VESSOT Secure Portable Data provides a secure way to store and retrieve encrypted data via the VESSOT API. All encryption happens client-side before data is transmitted, ensuring true zero-knowledge data storage.<\/p>\n\n
You need to create an account at https:\/\/vessot.tech\/ before you can use this plugin.<\/p>\n\n
Read about the simple account creation steps at https:\/\/vessot.tech\/how-it-works.<\/p>\n\n
Technical implementation is quick and easy - see the setup guide at https:\/\/vessot.tech\/setup.<\/p>\n\n
The plugin requires two environment variables to be set at the server level. This approach ensures credentials never touch your filesystem or version control.<\/p>\n\n
Your VESSOT API integration token for authentication.<\/p>\n\n
A 32-byte encryption key for client-side encryption.<\/p>\n\n
You can generate a secure encryption key using the plugin's helper function. Run this once in your WordPress environment:<\/p>\n\n
`php\n<\/code><\/pre>\n\n$vessotData = vessot_secure_portable_data();\n$encryptionKey = $vessotData->cryptKeyGenerate(); \/\/ Copy this value to use as VESSOT_CRYPT_KEY\n `<\/p>\n\n
Setting Environment Variables<\/h3>\n\n
Choose the method that matches your server setup:<\/p>\n\n
Apache<\/h4>\n\n
Add to your virtual host configuration or .htaccess<\/code>:<\/p>\n\n`apache\n<\/code><\/pre>\n\nSetEnv VESSOT_INT_TOKEN \"your-integration-token-here\"\nSetEnv VESSOT_CRYPT_KEY \"your-encryption-key-here\"\n `<\/p>\n\n
Nginx with PHP-FPM<\/h4>\n\n
Add to your PHP-FPM pool configuration (usually \/etc\/php\/8.2\/fpm\/pool.d\/www.conf<\/code>):<\/p>\n\n`ini\n<\/code><\/pre>\n\nenv[VESSOT_INT_TOKEN] = your-integration-token-here\nenv[VESSOT_CRYPT_KEY] = your-encryption-key-here\n `<\/p>\n\n
Then add to your Nginx server block:<\/p>\n\n
`nginx\n<\/code><\/pre>\n\nlocation ~ .php$ {\n fastcgi_param VESSOT_INT_TOKEN $VESSOT_INT_TOKEN;\n fastcgi_param VESSOT_CRYPT_KEY $VESSOT_CRYPT_KEY;\n # ... other fastcgi_param directives\n}\n `<\/p>\n\n
Docker<\/h4>\n\n
Add to your docker-compose.yml<\/code>:<\/p>\n\n`yaml\n<\/code><\/pre>\n\nservices:\n wordpress:\n environment:\n - VESSOT_INT_TOKEN=your-integration-token-here\n - VESSOT_CRYPT_KEY=your-encryption-key-here\n `<\/p>\n\n
Or use a .env<\/code> file (excluded from version control):<\/p>\n\n`bash\n<\/code><\/pre>\n\nVESSOT_INT_TOKEN=your-integration-token-here\nVESSOT_CRYPT_KEY=your-encryption-key-here\n `<\/p>\n\n
Shared Hosting \/ cPanel<\/h4>\n\n
Many hosting providers offer environment variable management through their control panel. Check your hosting provider's documentation for \"Environment Variables\" or \"PHP Configuration\".<\/p>\n\n
Local Development<\/h4>\n\n
For local development, you can use:<\/p>\n\n
Option 1: System environment variables<\/strong>\n bash\nexport VESSOT_INT_TOKEN=\"your-dev-token\"\nexport VESSOT_CRYPT_KEY=\"your-dev-key\"<\/code><\/p>\n\nOption 2: PHP-FPM configuration<\/strong> (see Nginx section above)<\/p>\n\nSecurity Best Practices<\/h3>\n\n\n- Use different tokens and keys for each environment (development, staging, production)<\/li>\n
- Never commit environment variables to version control<\/li>\n
- Limit access to server configuration files<\/li>\n<\/ul>\n\n
Usage<\/h3>\n\nBasic Example<\/h3>\n\n`php\n<\/code><\/pre>\n\n\/\/ Get an instance\n$vessotData = vessot_secure_portable_data();<\/p>\n\n
\/\/ Store encrypted data\n$result = $vessotData->store('your_unique_storage_key', [\n 'theme' => 'dark',\n 'notifications' => true,\n 'email' => 'user@example.com'\n]);<\/p>\n\n
\/\/ Retrieve and decrypt data\n$result = $vessotData->show('your_unique_storage_key');\nif ($result['success']) {\n $settings = $result['value'];\n echo $settings['theme']; \/\/ 'dark'\n}<\/p>\n\n
\/\/ Update data\n$result = $vessotData->update('your_unique_storage_key', [\n 'theme' => 'light',\n 'notifications' => false,\n 'email' => 'user@example.com'\n]);<\/p>\n\n
\/\/ Partial update (update specific attributes)\n$result = $vessotData->update('your_unique_storage_key', null, [\n 'theme' => 'light'\n]);<\/p>\n\n
\/\/ Retrieve specific attribute\n$result = $vessotData->show('your_unique_storage_key', 'theme');<\/p>\n\n
\/\/ Delete data\n$result = $vessotData->destroy('your_unique_storage_key');\n `<\/p>\n\n
Using in WordPress Hooks<\/h3>\n\n`php\n<\/code><\/pre>\n\n\/\/ Store user preferences on profile update\nadd_action('profile_update', function($user_id) {\n $vessotData = vessot_secure_portable_data();\n $preferences = get_user_meta($user_id, 'preferences', true);<\/p>\n\n
$result = $vessotData->store(\"user_preferences_{$user_id}\", $preferences);\n\nif (!$result['success']) {\n error_log('Failed to store preferences: ' . $result['error']);\n}\n<\/code><\/pre>\n\n});<\/p>\n\n
\/\/ Retrieve preferences on login\nadd_action('wp_login', function($user_login, $user) {\n $vessotData = vessot_secure_portable_data();\n $result = $vessotData->show(\"user_preferences_{$user->ID}\");<\/p>\n\n
if ($result['success']) {\n update_user_meta($user->ID, 'preferences', $result['value']);\n}\n<\/code><\/pre>\n\n}, 10, 2);\n `<\/p>\n\n
API Reference<\/h3>\n\nstore($key, $value)<\/h3>\n\n
Store encrypted data with a unique key.<\/p>\n\n
Parameters:<\/strong>\n- $key<\/code> (string): Unique identifier for the data\n- $value<\/code> (mixed): Data to encrypt and store (can be string, or data array)<\/p>\n\nReturns:<\/strong> Array with success<\/code>, error<\/code>, code<\/code>, and value<\/code> keys<\/p>\n\nshow($key, $attribute = null)<\/h3>\n\n
Retrieve and decrypt stored data.<\/p>\n\n
Parameters:<\/strong>\n- $key<\/code> (string): Unique identifier for the data\n- $attribute<\/code> (string|null): Optional specific attribute to retrieve<\/p>\n\nReturns:<\/strong> Array with success<\/code>, error<\/code>, code<\/code>, and value<\/code> keys<\/p>\n\nupdate($key, $value = null, $attributes = null)<\/h3>\n\n
Update existing encrypted data.<\/p>\n\n
Parameters:<\/strong>\n- $key<\/code> (string): Unique identifier for the data\n- $value<\/code> (mixed): New value (for full update)\n- $attributes<\/code> (array|null): Specific attributes to update (for partial update)<\/p>\n\nReturns:<\/strong> Array with success<\/code>, error<\/code>, code<\/code>, and value<\/code> keys<\/p>\n\ndestroy($key, $attributes = null)<\/h3>\n\n
Delete stored data.<\/p>\n\n
Parameters:<\/strong>\n- $key<\/code> (string): Unique identifier for the data\n- $attributes<\/code> (mixed|null): Optional specific attributes to delete<\/p>\n\nReturns:<\/strong> Array with success<\/code>, error<\/code>, code<\/code>, and value<\/code> keys<\/p>\n\ncryptKeyGenerate()<\/h3>\n\n
Generate a new encryption key. Returns empty string if key already exists in environment.<\/p>\n\n
Returns:<\/strong> Encryption key or empty string<\/p>\n\nExternal Services<\/h3>\n\n
This plugin connects to the VESSOT API (https:\/\/vessot.tech\/api) to store and retrieve encrypted data.<\/p>\n\n
What is VESSOT?<\/h3>\n\n
VESSOT is a third-party encrypted data storage service that provides zero-knowledge data storage. The service is provided by VESSOT.<\/p>\n\n
What data is sent?<\/h3>\n\n
The plugin sends the following data to the VESSOT API:<\/p>\n\n
\n- Encrypted data values<\/strong>: All data is encrypted client-side using AES-256-GCM encryption before transmission. The VESSOT API only receives encrypted ciphertext and never has access to your encryption keys or unencrypted data.<\/li>\n
- Data keys<\/strong>: Unique identifiers you specify for each piece of data (e.g., \"user_settings\", \"preferences\").<\/li>\n
- Authentication token<\/strong>: Your VESSOT_INT_TOKEN for API authentication.<\/li>\n<\/ul>\n\n
When is data sent?<\/h3>\n\n
Data is transmitted to the VESSOT API when you use any of these functions:<\/p>\n\n
\nvessot_secure_portable_data()->store()<\/code> - Sends encrypted data to be stored<\/li>\nvessot_secure_portable_data()->show()<\/code> - Retrieves encrypted data<\/li>\nvessot_secure_portable_data()->update()<\/code> - Sends encrypted data updates<\/li>\nvessot_secure_portable_data()->destroy()<\/code> - Requests data deletion<\/li>\n<\/ul>\n\nService Information<\/h3>\n\n\n- Service Provider<\/strong>: VESSOT<\/li>\n
- Service Website<\/strong>: https:\/\/vessot.tech<\/li>\n
- Terms of Service<\/strong>: https:\/\/vessot.tech\/terms-conditions<\/li>\n
- Privacy Policy<\/strong>: https:\/\/vessot.tech\/privacy-policy<\/li>\n
- API Documentation<\/strong>: https:\/\/vessot.tech\/setup<\/li>\n
- WordPress Setup Guide<\/strong>: https:\/\/vessot.tech\/wordpress<\/li>\n<\/ul>\n\n
Account Requirement<\/h3>\n\n
You must create a VESSOT account at https:\/\/vessot.tech before using this plugin. See https:\/\/vessot.tech\/how-it-works for account creation steps and https:\/\/vessot.tech\/wordpress for WordPress-specific setup instructions.<\/p>\n\n
Security Notes<\/h3>\n\n\n- All encryption happens client-side before transmission<\/li>\n
- The VESSOT API never has access to unencrypted data or encryption keys<\/li>\n
- Environment variables are set at the server level and never touch the filesystem<\/li>\n
- Each environment should have its own unique tokens and keys<\/li>\n
- Server configuration changes require appropriate restart (Apache reload, PHP-FPM restart, etc.)<\/li>\n<\/ul>\n\n
Support<\/h3>\n\n
For issues and support, visit: https:\/\/vessot.tech<\/p>\n\n
License<\/h3>\n\n
This plugin is licensed under the GNU General Public License v2 or later.<\/p>\n\n
This program is free software; you can redistribute it and\/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.<\/p>\n\n
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.<\/p>\n\n
You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.<\/p>\n\n
Author<\/h3>\n\n
VESSOT - https:\/\/vessot.tech<\/p>\n\n\n
Method 1: Install via WordPress Admin (Recommended)<\/h3>\n\n\n- Download the plugin as a ZIP file<\/li>\n
- In your WordPress admin, go to Plugins > Add New > Upload Plugin<\/strong><\/li>\n
- Click Choose File<\/strong> and select the downloaded ZIP file<\/li>\n
- Click Install Now<\/strong><\/li>\n
- After installation, click Activate Plugin<\/strong><\/li>\n
- Configure your environment variables (see Configuration section)<\/li>\n<\/ol>\n\n
Method 2: Manual Installation<\/h3>\n\n\n- Download and extract the plugin ZIP file<\/li>\n
- Upload the entire plugin folder to
\/wp-content\/plugins\/<\/code><\/li>\n- Go to Plugins<\/strong> in your WordPress admin<\/li>\n
- Find \"VESSOT Secure Portable Data\" and click Activate<\/strong><\/li>\n
- Configure your environment variables (see Configuration section)<\/li>\n<\/ol>","raw_excerpt":"VESSOT Secure Portable Data - WordPress Plugin Zero visibility data storage with client-side encryption via the VESSOT platform.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/259745","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=259745"}],"author":[{"embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/jonvessot"}],"wp:attachment":[{"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=259745"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=259745"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=259745"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=259745"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=259745"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/bs.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=259745"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}