Guides
Architecture
How the hybrid SaaS model keeps destructive operations secure and scalable.
Hybrid model
The WordPress plugin is the interface. Destructive SQL for PRO features is assembled and cryptographically signed (RSA-2048) on the central server. The plugin verifies the signature with an embedded public key before executing anything.
Without a valid license, signed commands are not issued — PRO features cannot run.
Batch processing
Deletes run in blocks of 500 rows with 200ms pauses between batches. This prevents 504 gateway timeouts on stores with millions of rows.
HPOS detection
Order-related operations check WooCommerce's order storage mode at runtime and use the correct tables (legacy wp_posts or HPOS custom tables).
Privacy
The central server receives metadata needed for licensing and command signing — table names, row counts, operation types. It does not receive order contents, customer PII, or product data.
WordPress security
- All AJAX actions require a valid nonce
- Only users with
manage_optionscan run cleanups - All inputs are sanitized before use