Appearance
Security Extension
Thank you for your purchase!
Installation
Step 1: Upload Extension Files
Upload the Security extension files to your Paymenter installation:
/var/www/paymenter/extensions/Others/Security/Upload all Security files to extensions/Others/Security/ using SFTP or your preferred file transfer method.
Step 2: Enable Extension
Enable the extension in your Paymenter admin panel:
Admin Panel → Extensions → Others → Security → EnableThe extension will automatically run database migrations when enabled.
Configuration
Extension Settings
After enabling, configure the security settings in the admin panel:
| Setting | Description | Default |
|---|---|---|
| Auto-suspend fraud accounts | Enable automatic fraud detection | Off |
| Block VPN/Proxy IPs | Block known VPN and proxy services | Off |
| Max login attempts | Set threshold for IP blocking | 5 |
| IP block duration | Set block duration in minutes | 60 |
| Enable name validation | Block gibberish names | Off |
| Block disposable emails | Block temporary email addresses | Off |
| Enable IP reputation | Check IP reputation via APIs | Off |
| Enable audit logging | Log all security events | On |
⚠️ CRITICAL: Required Integration
To prevent suspended users from logging in and to enable automatic security checks, you MUST integrate the security checks into your login and registration components.
Configure Login Integration
Add this to /app/Livewire/Auth/Login.php on line 12:
php
use Paymenter\Extensions\Others\Security\Listeners\SecurityLoginListener;Add this to /app/Livewire/Auth/Login.php on line 29 (Before rate-limiter):
php
$securityError = SecurityLoginListener::checkLoginSecurity($this->email, request()->ip());
if ($securityError) {
$this->addError('email', $securityError);
return;
}Configure Registration Integration
Add this to /app/Livewire/Auth/Register.php at the top with other use statements:
php
use Paymenter\Extensions\Others\Security\Listeners\SecurityLoginListener;In your submit() method, add the security check at the beginning (before $validatedData = $this->validate();):
php
$fullName = $this->first_name . ' ' . $this->last_name;
$securityError = SecurityLoginListener::checkRegistrationSecurity($this->email, request()->ip(), $fullName);
if ($securityError) {
$this->addError('email', $securityError);
return;
}And after creating the user (after User::create(...)), add:
php
SecurityLoginListener::recordSuccessfulRegistration($this->email, request()->ip(), $user->id);Usage
Viewing Security Logs
Navigate to Admin Panel → Security → Logs to view:
- Login attempts
- Blocked IPs
- Fraud detections
- Registration blocks
Managing Blocked IPs
- Go to Admin Panel → Security → Blocked IPs
- View all currently blocked IPs
- Unblock IPs manually if needed
Need Help?
Join our Discord Server and open a ticket for support.
© 2025 Security Extension - BuiltByOtte. All rights reserved.