I would like to password protect my entire WordPress site (ip validated), except for one page

If you are just wanting a simple “login” you could use htpasswd and htaccess. WordPress sites already have the htaccess in the main directory.

Add an .htpasswd file at the same level as your root HTML folder. Example:

. 
├── public_html
|   └── wordpress
|      └── .htaccess
└── .htpasswd

Use a tool like htpasswd generator to generate a username/password pair. Then add this to your .htpasswd file.

Find the path $_SERVER["DOCUMENT_ROOT"] may provide some insight for you.

Edit WP’s .htaccess. After the #END WORDPRESS# add 

AuthType Basic
AuthName "Restricted Area"
AuthUserFile /var/www/mysite/.htpasswd
require valid-user

If you need more detailed instructions see this post.

However, this does not address your request about IP Validation. This question on StackOverflow may address it.

You would update the .htaccess file to read

AuthUserFile /var/www/mysite/.htpasswd
AuthName "Please Log In"
AuthType Basic
require valid-user
Order allow,deny
Allow from xxx.xxx.xxx.xxx
satisfy any

Related Posts:

  1. wordpress redirect after password reset
  2. Password protecting a page
  3. Replacing the WordPress password validation
  4. How to save Admin FTP password
  5. How can I change the default wordpress password hashing system to something custom?
  6. Conditional to test if post has password protection enabled
  7. Bypass password protected posts via GET variable
  8. Check the password of a user
  9. Create a USERNAME and PASSWORD protected WordPress page
  10. Why do generated passwords start/end with spaces?
  11. Duplicate hash method for password in .NET
  12. Hide password protected posts
  13. Safe to store SMTP password in wp-config.php?
  14. Access code/password only restricts page access, no user registration..?
  15. PasswordHash not found in namespace
  16. Force all users in MU to change their passwords
  17. Reseting admin password through PHPMyadmin fails
  18. Forgot password not working
  19. Password reset message – change the network_home_url( ‘/’ )
  20. Redirect a password protected page?
  21. WordPress: force users to change password on first login
  22. Can’t login to wordpress despite changing password to something known directly in MySQL or using “Password Reset by Email” feature
  23. Lost password link redirects to my-account/lost-password/,how to fix it back to default lost password
  24. Password protect custom template
  25. Custom password generator for users
  26. Where is the reset password key stored/generated?
  27. Password protecting template, secured content not showing if even password is right
  28. How validate usernames/passwords against WP’s database?
  29. WordPress reset password returns invalid key
  30. Add error message on password protected pages
  31. User password field is empty
  32. Password reset bug? – “Sorry, that key does not appear to be valid”
  33. How to set minimum length and error message for password recovery?
  34. Why is resetting the WordPress Users password not working?
  35. Get plain password on register
  36. post_password_required() not recognizing cookie set with correct password
  37. How to validate custom field on lost password form before the user id field?
  38. How Authentication in wordpress works? wp_authenticate_username_password()
  39. Password protect the site (without htaccess or membership)
  40. Password protection for page template
  41. how to remotely check a username / password from within a plugin
  42. Password changed [duplicate]
  43. Enable Update button only when password is shown strong
  44. Adding parameters to password reset key
  45. Custom password form allows unlock two posts with the same password
  46. Generating the password reset link automatically
  47. password recovery key is invalid on custom reset
  48. Password Protected Post is invisible until you login
  49. Send password to user instead of reset password link
  50. Protect Passwords in wp_users with stronger protection than MD5
  51. Custom form for password protected page
  52. How secure is a wp-config file?
  53. How to Remove or Deactivate “Application Passwords” in WordPress
  54. How to change “Reset Password” text on submit button
  55. How to recover password from a user
  56. resend user login & password with custom button
  57. How to show my wordpress admin username & password?
  58. Why does hashing a password result in different hashes, each time?
  59. Can’t alter $lostpassword_url
  60. current user’s password check
  61. lostpassword_redirect filter is not used
  62. How to read third party cookie to access password protected pages
  63. Ask logged in user to re-enter password to access page “x”
  64. Password Protect or IP to access under development WordPress site otherwise shown a placeholder page
  65. Password protected sites
  66. Password-protected page redirecting to frontpage when I enter the password
  67. 2 accounts under same email preventing me from loging in
  68. How would I create a Password Protected Page with Content on it?
  69. Site only for users authenticated by different PHP application
  70. WooCommerce Lost Password reset goes to 404
  71. I need help with wp_lostpassword, wp_register and wp_login_form
  72. Automatically change the page password for more than one page
  73. I can’t recover my password
  74. Frontend custom forgot password page
  75. Cannot get function.php code to work to remove Lost Password link on live site
  76. Problem with login / reset password links in users emails
  77. Password Protect content() on homepage
  78. Function called by password_reset action passed only 1 argument instead of 2 in PHP 7.2.11
  79. How to set password from frontend if have activation key and user login in url in wordpress?
  80. Allow users from my ASP.Net MVC site to access my private WordPress site
  81. How do I display the password field on the WordPress user registration screen?
  82. WordPress Protected Page Redirects to PDF
  83. Bypass a WordPress Password Protected Post or Page via a URL
  84. Custom page password recovery
  85. Can I use core passworded page/post functions outside of wp-login.php?
  86. Is it possible to display newly generated password after wp_generate_password()?
  87. Password protect wp-login.php
  88. forgot password
  89. Revise my keyword but still cannot login
  90. mysql update user’s password and activation key
  91. Is it possible to have users register without having a password?
  92. Password Protection for posts and pages [duplicate]
  93. Reset Password – change from name and email address. It stucks at admin. Want to change it to info
  94. WordPress reset password button not working
  95. check if post is set to “password protected”
  96. Override the default password length when creating or updating a user profile
  97. ‘random_password’ filters not taking effect
  98. FTP Password (not private key-value pair) for EC2 Instance
  99. How to Disable Pre-population of Password on Password Reset
  100. My WordPress password for admin account is changing automatically