Security Extension

Advanced security features for Paymenter including fraud detection, VPN blocking, and automatic account protection.

BuiltByOtte December 01, 2025

Thank you for your purchase!

Installation

Step 1: Upload Extension Files

Upload the Security extension files to your Paymenter installation:

/var/www/paymenter/extensions/Others/Security/

Upload all Security files to extensions/Others/Security/ using SFTP or your preferred file transfer method.

Step 2: Enable Extension

Enable the extension in your Paymenter admin panel:

Admin Panel → Extensions → Others → Security → Enable

The extension will automatically run database migrations when enabled.

Configuration

Extension Settings

After enabling, configure the security settings in the admin panel:

Setting Description Default
Auto-suspend fraud accounts Enable automatic fraud detection Off
Block VPN/Proxy IPs Block known VPN and proxy services Off
Max login attempts Set threshold for IP blocking 5
IP block duration Set block duration in minutes 60
Enable name validation Block gibberish names Off
Block disposable emails Block temporary email addresses Off
Enable IP reputation Check IP reputation via APIs Off
Enable audit logging Log all security events On

⚠️ CRITICAL: Required Integration

To prevent suspended users from logging in and to enable automatic security checks, you MUST integrate the security checks into your login and registration components.

Configure Login Integration

Add this to /app/Livewire/Auth/Login.php on line 12: 

use Paymenter\Extensions\Others\Security\Services\SecurityService;

Add this to /app/Livewire/Auth/Login.php on line 29 (Before rate-limiter): 

$securityService = app(\Paymenter\Extensions\Others\Security\Services\SecurityService::class);
$error = $securityService->checkLoginSecurity($this->email, request()->ip());
if ($error !== null) {
    $this->addError('email', $error);
    return;
}

Configure Registration Integration

Add this to /app/Livewire/Auth/Register.php at the top with other use statements: 

use Paymenter\Extensions\Others\Security\Services\SecurityService;

In your submit() method, add the security check at the beginning (before $validatedData = $this->validate(); ): 

$securityService = app(\Paymenter\Extensions\Others\Security\Services\SecurityService::class);
$error = $securityService->checkRegistrationSecurity($this->email, request()->ip(), $this->name);
if ($error !== null) {
    $this->addError('email', $error);
    return;
}

And after creating the user (after User::create(...) ), add: 

$securityService->recordSuccessfulRegistration($user->email, request()->ip(), $user->id);

Usage

Viewing Security Logs

Navigate to Admin Panel → Security → Logs to view:

  • Login attempts
  • Blocked IPs
  • Fraud detections
  • Registration blocks

Managing Blocked IPs

  1. Go to Admin Panel → Security → Blocked IPs
  2. View all currently blocked IPs
  3. Unblock IPs manually if needed

Need Help?

Join our Discord Server and open a ticket for support.

© 2025 Security Extension - BuiltByOtte . All rights reserved.

Back to Documentation