forum

Change Logs:

Change Log for (J2.5, J3.0)
Included option to manage the permission settings for the user groups.

Change Log for (J3.0):

Report Extension



Reviews: 1
I was hacked every 1-2 months before, which means reinstall all my 10 joomla sites (all within the same provider). I was bore and angry with it.
Now, every ting is fine, and more I receive an email for each attempt, so I can tell you this is mandatory to protect your joomla sites with a component like that one.
Can be improved, but support is reactive. Good !
Reviews: 3
Nice security feature for joomla, worked with me first try, I would only remind users to add the ? in www/

I missed it, but quickly realised after reading the support forum.
Reviews: 32
Using jSecure Authentication in Joomla 2.5 and 1.5 since version 1.0.9 (March 2010).
Advantages: You can hide the path to the administrative area of ​​the site, log on the entrance and to block access by IP address.
Disadvantages: Sometimes when you upgrade the expansion there are problems with access to the administrative area.
Good value for money, easy to configure. Closes one of the biggest problems in the site's security - access to the administrative area.
I use to hide the administrative area of all sites that are creating.
Engaged in web technologies since March 2007. Use Joomla since December 2009.
Reviews: 8
This is a must have plugin! I've been using this plugin for more than two years now and my site is well secured!! Thanks guys.
Reviews: 3
Personally, I like this extensions. But back before it lauched the component. Back when it just a plugin. It is easy to configure. Just add the secret key and it works just fine. But the component really need some extra effort to make it works. But overall. I give thumbs for the developers.
Reviews: 5
I've been using this component/plugin for many years. And it all come back to me as a perfectly nice and reliable Joomla extensions that I couldn't resist. Helping me out to cover up and secure my backdoor area from unwanted cheater and very unpleasant people.

Very recommended extensions that you must have on your Joomla site!
Reviews: 1
Jsecure is the best work I have ever met, ease of installation, access, all the features you can control very easily, of course with a high level of security that you have never met. -bramgrill
Reviews: 1
I just love this component. It has effectively added more security to my websites. Now, i have less worries for my websites to be hacked. Security has increased substantially. Thanks to the developers. Keep Joomla more secure.
Reviews: 2
It works as you expect, but it become commercial.
hope this change improve usability and stability.
Any case, is not for all of us.
Reviews: 7
Just great words for this component. Easy to install and to configure and it works out of the box! I'm using it for years now.

Feature requests:
-different key's for different users
-option to exclude component from joomla permissions
-if my site is offline I don't want do have input boxes in offline messages to login in frontend. Instead it will be great to have an frontend option to use your key and then you can get access to login.

Owner's reply

Thanks for the suggestions. Feature requests 1 and 3 are really nice and fruitful.
We will plan and try to incorporate these features in the component. Can you please elaborate 2nd feature so that we can start planning over it.

Reviews: 7
Key points:

- it's easy to install and setup.
- admin users don't have any problem getting used to it
- it works.

We recommend it to all our clients, it's amazing the number of new clients that come to us that haven't done anything in the way of security. This is the simplest first step that costs less than a couple cups of good coffee.
Reviews: 1
I have been using the free version of jSecure for a couple of years now.

As of 1.6 you have to pay for this extension ($10) but it is well worth it and I recommend using the new jSecure extension as it has more features.
Reviews: 8
I use it on all of my websites. It gives that added layer of security. It's very simple and yet very effective. I've used it for years and found it to work well.
Reviews: 6
Really love this add on for joomla. So simple, works straight out of the box (J1.6). Should be incorporated into the core functionality.
Reviews: 1
This component is still quite not bad to use. I am quite pleased with them. Not trying to get support and everything is clear and simple.
Reviews: 5
I install this on all my Joomla! sites, and I honestly believe that it should be included in the basic install. The only thing to remember is to keep a copy of your Key when you are first installing it, so you don't have problems.
Reviews: 6
Having been hacked to the hilt whereby a hacker managed to delete my entire site somehow, I figured it was perhaps about time to start taking security a tad more seriously, so hunted for suitable Coms to help with the process. This & one other (RSFirewall) have proven to be the perfect combo. Like others I managed to lock myself out of the site first time around too, and wish I'd had the wit to return here to read how to overcome that easier than doing as I did and deleting the Com entirely off the database! But once I got the knack I've found it hugely useful - at least now I get forewarning of the multiple attacks to gain entrance via the Admin and the sneaky ways that are being used to try to do it. More importantly I can see whether they're succeeding before they get that far i.e. if they get as far as the login page to start with - so far, none have!!

However, I do have a couple of minor issues - while there is now the ability to black/whitelist IP addies, there's no easy way to see which are which once you put them in - all that happens is you get a list and as such I've not put my own IP in just in case it gets black instead of whitelisted without me realising. Would be much better if each list was fully shown as what it is.

And that's the only reason I've not given it a 5 star rating as otherwise it really is great but maybe some more work on it would have it truly superb!
Reviews: 2
This is a good product. It is well worth the money spent, but support is lacking. There seems to be a bug with jSecure and JoomlaWatch. (Most recent versions of both with Joomla version 1.5.22) With jSecure enabled you will not be able to access JoomlaWatch in the backend to view stats, etc.

You have to disable jSecure, then logout, then log back in via the default back end url. I've tried disabling and re-enabling the modules in different order and still the same result.

It's been over 5 days after posting the issue on the jSecure forums/support without even a reply saying that they will look into it. I don't expect a solution right away, but they could at least reply saying that they will look into it.

This product definitely would receive five stars if not for lack of support. Again, for the price I don't expect much, but at least a reply that they will look into it.
Reviews: 1
It's such a simple concept, but keeping people away from the back end login of my Joomla installs adds that extra peace of mind! I've been using this extension for years now, and though I was surprised to see the newest version for Joomla 1.6 needed to be purchased, I was happy to buy it! Thanks to the developer for a simple yet great little security tool!
Reviews: 3
I have used this for a while now, starting with the free version and have just upgraded to the commercial one. I don't expected people to work for nothing.! It has been a reliable security feature for my joomla sites and easy to configure. As for the remark made by Jacob about being unable to log in to your site if you forget the code, The answer is simple, log in to your database and read the code from there.
Page 1 of 2