smart User Slug Hider


The smart User Slug Hider Plugin hides usernames in Author Pages URLs to enhance Security

If you like this plugin please do me favor and leave a review here on so that other people know it is helpful for you. Thanks!


The plugin automatically replaces user names with 16 digits coded strings. Just install and forget. Deactivating the Plugin restores the default WordPress behavior.

Why use this plugin?

WordPress uses the pattern for author page URLs where name represents the users login name. This means that the login names from all your users are publicly visible which is a serious security flaw. The smart User Slug Hider Plugin changes all author page URLs from e.g. to something like The codes are generated automatically and its impossible to make conclusions about the user names. The WordPress default URLs will cause a 404 (not found) error.

Also works for BuddyPress member pages.

Future Safe Mode

Version 2 of this plugin introduced a new encryption mode, called Future Safe Mode. As of PHP version 7.1.0 the functions so far used by this plugin for encryption are marked as deprecated and your webserver may show a PHP Warning.

If Future Safe Mode is activated the plugin creates different Author Page URLs. If you have not used this plugin yet, it is recommended to activate Future Safe Mode. If you have already used the plugin you have to decide if you prefer to change the URLs of all Author Pages or to ignore the PHP Warnings.


For support check the Support Forum.


This plugin does not collect any data.


The plugin adds three shortcodes you can use in your posts:

  • [smart_user_slug] – the user slug of the post author – e.g. e9e716def73f76ac
  • [smart_user_url] – the url of the post author’s profile page – e.g.
  • [smart_user_link] – adds a link to the post author’s profile page

Theme Functions

The plugin adds two functions that can be used in theme files:

  • get_smart_user_slug( $author_id ) to get the user slug for the author – the parameter $author_id is optional, if omitted the author`s ID of the current post is used
  • the_smart_user_slug( $author_id ) to display the user slug for the author – the parameter $author_id is optional, if omitted the author`s ID of the current post is used

More plugins from Peter


Very useful

I use UserPro and BuddyPress without user_nicename, then, the username is automaticaly set as myname-gmailcom. Big privacy issue. Now, I’am allowed to not show the e-mail is that url …/members/myname-gmailcom/ it’s now …/members/68612367786/ thanks !

Works as advertised.

I had bots hitting one of my sites, trying to login as all of the users who had posted articles. After adding this plugin and adjusting the usernames, the bots were left clueless, trying to login with the old usernames. Great job!


Great lightweight plugin that does exactly what it says on the tin!

A must install on ALL WordPress sites!

Won’t blog without it

This plugin fixes one of the most irritating things about WordPress, which is that it so easily reveals the username of the admin user by simply checking the author page. This lowers the security level of the blog, as hackers only need to guess your password to get in. With this plugin, you will have double security so very easily, when you use a complicated username and select a display name from user settings, so any potential hacker need to guess both your username and your password to log in. Never set up a blog without this plugin.

smart User Slug Hider

Great plugin
Does as it says on the box
Word press why not add this as part of your default plugins, saves a lot
of head scratching and searching on how to plug the security hole.

Thats the hacks having to guess 100% instead of just 50%


Read all 14 reviews

Contributors & Developers

“smart User Slug Hider” is open source software. The following people have contributed to this plugin.


“smart User Slug Hider” has been translated into 1 locale. Thank you to the translators for their contributions.

Translate “smart User Slug Hider” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.


2 (2018-03-14)

  • Future Safe Mode

1.5 (2017-11-16)

  • faulty display in WP 4.9 fixed

1.4 (2017-07-15)

  • fix for BuddyExtender plugin

1.3 (2017-07-17)

  • BuddyPress compatibility
  • redesigned admin interface
  • code improvement

1.2 (2016-10-04)

  • Shortcodes added: [smart_user_slug], [smart_user_url], [smart_user_link]
  • Theme Functions added: get_smart_user_slug(), the_smart_user_slug()

1.1 (2016-06-30)

  • Code optimization
  • Plugin info page added

1.0 (2014-10-02)

  • Initial Release (tanks to joeymalek for drawing my attention to this problem)