WP Config File Editor


Modify WordPress Memory, Cache, Upgrade, Post, Localization, Cron, Multi Sites, Database, Secure Keys, Debugging, Proxy and Cookies constants values allocated in wp-config.php file using web form or even through Raw Editor.
Preview generated wp-config file into Syntax Hightlights and Error detection PHP Code Editor, before writing to wp-config.php.
In additional to modifying Config File parameters using web form, its also possible to preview generated wp-config file before saving, review and makes updates before saving.
WCFE Plugin start to include few helpers tools related to wp-config.php file editing like Setup Multi Sites. Setup Multi Site Wizard feature
is newly added to make setup Multi Sites more fun by passing only 2 steps without any tecnhiqual works.

Additionally its possible to modify wide system parameters, Image Quality, Upload allowed mime types, Query Vars, HTTP Client, Post Editor and Kses module. More parameters will be added later!!!

This Plugin is prepared for localization through translate.wordpress.org

if you’ve any issue, please always use WordPress Support Forum as I always checking it

wp-config.php Editor Features

  • Modify wp-config.php file using web form
  • Raw wp-config.php file editor with syntax hightlights and error detections
  • Emergency wp-config.php backup restore.
  • Send Restore Link to User Email
  • Multi Sites Setup Wizard
  • Increase Memory size limits
  • Configure Multi sites
  • Configure Post
  • Configure localization/lanaguage
  • Configure WordPress security
  • Configure WordPress proxy
  • Configure WordPress Database access parameters
  • Configure WordPress Database repair
  • Configure WordPress updates
  • Configure Cron
  • Configure debugging
  • Configure Secure keys
  • Only super admins (Multi Sites Network admin OR Normal installation admins) can interact with all WCFE Plugin actions/pages
  • Validating the entered Database parameters by making database connection test
  • Filtering and validating input fields to avoid breaking wp-config.php file
  • View System Paths and Urls while changing config form values
  • Path look up for all Path fields
  • View constants list associated for each field
  • View help list for each field
  • Save config fields into Profile, delegate it when needed so it can be saved into wp-config.php
  • Renew all secure keys by single click
  • Renew cookie names constants by single click
  • Check system requirements
  • Turn ON/OFF write permissions for wp-config.php and .htaccess files
  • Delete emergency backup

In additional to edit wp-config.php file WCF Plugin start to allow of changing WordPress/System parameters.

System Parameters features

  • Configure WordPress HTTP client used to contact external servers (Plugins updates, Feeds, etc…)
  • Configure Kses module (Define HTML Tags and entities list for posts and comments)
  • Configure TinyMCE Editor (Change Size, Style, Enable/Disable Plugins, Hide/Show buttons)

wp-config.php suported fields:


  • WordPress Cache (WP_CACHE)
  • Memory Limit (WP_MEMORY_LIMIT)
  • Max Memory Limit (WP_MAX_MEMORY_LIMIT)


  • Disable Plugins and Themes Editors (DISALLOW_FILE_EDIT)
  • Force SSL Admin (FORCE_SSL_ADMIN)
  • Force SSL Login (FORCE_SSL_LOGIN)
  • Allow Unfiltered uploads (ALLOW_UNFILTERED_UPLOADS)
  • Block External Url (WP_HTTP_BLOCK_EXTERNAL)
  • Manage Accessible Hosts (WP_ACCESSIBLE_HOSTS)


  • Disable Automatic Updates (AUTOMATIC_UPDATER_DISABLED)
  • Disable Core Updates (WP_AUTO_UPDATE_CORE)
  • Disable Plugins and Themes Install and Updates (DISALLOW_FILE_MODS)
  • Updates FS Method (FS_METHOD)
  • Updates FTP Content Path (FTP_CONTENT_DIR)
  • Updates FTP Plugins Path (FTP_PLUGIN_DIR)
  • Updates FTP Public Key (FTP_PUBKEY)
  • Updates FTP Private Key (FTP_PRIKEY)
  • Updates FTP User (FTP_USER)
  • Updates FTP Password (FTP_PASS)
  • Updates FTP Host (FTP_HOST)
  • Updates FTP Force SSL (FTP_SSL)


  • Post Auto save interval (AUTOSAVE_INTERVAL)
  • Empty Trash Days (EMPTY_TRASH_DAYS)
  • Disable Post Revisions and Revisions Max Count (WP_POST_REVISIONS)


  • WordPress Language (WPLANG)
  • WordPress Language Directory (WPLANG_DIR)


  • Disable Cron (DISABLE_WP_CRON)
  • Alternate Cron (ALTERNATE_WP_CRON)
  • Cron Lock Timeout (WP_CRON_LOCK_TIMEOUT)

Multi Sites

  • Confiure Multi Site (WP_ALLOW_MULTISITE)
  • Enable Multi Site (MULTISITE)
  • Sub Domain / Folder installs (SUBDOMAIN_INSTALL)
  • Domain Current Site (DOMAIN_CURRENT_SITE)
  • Primary Network Id (PRIMARY_NETWORK_ID)


  • Database Name (DB_NAME)
  • Database Host (DB_HOST)
  • Database User (DB_USER)
  • Database Password (DB_PASSWORD)
  • Database Tables Prefix ($table_prefix)
  • Database Charset (DB_CHARSET)
  • Database Collation (DB_COLLATE)
  • Database Tables Auto Repair (WP_ALLOW_REPAIR)
  • Database Don’t upgrade Global Tables (DO_NOT_UPGRADE_GLOBAL_TABLES)

Secure Keys

  • Auth key (AUTH_KEY)
  • Secure Auth key (SECURE_AUTH_KEY)
  • Logged In Key (LOGGED_IN_KEY)
  • Nonce Key (NONCE_KEY)
  • Auth Salt (AUTH_SALT)
  • Secure Auth Salt (SECURE_AUTH_SALT)
  • Logged In Salt (LOGGED_IN_SALT)
  • Nonce Salt (NONCE_SALT)


  • Debug WordPress (WP_DEBUG)
  • Debug Display (WP_DEBUG_DISPLAY)
  • Debug Log (WP_DEBUG_LOG)
  • Script Debugging (SCRIPT_DEBUG)
  • Save Database Queries (SAVEQUERIES)
  • Concatenate JavaScript (CONCATENATE_SCRIPTS)


  • Host (WP_PROXY_HOST)
  • Port (WP_PROXY_PORT)
  • Password (WP_PROXY_PASSWORD)
  • Bypass list (WP_PROXY_BYPASS_HOSTS)


  • User (USER_COOKIE)
  • Password (PASS_COOKIE)
  • Authentication (AUTH_COOKIE)
  • Secure Authentication (SECURE_AUTH_COOKIE)
  • Logged In (LOGGED_IN_COOKIE)
  • Test (TEST_COOKIE)
  • Admin Path (ADMIN_COOKIE_PATH)
  • Plugins Path (PLUGINS_COOKIE_PATH)
  • Domain (COOKIE_DOMAIN)

System Parameters supported fields


  • Enable/Disable single query var
  • Persistly Cache Themes
  • Manage Upload Allowed Mime Types with associated extensions
  • Image Quality
  • Image Manipulation memory limit

HTTP Request

  • Request Time Out
  • Redirect Count
  • Header HTTP Version
  • User Agent
  • Reject Unsafe URLs
  • Stream
  • Blocking
  • Compress
  • Decompress
  • Response Size Limit
  • Allow Local host
  • Proxy Block Local Requests
  • Local SSL Verify
  • SSL Verify
  • Steam Transport
  • Curl Transport


  • Enable / Disable Auto Paragraph
  • Change Height
  • Show / Hide Media Button
  • HTML Textarea rows count
  • Editor Tab Index
  • Editor CSS style
  • Edit CSS class
  • Enable / Disable Teeny
  • Enable / Disable TinyMCE
  • Enable / Disable Quick Tags + Managing quick tags buttons
  • Enable / Disable Built=in Plugins
  • Show / Hide Second Row buttons


  • Enable / Disabled allowed protocols
  • Manage Post Allowed HTML tags and attributes
  • Manage Comment Allowed HTML tags and attributes
  • Manage Allowed HTML Entities


  • PHP >= 5.3I really did hard work to create secure restoring Emergency backup feature. I’m recommending to always close Warning Dialog by pressing
    Done button as it will delete the Emergency Backup when closing the Dialog. I don’t recomend closing it from Top X button until you know what you’re doing.

If you cannot fix wp-config.php through FTP so please try to open another window for testing the site while leaving wanring message opened.


  • Config File Maintenance parameters
  • Config File Security parameters
  • Config File Upgrade parameters
  • Config File Post parameters
  • Config File Localization parameters
  • Config File Cron parameters
  • Config File Multi Sites parameters
  • Config File Database parameters
  • Config File Secure Key parameters
  • Config File Developer parameters
  • Config File Proxy parameters
  • Config File Cookies parameters
  • Config File Syntax Highlights and error detection raw editor
  • Fields help text
  • Fields constants map
  • System paths and Urls info
  • Create new profile
  • Profiles list
  • System Check Tools ( BETA )
  • Multi Sites Setup Wizard ( BETA )
  • Multi Sites Setup Wizard config helper screen
  • Save Config File warning dialog
  • Restore backup page
  • Path lookup
  • System Parameters: Misc Tab
  • System Parameters: HTTP Request Tab
  • System Parameters: Editor Tab
  • System Parameters: Kses Tab


  1. Upload wp-config-file-editor.zip to the /wp-content/plugins/ directory
  2. Activate the plugin through the \’Plugins\’ menu in WordPress


What this Plugin is used for?

Use this Plugin to modify WordPress constants values. Those are reached only via FTP. It also allow controlling WordPress
behavior by changing System Parameters

Is updating wp-config file might break down my site?

Yes, if any invalid value added to the wp-config.php file. You will then need to connect to your server via FTP and revert back those changes.


March 15, 2021
Does'nt work at all. I installed the plugin and tried to enable debug mode option, but the plugin broke the site completely. Luckily I had a backup! CAUTION!
Read all 42 reviews

Contributors & Developers

“WP Config File Editor” is open source software. The following people have contributed to this plugin.




  • WordPress compatibility check


  • WordPress compatibility check
  • UI Tweaks


  • Maintain WordPress compatibility
  • Set Help Menu website links to cbspoint.com
  • Fix: Could not install Plugin from WordPress repository


  • Enhancement: Work in wide range of Server and PHP configurations
  • Enhancement: Allow Emrgency Backup to be alive for 3 days


  • Fix: PHP Strict Errors (PHP 7 Compatibility)


  • Enhance: Don’t automatically delete emergency backup
  • Add: Send Emergency Backup Restore Link to User Email


  • Fix: BLOG_ID_CURRENT_SITE break wp-config when its not set
  • Fix: SITE_ID_CURRENT_SITE break wp-config when its not set
  • Fix: PHP warnings in Network Multisite setup page as text domain localization extension is not loaded


  • Enhance: Prepare Plugin to be localized over translate.wordpress.org


  • WordPress 4.6 compatibility check


  • Fix: Multisite WordPress 4.0 – 4.3 incomatibility
  • Fix: Missing Database Collations
  • Fix: Missing Database Character Sets
  • Add: Raw Editor
  • Add: Localization support only English Pack Bundled


  • Fix: Forcing HTTP Requests System Parameters brokes WordPress Plugins Upgrade
  • Disable all System Parameters By default until enabled by site admin


  • Fix: System Parameters Form save “Access Denied” error
  • Fix: System Parameters Post and Comment Tags attributes disallowed while its added to the form


  • Fix: Multi Sites Wizard .htaccess code escaped by Magic Quote
  • Add: System Parameters Misc Tab
  • Add: System Parameters Editor Tab
  • Add: System Parameters Kses Tab
  • Add: System Parameters HTTP Stream, Blocking, Compress, Decompress, Response Size Limit and Allow local host fields


  • Fix: Could not connect to Database error when using Database port


  • UI use WordPress colors and feel
  • Add System Parameters Page (HTTP Request Parameters)
  • Rename Dashboard Menu title to WPCF Editor


  • Use smaller fonts for Config Form Tabs
  • Responsive User interface
  • Add System Paths Info screen (Discover WordPress instalations path, plugins path, etc…) while modifying config file
  • System Check Tools Screen [ BETA ] (Turn ON/OFF write permissions wp-config.php and .htaccess file, delete emregency backup )
  • Setup Multi site wizard screen [ BETA ] (Take you through two steps to setup multi site without any manual work)
  • Add Cookies Tab ( Cookie Hash, Cookie Auth, Cookie Secure Auth, Cookie Admin, etc… )
  • Add Proxy Tab (HOST, User, Password, Bypass list, port)
  • Add Multi Site Primary Network field
  • Fix wp-config file string values is not auto escaping backslash character
  • Add Path Look up (Path look when typing into any path specific input field)
  • Add Generate Cookies Hash (Generate Cookies names with single click)
  • Add Generage all secure keys (Renew all secure fields by single click)
  • Remove secure keys tab generate links and add one link to M<ain Menu
  • Aggregate all help menu items under Help Menu
  • Aggregate all tools items under Tools menu
  • Add Security TAB ( Allow Unfiltered Uploads ) and ( Disallow Unfiltered HTML ) field


  • Major security enhancments


  • Add profiles
  • Add Progress and Error messages status bar
  • Add Config Form Dashboard Main Menu
  • Fix: Secure Key Generator is not working


  • Add Upgrade Tab
  • Add Security Tab
  • Add Post Tab
  • Add Cron Tab
  • Add Developer Concatenate JavaScript Field
  • Add Database Automatic Repair and Stop Upgrading Global Tables fields


  • Use Tabs UI Control for categorizing fields
  • Create new fields categorization
  • Adding new fields for Multi Sites, Memory Limits, WordPress cache, Language and more fields for debugging
  • Apply new UI colors
  • Show warning message when saving wp-config.php
  • Create Emergency Backup every time Save Warning message dialog is opened
  • Ability to restore wp-config.php file to the state just before saving the file
  • Raw wp-config.php Editor with Syntax Highlighters and Syntax Error detections
  • Only admins can use it under normal installations while only Network admins can use it under Multi Sites installation
  • Complains when submitted Raw EMPTY config file or if it’s not start with PHP Tag


First release