WordPress Plugin · v1.2.0

Forms, rebuilt for
serious teams.

A full-screen React workstation, a block-native builder, encrypted submissions, and native checkout with Stripe, Braintree, PayPal, and Square — without the SaaS tax.

enterprise-forms / builder / contact-with-payment
Form Schema — Contact + Donation
Aafull_nameText
@emailEmail
messageTextarea
attachmentFile Upload
consentConsent
$donationPayment Checkout
🔒 ENCRYPTED PAYLOAD · PAYMENT VERIFIED
Submission via REST · enterprise-forms/v1
POST /entries/42
{
  “full_name”: “Alex Rivera”,
  “email”: “alex@example.com”,
  “message”: “Hello team.”,
  “consent”: true,
  “donation”: {
    “amount”: 2500,
    “currency”: “usd”,
    “payment_intent”: “pi_3OZ…”
  }
}

→ 201 Created  // entry encrypted + stored
Built On
WordPress 6.5+
PHP 8.2+
React Admin Workstation
Interactivity API Frontend
Block Editor Native
Stripe · Braintree · PayPal · Square Checkout
GPLv2 Licensed
17
Field Blocks
12
REST Endpoints
AES
Encrypted Entries
0
SaaS Lock-in

Every form primitive,
fully native to WP.

Built for teams that want first-class WordPress primitives on the backend and a lean, framework-free runtime on the frontend.

Full-Screen Admin Workstation

A dedicated React app replaces cramped metaboxes — dashboard, builder, entries, and settings in one focused workspace.

Block-Based Form Builder

Each field is a real block. Compose, drag, and configure forms with the same primitives WordPress already speaks.

$

Native Payment Checkout

A first-class Payment Checkout block with Stripe, Braintree, PayPal, and Square — every gateway verified server-side before the entry is stored.

Interactivity API Renderer

Frontend rendering through the enterprise-forms/renderer dynamic block — no React on your visitors’ devices.

🔒

Encrypted Entry Storage

Submission payloads are encrypted before they hit the custom wp_ep_entries table — never plain text at rest.

Native File Uploads

File fields plug into the WordPress media library — and optionally direct-to-S3, R2, or GCS for large files.

Per-Form Notifications

Configure recipients per form with a safe fallback to the site admin email, plus visibility into transport status.

Themeable Frontend

Ships with chameleon and itsm themes — design tokens are injected so forms inherit your brand.

{ }

Schema-First Forms

Every form is a structured schema stored in ep_form_schema post meta — portable, inspectable, deployable.

Per-Form Spam Prevention

Tune the honeypot trap, rate-limit count and window, and duplicate-lock timing per form — backed by nonce and submission-token replay protection.

Data Retention Controls

A scheduled policy on the ep_forms_run_retention_policy cron event anonymizes or deletes stored entries after a configured age.

Outbound Webhooks

Disabled-by-default submission webhooks queue after success, with sanitized endpoint URLs and an encrypted signing secret for payload authentication.

17 field blocks.
Zero plugin sprawl.

From plain text inputs to multi-gateway payment checkout, every field type ships in the box and renders through a single, schema-driven runtime.

  • Composable blocks — every field is a real Gutenberg block, not a custom canvas
  • Validation built-in — server-side validation backed by EP_Validator
  • Auto-save schemas — the workstation persists changes through the REST API as you build
  • Logic ready — conditional logic primitives drive show/hide and required behavior
  • Custom post type — forms live as ep_form with REST support
Block Inserter · Enterprise Forms
Field Blocks
Text
Email
Textarea
Phone
Number
Date
URL
Select
Radio
Checkbox
Consent
Hidden
Checkbox Group
Rating
File Upload
Payment Checkout
Submit

Four gateways,
server-verified.

A hardened payment path built on an adapter boundary — Stripe, Braintree, PayPal, and Square share one submission flow, so each gateway plugs in without rewriting submissions.

  • The browser never sends the amount. The server calculates payable totals from the saved schema.
  • Payment verified before storage. Payment-required submissions are rejected unless the gateway confirms success.
  • Adapter boundary. EP_Payment_Gateway contract resolved via factory.
  • Encrypted credentials. Gateway secrets live in WP options, encrypted by the plugin crypto service.
  • Audit-ready payload. Gateway, transaction ID, amount, currency, and receipt URL persist with the entry.
Settings · Payments
Stripe — PaymentIntents
ACTIVE
Braintree — Drop-in
ACTIVE
PayPal — Orders
ACTIVE
Square — Web Payments
ACTIVE
// every gateway prepares browser checkout, captures or verifies
// server-side, and returns a normalized payment record before storage.

Entries you can
actually defend.

Encrypted payloads, a dedicated entries table, native media handling, and S3-compatible direct uploads — wired up with the right primitives.

  • Dedicated wp_ep_entries table — no postmeta soup
  • Submission payloads encrypted at rest
  • Admin-only access to entry review screens
  • S3, R2, and GCS direct uploads for file fields
Storage Surfaces
ENCRYPTED

Entries Table

Custom wp_ep_entries table. Payloads encrypted via crypto service.

NATIVE

WP Media Library

File uploads stored as attachments via the standard media workflow.

S3-COMPAT

Direct Object Storage

AWS S3, Cloudflare R2, and GCS interop. Public Base URL configurable per provider.

VAULTED

Gateway Credentials

Stripe, Braintree, PayPal, and Square secrets stored in WP options, encrypted before persistence.

Submission as
a contract.

A dedicated REST namespace handles submissions, payment intents, stats, notifications, retention, and webhook settings — built to integrate, not to wrap.

Namespace
/wp-json/enterprise-forms/v1/
enterprise-forms/v1 · endpoints
MethodEndpointPurpose
POST/entries/{form_id}Public submission
GET/entries/{form_id}Admin entry list
GET/statsDashboard metrics
GET/forms/entry-countsPer-form counts
GET/notifications/statusesNotification state
GET/payments/settingsGateway settings
POST/payments/settingsUpdate gateway settings
GET/governance/settingsRetention settings
POST/governance/settingsUpdate retention
GET/integrations/webhooksWebhook settings
POST/integrations/webhooksUpdate webhooks
POST/payment-intentPrepare payment

Ship forms like
you mean it.

Enterprise Forms is free, open source, and ready for production. No license keys. No upsells. No SaaS.

GPLv2 · Requires WordPress 6.5+ and PHP 8.2+ · Stripe, Braintree, PayPal & Square checkout