rllngr/kirby-moniter

Kirby CMS plugin — exposes a protected status endpoint for the Moniter dashboard

Maintainers

Package info

github.com/RLLNGR/kirby-moniter

Type:kirby-plugin

pkg:composer/rllngr/kirby-moniter

Statistics

Installs: 28

Dependents: 0

Suggesters: 0

Stars: 1

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

v1.1.3 2026-03-26 12:45 UTC

Requires

MIT 99a252613b9f8665f6ca78e6dc9e7f34b71b7036

This package is auto-updated.

Last update: 2026-03-29 13:40:22 UTC

README

A lightweight Kirby CMS plugin that exposes a secured status endpoint for the Moniter dashboard — tracks version and uptime of client websites.

Installation

Via Composer (recommended)

composer require rllngr/kirby-moniter

Manual

Copy the folder into site/plugins/moniter/.

Configuration

Add the API key to site/config/config.php:

return [
    'moniter.key' => 'your-key-generated-by-moniter',
    // ...
];

The key is automatically generated by the Moniter dashboard when adding a client.

Endpoint

GET /moniter/status
Header: X-Moniter-Key: <key>

Response

{
  "kirby": "5.3.2",
  "plugins": {
    "author/plugin": "1.2.0"
  }
}

Error (invalid key)

{ "error": "Unauthorized" }

HTTP 401

Security

  • Key comparison uses hash_equals() (timing attack protection)
  • Without a valid X-Moniter-Key header, the endpoint always returns 401
  • Never commit the key in the client site repository — use an environment variable if needed

Requirements

  • Kirby 4.x or 5.x
  • PHP 8.0+

License

MIT — rollinger.design