{"id":290659,"date":"2026-05-14T21:43:52","date_gmt":"2026-05-14T21:43:52","guid":{"rendered":"https:\/\/wordpress.org\/plugins\/support-access-manager\/"},"modified":"2026-05-14T21:43:28","modified_gmt":"2026-05-14T21:43:28","slug":"sam-support-access-manager","status":"publish","type":"plugin","link":"https:\/\/wordpress.org\/plugins\/sam-support-access-manager\/","author":23465011,"comment_status":"closed","ping_status":"closed","template":"","meta":{"version":"1.0.0","stable_tag":"1.0.0","tested":"6.9.4","requires":"5.8","requires_php":"7.4","requires_plugins":null,"header_name":"SAM Support Access Manager","header_author":"2carets","header_description":"Grant temporary, monitored support access to developers and staff. Auto-generated credentials are shared via a secure single-use link \u2014 no existing passwords are ever exposed. Every action is audit-logged and retained after the session ends.","assets_banners_color":"","last_updated":"2026-05-14 21:43:28","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"","header_author_uri":"https:\/\/samwp.com","rating":0,"author_block_rating":0,"active_installs":0,"downloads":45,"num_ratings":0,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"1.0.0":{"tag":"1.0.0","author":"2carets","date":"2026-05-14 21:43:28"}},"upgrade_notice":{"1.0.0":"<p>Initial release.<\/p>"},"ratings":[],"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3532506,"resolution":"128x128","location":"assets","locale":"","width":400,"height":400},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3532506,"resolution":"256x256","location":"assets","locale":"","width":400,"height":400}},"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.0"],"block_files":[],"assets_screenshots":{"screenshot-1.png":{"filename":"screenshot-1.png","revision":3532506,"resolution":"1","location":"assets","locale":"","width":1631,"height":1001},"screenshot-2.png":{"filename":"screenshot-2.png","revision":3532506,"resolution":"2","location":"assets","locale":"","width":1783,"height":911},"screenshot-3.png":{"filename":"screenshot-3.png","revision":3532506,"resolution":"3","location":"assets","locale":"","width":1775,"height":950},"screenshot-4.jpg":{"filename":"screenshot-4.jpg","revision":3532506,"resolution":"4","location":"assets","locale":"","width":1673,"height":254},"screenshot-5.jpg":{"filename":"screenshot-5.jpg","revision":3532506,"resolution":"5","location":"assets","locale":"","width":1629,"height":910}},"screenshots":{"1":"Generate temporary support access links with automatic expiration, revocation controls, and optional masked login paths.","2":"Developers receive a secure single-use portal where credentials can only be revealed once before automatic invalidation.","3":"Temporary support credentials include session IDs, expiration tracking, secure login URLs, and quick copy actions for developers.","4":"Support sessions display active monitoring notices while administrators can track activity during temporary access sessions.","5":"Every support session includes a detailed action log showing logins, plugin changes, theme activity, and other recorded events."},"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[1911,8533,600,1104,736],"plugin_category":[54],"plugin_contributors":[262989],"plugin_business_model":[],"class_list":["post-290659","plugin","type-plugin","status-publish","hentry","plugin_tags-access","plugin_tags-audit","plugin_tags-security","plugin_tags-support","plugin_tags-temporary","plugin_category-security-and-spam-protection","plugin_contributors-2carets","plugin_committers-2carets"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/icon-128x128.png?rev=3532506","icon_2x":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/icon-256x256.png?rev=3532506","generated":false},"screenshots":[{"src":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/screenshot-1.png?rev=3532506","caption":"Generate temporary support access links with automatic expiration, revocation controls, and optional masked login paths."},{"src":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/screenshot-2.png?rev=3532506","caption":"Developers receive a secure single-use portal where credentials can only be revealed once before automatic invalidation."},{"src":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/screenshot-3.png?rev=3532506","caption":"Temporary support credentials include session IDs, expiration tracking, secure login URLs, and quick copy actions for developers."},{"src":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/screenshot-4.jpg?rev=3532506","caption":"Support sessions display active monitoring notices while administrators can track activity during temporary access sessions."},{"src":"https:\/\/ps.w.org\/sam-support-access-manager\/assets\/screenshot-5.jpg?rev=3532506","caption":"Every support session includes a detailed action log showing logins, plugin changes, theme activity, and other recorded events."}],"raw_content":"<!--section=description-->\n<p>SAM Support Access Manager allows site owners to grant secure, temporary WordPress access to developers, support staff, or contractors without creating permanent administrator accounts.<\/p>\n\n<p>Instead of providing full admin privileges, the plugin creates a temporary support user with a modified administrator role. This role can be restricted to common maintenance tasks such as plugin updates, content edits, or troubleshooting, while preventing access to sensitive areas like user management or security settings.<\/p>\n\n<p>Access is granted through a secure one-time login link and automatically expires after a defined period.<\/p>\n\n<p>During each support session, actions are recorded. When the session ends \u2014 either by expiry or manual revocation \u2014 the plugin generates a concise summary of changes alongside a full activity log. This helps site owners quickly understand what work was performed.<\/p>\n\n<p>Typical use cases include:<\/p>\n\n<ul>\n<li>granting developers temporary access for bug fixes<\/li>\n<li>allowing support teams to troubleshoot configuration issues<\/li>\n<li>supervising contractor maintenance work<\/li>\n<li>maintaining an audit trail of administrative changes<\/li>\n<\/ul>\n\n<p><strong>How support access works<\/strong><\/p>\n\n<ol>\n<li>Generate a temporary access session and choose an expiry duration<\/li>\n<li>Send the secure one-time login link to the developer or support agent<\/li>\n<li>A restricted temporary admin user is created when the link is used<\/li>\n<li>Selected administrative actions are logged during the session<\/li>\n<li>When access expires or is revoked, a session summary is generated<\/li>\n<li>Review the summary and full event log in the admin dashboard<\/li>\n<\/ol>\n\n<p><strong>Logged activity includes<\/strong><\/p>\n\n<ul>\n<li>plugin installation, activation, update, and deletion<\/li>\n<li>theme switches and updates<\/li>\n<li>post and page edits<\/li>\n<li>WordPress core updates<\/li>\n<li>selected settings changes<\/li>\n<li>login and logout events<\/li>\n<li>file editor usage<\/li>\n<\/ul>\n\n<p><strong>Key features<\/strong><\/p>\n\n<ul>\n<li>Temporary support users with restricted administrative capabilities<\/li>\n<li>Time-limited access with automatic expiry<\/li>\n<li>Secure one-time login links<\/li>\n<li>Automatic plain-language session summaries<\/li>\n<li>Detailed chronological activity logs<\/li>\n<li>Instant manual revocation of active sessions<\/li>\n<li>CSV export of session data<\/li>\n<li>Automatic cleanup of expired sessions<\/li>\n<li>Fully self-hosted operation with no external services<\/li>\n<\/ul>\n\n<p>Temporary support users cannot access plugin configuration or session logs.<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Upload the <code>sam-support-access-manager<\/code> folder to <code>\/wp-content\/plugins\/<\/code><\/li>\n<li>Activate the plugin through the <strong>Plugins<\/strong> menu in WordPress<\/li>\n<li>Navigate to <strong>SAM<\/strong> in the admin sidebar<\/li>\n<li>Click <strong>Generate Support Access<\/strong> when a developer needs access<\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id=\"what%20is%20a%20session%20summary%3F\"><h3>What is a session summary?<\/h3><\/dt>\n<dd><p>When a support session ends, SAM compiles events into a summary which includes which plugins were updated, which content was edited, which settings changed, and how long the session lasted. This appears at the top of the session log view in your dashboard.<\/p><\/dd>\n<dt id=\"does%20the%20developer%20need%20their%20own%20wordpress%20account%3F\"><h3>Does the developer need their own WordPress account?<\/h3><\/dt>\n<dd><p>No. SAM creates a temporary account automatically when you generate access. It is locked and flagged for deletion after expiry.<\/p><\/dd>\n<dt id=\"what%20happens%20when%20the%20session%20expires%3F\"><h3>What happens when the session expires?<\/h3><\/dt>\n<dd><p>The account is locked, the developer is logged out, and a session summary is generated. After 30 days, the account and its logs are permanently deleted.<\/p><\/dd>\n<dt id=\"can%20i%20revoke%20access%20early%3F\"><h3>Can I revoke access early?<\/h3><\/dt>\n<dd><p>Yes. Click <strong>Revoke<\/strong> next to any active session to immediately lock the account and trigger summary generation.<\/p><\/dd>\n<dt id=\"is%20any%20data%20sent%20to%20external%20servers%3F\"><h3>Is any data sent to external servers?<\/h3><\/dt>\n<dd><p>No. This plugin is fully self-contained. All session data, logs, and summaries are stored in your WordPress database.<\/p><\/dd>\n<dt id=\"what%20is%20the%20one-time%20link%3F\"><h3>What is the one-time link?<\/h3><\/dt>\n<dd><p>When you generate access, a secure link is created that is valid for 30 minutes and can only be opened once. Opening it reveals the temporary credentials. If you accidentally open it, just generate a new one.<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>1.0.0<\/h4>\n\n<ul>\n<li>Initial release<\/li>\n<\/ul>","raw_excerpt":"Grant temporary, monitored support access to developers and staff.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/290659","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=290659"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/2carets"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=290659"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=290659"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=290659"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=290659"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=290659"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=290659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}