Web Security Lite– Secure Login and Backup for Joomla


Backup, Login protection, IP Blocking, Access & Security, Site Security

miniOrange Joomla website/network security combines Web Application Firewall (WAF), Limit Login Attempts, Encrypted Database backup with recovery, and Login Protection with Two Factor and Spam Protection. Building a website is a time-consuming process that requires tremendous efforts. For smooth functioning and protection from any sort of web attack appropriate security is essential. And we ensure to provide the best website security solutions available in the market.

Web Security Lite– Secure Login and Backup for Joomla -

It provides Security for login attempts using Limit login attempts, Registrations Security, Brute Force attacks protection, IP restriction using IP blocking, IP Blacklisting and whitelisting, Country blocking, browser blocking, URL based authentication, DOS attacks protection, strong passwords enforcement, database backup, security for front-end and backend, protects admin login page(customize admin login URL), email notification, Live data reporting, etc. We provide you enterprise-level security, protecting your Joomla site from hackers and malware.


  • NONE

24/7 Support

If you need any help with installing this plugin, please click here feel free to reach out to us on our 24*7 support or Contact us.


  • Brute Force Protection
  • Show remaining login attempts to user
  • The custom time period for which IP should be blocked
  • Custom number of failed logins before detecting an attack
  • Bypass for administrator login
  • Customize Admin Login Page URL (Restrict admin URL with Key)
  • Custom redirect after Failure Response
  • Blocking of registrations from fake users/disposable email.
  • Blacklist IP Address-Block unwanted IP addresses.
  • Whitelist IP Address- Bypass protections for selected IPs.
  • Login transactions Reports
  • IP Address Range Blocking
  • Browser Blocking
  • Country Blocking
  • Database Backup
  • Scheduled database backup
  • Enforce strong password
  • IP Lookup
  • Notify the Administrator if the IP address is blocked.
  • Notify users for unusual activity with their accounts.
  • Advanced User Verification during registration

Feature Description

Login Protection and Spam Protection
Brute Force Login / Attacks Protection – We keep track of user’s login attempts and we notify administrators and users for unusual activities if someone exceeds allowed failed login attempts. Limit the number of allowed login attempts and protect the user accounts from attack.

Rename or change login page URL
Rename the default Joomla admin login URL (slug) to something different from the original base_url/administrator to prevent automated brute force attacks.

Display remaining attempts on Login Page
It will provide an option to inform users about their remaining attempts on the login page.
Protects from brute force attacks and password guessing on the login page.

Limit Login Attempts
Automated attacks on the login page to guess your password can be a risk for users’ accounts. You can just limit the login attempts and the rate of requests on the website.
Google reCAPTCHA protection for login, registration.

Registration Security
Advanced User Verification - OTP Verification plugin verifies the Email Address/Mobile Number of users by sending verification code (OTP) during registration. It removes the possibility of a user registering with a fake Email Address/Mobile Number.
Block Fake Users - We help you to detect suspicious email addresses instantly. Most of the users use disposable, fake, or temporary email addresses for registering on online websites. We can help you stop accepting registrations from those emails.

Web Application Firewall
Block Attacks and prevent access
Blocking IP – Block any IP you want just with one click.

Database backup – Backup your Joomla database tables easily with a single click. You can download and save it.

IP Blocking
Manual and automatic blocking of IP address (Blacklisting and whitelisting included). This will help to protect your site accessing (Logged in part) from unwanted IP addresses and crawlers, which uses your server resource and bandwidth.

Country Blocking
If you have a website that gets inundated with SPAM or hacking attempts from visitors or bots originating from certain countries, we can help you block those attempts. You can block the request coming from countries like Russia, Brazil, China, and others.

IP Whitelisting
Many times, we don’t need to monitor any request from our own trusted network. In this case, we whitelist the IP and let them bypass. There can be issues if anyone attacks from their own network. To protect this, every request is monitored to a certain level to verify the request does not affect the website.

Traffic Monitoring – You get the option for filtering reports with various criteria like username, IP address, date. Also, you can export reports in CSV and pdf.
IP Lookup: Check the location of the IP and get details related to the IP. With the IP Lookup feature, you can know details about the request with Country, State, and City of the IP and take action if needed.

Advanced Features
Advanced Blocking – Block users based on IP range, Country, Browser / User Agent, Referrer, and Host Name (DNS). You can also block requests from particular Operating Systems.

IP Lookup (WHOIS)
With IP Lookup you can trace the IP address of suspicious users, you can get an idea of what part of the country or world they are accessing your website from.

SPAM Protection and google reCAPTCHA for comments
Google reCAPTCHA protects your website from spam and abuse. reCAPTCHA uses an advanced risk analysis engine and adaptive CAPTCHAs to keep automated software from engaging in abusive activities on your site.

Notification to admin and end-users
Send Email Alerts for IP blocking and unusual activities with a user account. We also support customized email templates that you can use for branding.

DOS (Denial of service) attacks protection
Protect your resources from DOS attacks by slowing down attackers by delaying response and increasing delay in each of his requests and eventually blocking them entirely.

Verify Email
miniOrange email verification tool actually connects to the mail server of the user registering and checks whether the mailbox exists or not. This decreases the bounce rate from your email address and saves your email address getting blacklisted.

Social Login Integration
Social Login allows your visitors to choose from their favorite social login apps to login, comment, share, and optionally auto-register with your website or blog. One-click login to your website using social login applications like Google, Twitter, Facebook, Vkontakte, LinkedIn, Instagram, Amazon, Salesforce, Windows Live. Easy integration with your website with options to add Social login on the login page, registration page, and comments section.

How is miniOrange Different?

miniOrange has various types of deployments that gives the customer a safe and protective choice. miniOrange offers plugin, Cloud and On-premise server module. The plugin will block all incoming requests on the network where the website is hosted. You can block the request before reaching the server with the network solutions. Adding to this miniOrange also provides Login Protection and 2FA built specifically for CMS such as WordPress, Drupal, and others. And keeping backups are essential so that you can fall back in case of any loss or modification of data intentionally or unintentionally. miniOrange provides encrypted backups for file and database with one-click recovery.


Easy to use and easy to configuration.
Simple user interface. Just a few clicks and you are good to go.

SAML SSO for Joomla

SAML SSO for Joomla

By miniOrange
Access & Security
SAML 2.0 SP Single Sign On (SSO) - Service Provider allows users residing at a SAML 2.0 capable Identity Provider to log in to your Joomla website. We support all known IdPs – Google Apps, ADFS, Azure AD, Okta, Salesforce, Centrify, Bitium, miniOrange IdP, OneLogin, PortalGuard, SimpleSAMLphp, Shibboleth, Edugate, DUO, OpenAM, Ping, RSA, IBM, Oracle Access Manager, WSO2, Feide, SecureAuth, NetIQ...
SAML 2.0 IDP for Joomla

SAML 2.0 IDP for Joomla

By miniOrange
Access & Security
SAML IDP 2.0 Single Sign-On ( SSO ) - SAML Identity Provider plugin acts as a SAML 2.0 Identity Provider which can be configured to establish the trust between the Joomla site and various SAML 2.0 supported Service Providers to securely authenticate the user using the Joomla site. SAML IDP ( SSO using Joomla Users ) allows SSO login with Workplace by Facebook, Zendesk, Tableau, Owncloud, Inkling...
miniOrange OAuth Client

miniOrange OAuth Client

By miniOrange
Access & Security
OAuth Client Single Sign-On – SSO (OAuth 2.0) plugin allows users residing at OAuth 2.0 capable OAuth or OpenID Connect (OIDC) Provider to log in to your Joomla website. We support all known OAuth Providers – Google Apps, AWS Cognito, Facebook, Instagram, KeyCloak, Linkedin, Bitrix24, Fitbit, Reddit, any other custom OAuth or OpenID Connect providers miniOrange OAuth Client plugin works with...
OTP Verification For Joomla

OTP Verification For Joomla

By miniOrange
Security Tools
Email Verification / SMS Verification / OTP Verification plugin verifies the Email Address/Mobile Number of users by sending verification code(OTP) during registration. It removes the possibility of a user registering with a fake Email Address/Mobile Number. This plugin checks the existence of the Email Address/Mobile Number and the ability of a user to access that Email Address/Mobile Number. Fre...
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login

LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login

By miniOrange
Access & Security
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login plugin provides login to Joomla using credentials stored in your LDAP Server. It allows users to authenticate against various LDAP implementations like Microsoft Active Directory, OpenLDAP, and other directory systems. We support user management features such as creating users not present in Joomla from LDAP Server, addi...
Social Login by miniOrange

Social Login by miniOrange

By miniOrange
Social Media
Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media applications like for example Facebook, Twitter, Vkontakte, Google, LinkedIn, WindowsLive, Instagram, Salesforce and Amazon. Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media...
OAuth Server for Joomla

OAuth Server for Joomla

By miniOrange
Access & Security
OAuth Server Single Sign-On – SSO (OAuth 2.0) -The plugin allows users to reside in your Joomla site to login to your client apps. It allows you to use Joomla as your OAuth Server/Provider and access OAuth APIs. The primary goal of this OAuth server/OAuth Provider plugin is to allow users to interact with Joomla sites without requiring them to store sensitive credentials. STEP BY STEP GUIDES TO...
Two Factor Authentication 2FA for Joomla

Two Factor Authentication 2FA for Joomla

By miniOrange
Access & Security
Two Factor Authentication ( 2FA ) for Joomla Two Factor Authentication 2FA for Joomla plugin secures your Joomla login with an additional layer of security. This plugin provides two-factor authentication ( TFA ) during login. Click here to know more about Joomla 2FA plugin. This plugin provides more than 15 2fa methods to configure including Google Authenticator, OTP Over SMS, OTP Over Email, Yub...

Web Security Lite– Secure Login and Backup for Joomla

Last updated:
Jul 31 2020
Date added:
Jan 24 2020
GPLv2 or later
Free download
c p
J3 J4 Alpha

Uses Joomla! Update System