CodeCave Admin Security Auditor

CodeCave Admin Security Auditor is a lightweight plugin that helps you monitor user activity by tracking and displaying the last login time for each user in your WordPress site.

Features:

• Automatically tracks the last login time for all users
• Displays last login information in the WordPress admin users table
• Sortable last login column for easy user management
• Shows “Never” for users who haven’t logged in since plugin installation
• Timezone-aware display (uses your WordPress timezone settings)
• Clean uninstall – removes all data when plugin is deleted
• Translation ready
• No configuration needed – works out of the box

Use Cases:

• Monitor user engagement and activity
• Identify inactive user accounts
• Security auditing and compliance
• User account cleanup and maintenance
• Track user adoption of your WordPress site

Privacy and Data:

This plugin stores the last login timestamp as user metadata in your WordPress database. No data is sent to external servers. When you uninstall the plugin, all stored data is automatically removed.

Developer Notes

Accessing Last Login Data Programmatically:

You can retrieve the last login timestamp for a user:

$auditor = CodeCave_Admin_Security_Auditor::get_instance();
$last_login = $auditor->get_last_login( $user_id );

if ( $last_login ) {
    echo 'Last login: ' . date( 'Y-m-d H:i:s', $last_login );
} else {
    echo 'Never logged in';
}

Hooks and Filters:

The plugin uses standard WordPress hooks and does not currently provide custom hooks. This may be added in future versions based on user feedback.