Are you frustrated because the “Add New” button is missing from your WordPress plugin page? Were you unable to upload that essential plugin you needed? You’re not alone! This is a common issue often linked to a specific WordPress constant: define( 'DISALLOW_FILE_MODS', false );. Understanding and correctly configuring this line in your wp-config.php file is often the key to unlocking your plugin upload capabilities.
The Culprit Behind the Missing “Add New” Button: DISALLOW_FILE_MODS
WordPress employs a security measure called DISALLOW_FILE_MODS. When this constant is defined as true in your wp-config.php file, it effectively locks down the ability to modify your WordPress installation directly through the admin dashboard. This includes:
- Preventing the installation of new plugins.
- Disabling theme uploads and installations.
- Removing the ability to edit plugin and theme files via the built-in editor.
- Hiding the automatic update options for themes and plugins.
While this offers a layer of protection against unauthorized code changes and accidental edits, it can be perplexing when you legitimately need to manage your plugins and themes.
Why Would DISALLOW_FILE_MODS Be Set to True?
There are several reasons why you might find DISALLOW_FILE_MODS set to true:
- Security Hardening: Website developers or administrators might intentionally set it to enhance security, especially on production websites.
- Managed WordPress Hosting: Some managed WordPress hosting providers might enable this constant by default as part of their security and maintenance protocols.
- Accidental Configuration: It’s also possible that this constant was inadvertently set to
trueduring a previous configuration or migration.
The Solution: Setting DISALLOW_FILE_MODS to False
If you’re facing the missing plugin upload option and suspect DISALLOW_FILE_MODS is the cause, the solution is to set its value to false in your wp-config.php file. Here’s a step-by-step guide:
-
Access Your Website Files: You’ll need to connect to your website’s server using either an FTP (File Transfer Protocol) client (like FileZilla, Cyberduck) or the File Manager provided by your web hosting control panel (e.g., cPanel, Plesk).
-
Locate
wp-config.php: Once connected, navigate to the root directory of your WordPress installation. This is usually where you’ll find folders likewp-content,wp-admin, andwp-includes. Thewp-config.phpfile will be located in this root directory. -
Create a Backup (Important!): Before making any changes, it’s crucial to create a backup of your
wp-config.phpfile. This will allow you to restore the original file if anything goes wrong during the editing process. Simply download a copy of the file to your local computer. -
Edit
wp-config.php: Right-click on thewp-config.phpfile and select “Edit” (or a similar option depending on your FTP client or File Manager). The file will open in a text editor. -
Find the
DISALLOW_FILE_MODSConstant: Look for a line that says:define( 'DISALLOW_FILE_MODS', true ); -
Change the Value to
false: If you find this line, simply changetruetofalse:define( 'DISALLOW_FILE_MODS', false ); -
If the Constant Doesn’t Exist: If you don’t find the
DISALLOW_FILE_MODSconstant, you can add it. It’s generally recommended to add it before the line that says:/* That's all, stop editing! Happy publishing. */So, add the following line:define( 'DISALLOW_FILE_MODS', false ); -
Save the Changes: Save the modified
wp-config.phpfile. If you’re using an FTP client, it will usually prompt you to upload the changed file back to the server. Confirm the upload. -
Check Your WordPress Dashboard: Now, log back into your WordPress admin dashboard and navigate to the “Plugins” section. You should now see the “Add New” button, allowing you to upload and install plugins.
Important Considerations:
- Security Implications: While setting
DISALLOW_FILE_MODStofalseis necessary for plugin and theme management, remember that it slightly reduces the security of your WordPress installation by allowing direct file modifications through the dashboard. Ensure your website and user accounts have strong passwords and keep your WordPress core, themes, and plugins up to date. - Managed Hosting Environments: If you’re on managed WordPress hosting, be aware that some providers might automatically revert changes to
wp-config.phpor have specific reasons for settingDISALLOW_FILE_MODStotrue. Consult your hosting provider’s documentation or support if you encounter persistent issues.
The DISALLOW_FILE_MODS constant is a powerful tool in WordPress for controlling file modifications. While it enhances security, it can also lead to the frustrating issue of a missing plugin upload option. By understanding its purpose and knowing how to correctly set it to false in your wp-config.php file, you can regain control over your plugin and theme management and keep your WordPress website running smoothly. Remember to always back up your files before making any changes!
Parivesh Singh Gupta is the founder of TweeLabs, with over 12+ years of experience in digital marketing, SEO content writing, web development, and eCommerce solutions. He specializes in WordPress development, Meta & Google Ads, Shopify & WooCommerce, Canva-based design, and AI automation.
Parivesh helps startups and growing businesses achieve online success through high-converting strategies, powerful ad campaigns, and SEO-rich content that ranks.
For collaborations or consulting:
Email: parivesh@tweelabs.com
Website: www.tweelabs.com
Follow on LinkedIn: Parivesh Singh Gupta