Description
Users will be automatically logged in when clicking links in emails sent from WordPress:
- Comment reply emails
- Abandoned cart emails
- Membership reminder emails
- etc.
No configuration is required, by default:
- Autologin URLs work for one week
- Emails to administrators are excluded
- Emails on exclusion shortlist are not modified
An API is available for developers to use autologin codes elsewhere in WordPress, e.g. push notifications, and to conditionally disable the plugin’s use. Code is published on GitHub, uses WordPress Plugin Boilerplate, conforms (mostly) to WordPress Coding Standards, and is unit & integration tested.
Screenshots
Example email sent via Comment Reply Email Notification plugin. 
The settings interface. 
Reviews
There are no reviews for this plugin.
Contributors & Developers
“Autologin URLs” is open source software. The following people have contributed to this plugin.
Contributors
Translate “Autologin URLs” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
1.9.0
- Add: checkbox to enable/disable magic links
- Add: magic link button on WooCommerce checkout
- Add: enable overriding the settings page template
- Improve: logging
- Dev: use Alley Interactive autoloader
1.8.0
- Add: ignore requests from bots (check HTTP_USER_AGENT for “bot”)
- Fix: do not redirect_to wp-login.php, unwrap the inner redirect_to and use that
- Fix: unprefixed Klaviyo\ApiException.
1.7.1
- Fix: set content type on HTML emails
- Fix: do not generate autologin URLs when serving WC_Orders over REST API
- Improve: hyperlinks in log table
1.7.0
- Add: Magic-link emails on wp-login.php and WooCommerce login forms
- Add: Git Updater
- Improved PHPCS and logging
1.6.3
- Fix: Catch Klaviyo API errors
- Language: Include generated .pot file
1.6.2
- Dependency: updated logger library for performance
1.6.1
- Fix: Fatal error when Klaviyo querystring was defined but empty
- Fix: fatal error when
plugin_action_links_{}filter called with null as parameter values (Jetpack) - Fix: (temp) Error when WooCommerce shuts down due to virtual WC_Customer
- Fix: error when wp_mail’s $to is an array
1.6.0
- Add: Settings and logs link on plugin install confirmation page
- Fix: Prefilling WooCommerce customer data when no WP_User available: missing function parameter, wc_get_orders called too soon
1.5.0
- Add: Support for using Klaviyo tracking links as autologin links
- Change: Use library nikolaposa/rate-limit for rate limiting rather than internal code
- Add: interface for integrations
- Fix: Return early when user is already logged in
- Fix: Error when Guzzle not prefixed
- Dev: Project structure changed
1.4.0
- Add: On admin UI single order page, add the autologin code to the “Customer payment page” link
- Security: Exclude emails with multiple recipients
1.3.3
- Add: Use custom table for storing codes, because transients are too ephemeral
- Add: Option to bounce users through wp-login.php, to avoid caching issues
- Add: Logs users in from links in The Newsletter Plugin
- Add: Logs users in from links in MailPoet
- Add: Prefill WooCommerce checkout data for mailing list users without accounts
- Add: More secure verification via hash_equals
- Add: Rate limiting bad login attempts
- Add: Logging (mostly off by default)
1.1.2
- Improved dependency management with Mozart for Composer.
1.1.1
- Auto-deploying to WordPress.org
1.1.0
- Rate limiting added for multiple failed login attempts against user accounts and from IPs. This only affects Autologin URLs logins and does not affect other authentication. 2019-September-11.
1.0
- First release. 2019-September-01.