Logout button in menu without “wp” in links

You can use wp_logout_url() function for logout link. It will automatically add nonce to the url.

Try this code:

add_action('template_redirect', function() {
    if (empty($_SERVER['REQUEST_URI'])) return;

    $uri = $_SERVER['REQUEST_URI'];

    if (preg_match('#^/log-out/?$#', $uri, $matches) === 1) {
        $logout_url = str_replace('&', '&', wp_logout_url());
        wp_safe_redirect($logout_url);
        die;
    }
});

If you do not want to use wp_logout_url(), then try to create nonce with ‘log-out’ string as this wp_create_nonce('log-out')

Updated code:

add_action('template_redirect', function() {
    if (empty($_SERVER['REQUEST_URI'])) return;

    $uri = $_SERVER['REQUEST_URI'];

    if (preg_match('#^/log-out/?$#', $uri, $matches) === 1) {
        wp_redirect(home_url(
            '/wp-login.php?action=logout&redirect_to=%2F&_wpnonce=".wp_create_nonce("log-out')
        ), 302);
        exit;
    }
});

Related Posts:

  1. How does nonce verification work?
  2. How to expire a nonce?
  3. Fatal error: Call to undefined function wp_create_nonce()
  4. How to add/retrieve the post trash link?
  5. Using nonce external of WP Admin
  6. Nonce best practices: hidden input vs. wp_localize_script?
  7. WordPress failure when logging out
  8. “The link you followed has expired” when previewing a post
  9. Ajax function returns -1
  10. wp_verify_nonce keeps failing
  11. Handling nonce generation in AJAX registration process
  12. increase nonce lifespan
  13. wp_verify_nonce() via REST always returns false
  14. Nonce failing in IE
  15. my theme breaks WP export
  16. Why am I getting a 403 from check_admin_referer()?
  17. x-wp-nonce across domains
  18. wp_create_nonce doesn’t verify when using WP_List_Table
  19. Handling expired nonces
  20. What is really “wp_nonce_field” and how does it work? [duplicate]
  21. Cannot verify nonce
  22. wp_verify_nonce return false despite correct parameter passed
  23. WordPress JSON API nonces and Vue development server
  24. Verify a nonce in Form submission
  25. phpcs error in WordPress
  26. Stop WordPress nonces expiring
  27. Several nonces?
  28. Nonce for Trashing Item
  29. Nonce keeps failing
  30. Public posts – preventing duplicate form submissions
  31. How to obtain “wp_rest” nonce for WP Statistics plugin manually?
  32. WordPress “nonce” message
  33. Log out without confirmation request (nonce)
  34. CSP nonces with Cloudflare Workers
  35. Change button link to add nonce
  36. Why are nonces working in Firefox but not in Chrome?
  37. Unable to update plugins or log out
  38. wp_verfy_nonce keeps giving false
  39. Nonce – reissue with ajax poll
  40. wp_nonce_url generating invalid links
  41. How to insert wp_nonce field within echoed string
  42. Nonce check causing issues when creating new post
  43. Weird nonce validation problem
  44. Logout button php
  45. Nonces can be reused multiple times? Bug / Security issue?
  46. Using nonce in menu item
  47. Should nonce be sanitized?
  48. WordPress REST API call generates nonce twice on every call
  49. How to log out everywhere else, destroy all sessions “all other devices”?
  50. wp_logout Not Logging Me Out
  51. How to use wp-login.php page only for logout?
  52. Custom Meta Boxes – Nonce Issue – Move to trash issue
  53. Logout issue with new Domain on WP Multisite
  54. Properly applying nonce to a form using AJAX
  55. wp_logout() changes in WordPress 5.1.1
  56. WordPress password reset – why post rp_key?
  57. Nonces, AJAX, script variables & security in WordPress
  58. Why does WordPress Heartbeat login not refresh the nonces?
  59. When must I use and verify nonce?
  60. What SQL / WordPress queries would need a nonce?
  61. Is there any way to check for user login and send him to login?
  62. Force logout ALL users at a certain time
  63. Auto redirect after session expire, but only for one user
  64. Identical wp_rest nonce returned from rest_api
  65. WP nonce invalid
  66. How would I hook into `clear_auth_cookie` to return the user’s ID that’s currently being logged out?
  67. wp_create_nonce function doesn’t work inside a plugin?
  68. Nonce failing on form submission
  69. Draft preview and customize permission problems on multisite main site
  70. Why ajax doesn’t work on certain wordpress hooks and reload the page instead?
  71. Why ajax doesn’t work on certain wordpress hooks?
  72. WordPress Multisite logout conflict
  73. wp_nonce_field displaying twice
  74. Is it safe to use a global wp nonce per user instead of a nonce per action?
  75. Lock out all WordPress Administrators except two specific users
  76. Rest API: wp_verify_nonce() fails despite receiving correct nonce value
  77. Backbone with custom rest endpoints
  78. Restrict Access without Creating Users
  79. How to add a WordPress Nonce for this form to avoid CSRF
  80. login logout menu changes in wordpress [closed]
  81. Saving custom data via ajax with nonces
  82. WP_List_Table Inside Metabox With Bulk Actions Not Working on Submit
  83. How to hide “You are now logged out” message on WordPress login form?
  84. wp_verify_nonce not working on the mobile device
  85. How to make Logout Link consistently appear on all web pages?
  86. logging out with/without confirmation – single site, multisite
  87. Does it make sense to check a nonce on user log in?
  88. Automatically Log Out UserX when visiting WooCommerceStore
  89. Logout user if click on a custom page link
  90. Register rest field authentication with REST API
  91. WordPress session times out – but doesn’t log out?
  92. wp_logout_url($uri) having two redirect values
  93. wp_logout problem
  94. Conditional redirection with logout
  95. Logging back into WordPress after logging out and having issues with ‘loggedout=true’ in redirect URL
  96. Logging out gives 404 error
  97. Create nonce in frontend page to edit profile
  98. wp_logout logging everyone out instead of just the user that clicked the logout link!
  99. WordPress wp_localize_script nonce and ajax URL
  100. Logout redirect via page template without confirmation?
techhipbettruvabetnorabahisbahis forumutaraftarium24eduseduedueduseduseduseduedusedusedu