Admin and Site Enhancements (ASE) helps you to easily enhance various admin workflows and site aspects while replacing multiple plugins doing it.

Here’s a review at v5.2.9 by Alexis FH of WP Made Simple.

Here’s a review at v5.1.0 by Paul Charlton of WPTuts.

Here’s a review at v5.0.2 by Imran Siddiq @websquadron.

Here’s a quick review at v5.0.1 by Nathan Wrigley @wpbuilds.

Here’s a walkthrough of the plugin at v4.8.2 by Nathan Ingram.

Content Management

  • Content Duplication. Enable one-click duplication / clone / copy of pages, posts and custom posts. The corresponding taxonomy terms and post meta will also be duplicated.
  • Content Order. Enable custom order for pages, posts and custom post types. Useful for displaying them in the desired order in wp-admin and on the frontend. e.g. projects, services, FAQs, team members, testimonials, etc.
  • Media Replacement. Easily replace any type of media file with a new one while retaining the existing media ID, publish date and file name. So, no existing links will break.
  • SVG Upload. Allow some or all user roles to upload SVG files, which will then be sanitized to keep things secure.
  • External Permalinks. Enable pages, posts and/or custom post types to have permalinks that point to external URLs. The rel=”noopener noreferrer nofollow” attribute will also be added for enhanced security and SEO benefits. Compatible with links added using Page Links To.
  • Open All External Links in New Tab. Force all links to external sites to open in new browser tab via target=”_blank” attribute. The rel=”noopener noreferrer nofollow” attribute will also be added for enhanced security and SEO benefits.
  • Auto-Publish Posts with Missed Schedule. Trigger publishing of scheduled posts of all types marked with “missed schedule”, anytime the site is visited.
  • Enhance List Tables. Improve the usefulness of listing pages of various post types by adding / removing columns and elements.
    • Show the featured image column: in the list tables for pages and post types that support featured images.
    • Show the excerpt column: in the list tables for pages and post types that support excerpt.
    • Show the ID as a column or in the action rows: in the list tables for pages, all post types, all taxonomies, media, users and comments.
    • Show custom taxonomy dropdown filter(s): on the list tables of all post types for taxonomies that are hierarchical like post categories.
    • Remove the comments column: in in the list tables for pages, post types that support comments, and also media/attachments.
    • Remove the post tags column: in the list table for posts.

Admin Interface

  • Hide Admin Notices. Clean up admin pages by moving notices into a separate panel easily accessible via the admin bar.
  • Wider Admin Menu. Give the admin menu more room to better accommodate wider items.
  • Admin Menu Editor / Organizer. Customize the order of the admin menu and optionally change menu item title or hide some items.
  • Disable Dashboard Widgets. Clean up and speed up the dashboard by completely disabling some or all widgets. Disabled widgets won’t load any assets nor show up under Screen Options.
  • Clean Up Admin Bar. Remove various elements from the admin bar.
    • Remove WordPress logo/menu
    • Remove customize menu/link
    • Remove updates counter/link
    • Remove comments counter/link
    • Remove new content menu
    • Remove ‘Howdy’ text
    • Remove the Help tab and drawer
  • Hide Admin Bar. Hide it on the front end for all or some user roles.

Log In / Log Out

  • Change Login URL. Improve site security by using a custom login URL, e.g.
  • Log In/Out Menu. Enable log in, log out and dynamic log in/out menu item for addition to any menu.
  • Last Login Column. Log when users on the site last logged in and display the date and time in the users list table.
  • Redirect After Login / Logout. Set custom redirect URL for all or some user roles after login / logout.

Custom Code

  • Custom Admin CSS. Add custom CSS on all admin pages for all user roles.
  • Custom Frontend CSS. Add custom CSS on all frontend pages for all user roles.
  • Insert <head>, <body> and <footer> Code. Easily insert <meta>, <link>, <script> and <style> tags, Google Analytics, Tag Manager, AdSense, Ads Conversion and Optimize code, Facebook, TikTok and Twitter pixels, etc.
  • Custom Body Class. Add custom <body> class(es) on the singular view of some or all public post types. Compatible with classes already added using Custom Body Class plugin.
  • Manage ads.txt and app-ads.txt. Easily edit and validate your ads.txt and app-ads.txt content.
  • Manage robots.txt. Easily edit and validate your robots.txt content.

Disable Components

  • Disable Gutenberg. Disable the Gutenberg block editor for some or all applicable post types. Optionally disable frontend block styles / CSS files for the selected post types.
  • Disable Block-Based Widgets Settings Screen. Restores the classic widgets settings screen when using a classic (non-block) theme.
  • Disable Comments. Disable comments for some or all public post types. When disabled, existing comments will also be hidden on the frontend.
  • Disable REST API. Disable REST API access for non-authenticated users and remove URL traces from <head>, HTTP headers and WP RSD endpoint.
  • Disable Feeds. Disable all RSS, Atom and RDF feeds. This includes feeds for posts, categories, tags, comments, authors and search. Also removes traces of feed URLs from <head>.
  • Disable All Updates. Completely disable core, theme and plugin updates and auto-updates. Will also disable update checks, notices and emails.
  • Disable Smaller Components. Prevent smaller components from running or loading. Make the site more secure, load slightly faster and be more optimized for crawling by search engines.
    • Disable the generator <meta> tag in <head>, which discloses the WordPress version number. Older versions(s) might contain unpatched security loophole(s).
    • Disable the Windows Live Writer (WLW) manifest <link> tag in <head>. The WLW app was discontinued in 2017.
    • Disable the Really Simple Discovery (RSD) <link> tag in <head>. It’s not needed if your site is not using pingback or remote (XML-RPC) client to manage posts.
    • Disable the default WordPress shortlink <link> tag in <head>. Ignored by search engines and has minimal practical use case. Usually, a dedicated shortlink plugin or service is preferred that allows for nice names in the short links and tracking of clicks when sharing the link on social media.
    • Disable loading of dashicons CSS and JS files on the front-end for public site visitors.
    • Disable emoji support for pages, posts and custom post types on the admin and frontend. The support is primarily useful for older browsers that do not have native support for it. Most modern browsers across different OSes and devices now have native support for it.


  • Limit Login Attempts. Prevent brute force attacks by limiting the number of failed login attempts allowed per IP address.
  • Obfuscate Author Slugs. Obfuscate publicly exposed author page URLs that shows the user slugs / usernames, e.g. into, and output 404 errors for the original URLs. Also obfuscates in /wp-json/wp/v2/users/ REST API endpoint.
  • Disable XML-RPC. Protect your site from brute force, DOS and DDOS attacks via XML-RPC. Also disables trackbacks and pingbacks.


  • Image Upload Control. Resize newly uploaded, large images to a smaller dimension and delete originally uploaded files. BMPs and non-transparent PNGs will be converted to JPGs and resized.
  • Revisions Control. Prevent bloating the database by limiting the number of revisions to keep for some or all post types supporting revisions.
  • Heartbeat Control. Modify the interval of the WordPress heartbeat API or disable it on admin pages, post creation/edit screens and/or the frontend. This will help reduce CPU load on the server.


  • Email Delivery. Set custom sender name and email. Optionally use external SMTP service to ensure notification and transactional emails from your site are being delivered to inboxes. Send a test email to check if configuration works as intended.
  • Multiple User Roles. Enable assignment of multiple roles during user account creation and editing. This maybe useful for working with roles not defined in WordPress core, e.g. from e-commerce or LMS plugins.
  • View Admin as Role. View admin pages and the site (logged-in) as one of the non-administrator user roles.
  • Password Protection. Password-protect the entire site to hide the content from public view and search engine bots / crawlers. Logged-in administrators can still access the site as usual.
  • Maintenance Mode. Show a customizable maintenance page on the frontend while performing a brief maintenance to your site. Logged-in administrators can still view the site as usual.
  • Redirect 404 to Homepage. Perform 301 (permanent) redirect to the homepage for all 404 (not found) pages.

Admin and Site Enhancements (ASE) will include more enhancements, tweaks and useful features in future versions. Please give feedback on must-have plugins or code snippets you enable on sites that you manage, and the functionalities will be considered for inclusion as well.