Please enable JavaScript.
Coggle requires JavaScript to display documents.
Wordpress - Coggle Diagram
Wordpress
Sercurity
Validate and Santize user input
santize_text_field()
esc_sql()
esc_html()
Database
Use Database Class $wpdb
Avoid using raw SQL queries
User permission
Cross-Site Request Forgery (CSRF) protection
wp_nonece_field()
check_admin_referer()
Protect ouput data
esc_html()
esc_url()
esc_attr()
wp_handle_upload(): File upload
Keep theme and plugin up to date
SSL/TLS: Encrypt data in transit
Implement strong password and 2FA
Plugins
Wordfence
Sucuri
Regular backup
SEO
Optimize images
Size
Alter text
SEO friendly permalink
XML Sitemap
Meta title and description
Heading tags
Mobile optimization
Page speed
Fix broken links
Social Media intergration
Hacked site
Isolate site
Change password
Update themes and plugins
Scan for malware
Check user account
Override core files
Monitor for unusual activity
Themes
Child theme
How
Create child theme folder
Create style sheet
Override file from parent
Functions are added in functions.php
Why
Customizations and modifications
Parent updates won't break
Optimization
CDN
Compress images
Minify css, js and html
Leverage browser caching
GZIP
Limit external scripts
Optimize database
Caching plugins
Total cache
Super cache
WP Rocket
Internationlization
Language file po
__() is a shorthand function for gettext
Hooks
Action hooks
init
register_post_type(): Custom post type
register_taxonomy(): Custom taxonomy type
wp_head: Befire </head>
wp_footer: Before </body>
comment_form
widgets_init
admin_init
wp_enqueue_scripts
admin_enqueue_scripts
wp
ajax
(action)
wp_ajax_no
priv
(action): AJAX without login
Filter hooks
the_titile
the_content
the_excerpt
widget title
body_class