=== CloudFlare === Contributors: jwineman, furkan811, IcyApril Tags: cloudflare, seo, ssl, ddos, speed, security, cdn, performance, free Requires at least: 3.4 Tested up to: 4.6 Stable tag: 3.0.2 License: BSD-3-Clause All of CloudFlare’s performance and security benefits in a simple one-click install of recommended settings specifically developed for WordPress. == Description == = What this plugin can do for you = **One-click WordPress-optimized settings** The easiest way to setup CloudFlare for your WordPress site. **Web application firewall (WAF) rulesets** Available on all of CloudFlare’s paid plans, the WAF has built-in rulesets, including rules that mitigate WordPress specific threats and vulnerabilities. These security rules are always kept up-to-date, once the WAF is enabled, you can rest easy knowing your site is protected from even the latest threats. **Automatic cache purge** Occurs when you change the appearance of your website. This means that you can focus on your website, while we ensure that the latest content is always available to your visitors. (Note: By default, CloudFlare does not cache HTML, and a cache purge is not required on updating HTML content such as publishing a new blog entry). = Additional features = * Header rewrite to prevent a redirect loop when CloudFlare’s Universal SSL is enabled * Change CloudFlare settings from within the plugin itself without needing to navigate to the cloudflare.com dashboard. You can change settings for cache purge, security level, Always Online, and image optimization * View analytics such as total visitors, bandwidth saved, and threats blocked * Support for [HTTP2/Server Push](https://blog.cloudflare.com/announcing-support-for-http-2-server-push-2/) == Installation == = From your WordPress Dashboard = 1. Visit “Plugins” > Add New 2. Search for Cloudflare 3. Activate Cloudflare from your Plugins page. = From WordPress.org = 1. Download Cloudflare 2. Upload the “cloudflare” directory to your “/wp-content/plugins/” directory, using ftp, sftp, scp etc. 3. Activate Cloudflare from your Plugins page. = Once Activated = 1. Go to cloudflare.com 2. Login with your cloudflare account. (If you don’t have a Cloudflare account first sign up for Cloudflare) 3. Press your account name on top right corner and select “My Settings” 4. Scroll down to “API Key” > “Global API Key” > View API Key 5. Copy the API key 6. Return back to WordPress Cloudflare Plugin page 7. Enter your email address and paste your API key 8. Press Login. == Frequently Asked Questions == = Do I need a CloudFlare account to use the plugin? = Yes, on install and activation the plugin, first time users will be asked to enter their email address (used to sign-up for an account at cloudflare.com) and their user API key. This is needed to support all the features offered by the plugin. = What settings are applied when I click "Apply Default Settings" in CloudFlare's WordPress plugin? = You can review the recommended settings that are applied [here](https://support.cloudflare.com/hc/en-us/articles/227342487). = Does the plugin work if I have Varnish enabled? = Yes, CloudFlare works with, and helps speed up your site even more, if you have Varnish enabled. = Why am I getting “Cloudflare plugin requires php5-curl to be installed” error? = Make sure that the php5-curl extension is installed on your system. == Screenshots == 1. Cloudflare Plugin == Changelog == = 3.0.2 - 2016-09-16 = *Fixed* * Disabled HTTP/2 Server Push which was leading to 520 and 502 errors for some websites. = 3.0.1 - 2016-09-16 = *Fixed* * Fixed HTTP/2 Server Push exceeding the header limit Cloudflare has which caused 520 errors. * Fixed warning message in HTTP/2 Server Push. = 3.0.0 - 2016-09-15 = *Added* * Added one-click application oft WordPress specific recommended settings * Added ability to purge the CloudFlare cache * Integrated with WordPress cache management to automatically clear the CloudFlare cache on updating site appearance * Added ability to change CloudFlare settings (Always Online mode, I’m Under Attack, Image Optimization, Security Level, Web Application Firewall) * Added Analytics showing Cached Requests, bandwidth used, unique visitors, threats blocked * Added Header rewrite to prevent a redirect loop when Cloudflare’s Universal SSL is enabled * Added HTTP/2 Server Push support * Added Support for PHP 5.3+ *Removed* * Removed HTTPS Protocol Rewriting * Removed submission of spam comments * Removed ability to toggle Development Mode On/Off *Changed* * Updated user interface * Started to support WordPress 3.4+ instead of 2.8+ because we depend on the [WordPress Options API](https://codex.wordpress.org/Options_API)