VentraConnect - Social Login, Magic Link & Email OTP (Passwordless)
| 开发者 |
fahdaslam
wpventra |
|---|---|
| 更新时间 | 2026年2月26日 19:25 |
| PHP版本: | 7.4 及以上 |
| WordPress版本: | 6.9 |
| 版权: | GPLv2 or later |
| 版权网址: | 版权信息 |
详情介绍:
wp-login.php), supports 15+ providers (Google, Facebook, X (Twitter), LinkedIn, Microsoft, GitHub, and more), account linking, optional profile sync, basic redirects, and diagnostics to troubleshoot OAuth issues.
Free includes: core WP login/registration support, shortcode placement, account linking, Guardrails, passwordless login (Magic Link & Email OTP) on WordPress login/registration and custom pages, redirect overrides for Magic Link & OTP, and email notifications when a new account is created via social login.
Pro adds (optional): deep WooCommerce/LMS/membership integrations (including passwordless on checkout/My Account and LMS/member flows), advanced redirect rules, analytics, and additional diagnostics.
安装:
- Upload the
ventraconnect-social-loginfolder to/wp-content/plugins/. - Activate the plugin.
- Go to VentraConnect Social Login in the WordPress admin.
- Choose a provider (e.g., Google or Facebook) and add your OAuth credentials.
- Save changes – social login buttons will appear on the WordPress login and registration screens.
屏幕截图:
常见问题:
Is VentraConnect Social Login secure?
Yes. VentraConnect uses official OAuth authentication flows provided by each social network. User credentials are never shared with or stored by your WordPress site. Authentication is handled directly by the provider, and only basic profile data is returned after successful login. VentraConnect connects directly to each provider. There is no third-party proxy server in the middle and no extra tracking layer added by the plugin.
Does this plugin replace passwords completely?
No. Social login is optional. Users can continue to log in using their WordPress username and password unless you choose to enforce stricter rules using your own configuration or the Pro add-on’s passwordless modes.
Does it work with existing WordPress users?
Yes. If a user logs in with a social account that matches an existing email address, the social account is linked to that user automatically and no duplicate account is created.
Does it create new user accounts?
By default, yes. If the email address does not already exist, a new WordPress user account is created automatically using the social provider profile data. You can also use the new account guardrails to globally allow or block new user creation from the core WordPress login screens when using social login. This makes it easier to prevent unwanted signups on those default screens if you prefer to use a dedicated registration or onboarding flow.
Can I restrict who is allowed to register with social login?
Yes. The new account guardrails let you block new user creation on the default WordPress login screens when using social login, so only existing users can log in that way. You can then pair social login with your own registration process, LMS or membership flows, instead of opening registration on wp-login.php.
What data is stored from social providers?
Only the provider user ID, name, email address and avatar URL are stored. No access tokens
or passwords are saved.
Site owners can output a privacy notice using the ventraconnect_sl_privacy_notice_html
filter if they want to show more detailed information on their login/registration screens.
Where do I get OAuth credentials?
Links to provider developer consoles are available in the plugin settings.
The plugin automatically generates the correct callback URL using WordPress admin-ajax.php.
On a typical site it will look similar to:
https://example.com/wp-admin/admin-ajax.php?action=ventraconnect_sl_oauth_callback&provider=PROVIDER
You should always copy the callback URL shown in the plugin settings instead of hardcoding it.
Will this slow down my site?
No. Social login buttons are only loaded where they are displayed, and OAuth requests are made directly between your site and the provider only during login. There are no external proxy calls or background requests added to normal page loads.
Does it work with WooCommerce, LMS or membership plugins?
The free plugin works with the default WordPress login and registration forms and any area where those forms are used, as well as custom pages where you place the shortcode. Deeper integrations with WooCommerce (login, checkout and My Account), LMS plugins (LearnDash, LifterLMS, LearnPress) and membership plugins (MemberPress, Ultimate Member, Paid Memberships Pro) are available in the VentraConnect Social Login Pro add-on. These integrations respect new account guardrails, support social account linking from profile screens, and include context-based shortcodes so you can place buttons exactly where they make sense in those flows.
Does it support Magic Link and Email OTP passwordless login?
Yes. Magic Link and Email One-Time Password (Email OTP) login are built into the free plugin. You can use passwordless login on the default WordPress login/registration screens and any custom page where you place the shortcode. The Pro add-on extends this to deep integrations with WooCommerce (login, checkout and My Account), LMS plugins (LearnDash, LifterLMS, LearnPress) and membership plugins (MemberPress, Ultimate Member, Paid Memberships Pro), so you can also use passwordless login in those flows. The free plugin focuses on social login with 15+ providers on the core WordPress login/registration screens and any custom pages where you place the shortcode.
Can I add social login to custom pages or custom login screens?
Yes. The free plugin provides a shortcode that you can use on custom pages, in page builders and on custom login screens. As long as the page is part of your WordPress site and the shortcode is rendered, the social login buttons and flows will work.
Do you offer a Pro version?
Yes. VentraConnect Social Login Pro is an optional add-on for sites that need deep integrations with WooCommerce, LMS and membership plugins, advanced redirect control, analytics and additional diagnostics. The free plugin includes social login with 15+ providers, Guardrails, and passwordless login (Magic Link and Email OTP) on the core WordPress login/registration screens and any custom pages where you place the shortcode. Pro lets you extend the same login foundation into WooCommerce checkout/My Account, LMS course flows and membership registration/account screens, instead of juggling multiple separate plugins. More details: https://wpventra.com/
更新日志:
- New: Magic Link and Email OTP passwordless login are now available in the free plugin on core WordPress login/registration screens and shortcode-based login pages.
- Improved: Added per-method redirect overrides for Magic Link and Email OTP (same page, referer, homepage, custom URL), with stronger redirect validation.
- Security: Hardened redirect handling and clarified how default redirect URLs interact with passwordless overrides.
- Tweak: Updated readme and UI labels to reflect the new Free vs Pro split.
- Improved: Unified account guardrail checks into a shared helper so social login behaves more consistently across core WordPress login screens and WooCommerce My Account (pro).
- Improved: The
ventraconnect_sl_can_create_userfilter is now applied in a single place before any new account is created, making it easier to customise or lock down account creation rules. - Tweak: Internal refactors to the guardrail system to better support Pro-only passwordless login methods, without changing behaviour for sites using the free plugin only.
- Security: Hardened validation, escaping and capability checks around social login flows and settings pages in line with WordPress.org review feedback.
- Security: Reduced or removed debug output and ensured sensitive data is not exposed in logs by default.
- Tweak: Minor internal code cleanups to better align with WordPress.org plugin guidelines.
- Tweak: Updated readme and plugin listing copy to clarify Free vs Pro features and improve discoverability. No functional changes.
- New: Account guardrail option to allow or block new user creation on core WordPress login/registration screens when using social login.
- New: Email notifications for admin and user when a new account is created via social login.
- Tweak: UI and settings layout improvements in the admin.
- Tweak: Confirmed compatibility with WordPress 6.9.
- Fix: Prevent rare "Class VentraConnect\SocialLogin\Providers\Facebook not found" fatal on some hosting environments.
- Fix: Shortcode
redirect_toparameter is now respected and no longer overridden by the global redirect setting. - Fix: Default login vs registration redirect URLs are applied correctly after social login.
- Fix: Redirects are now more reliable when HOME/SITEURL or www/non-www hosts differ.
- Tweak: Hardened OAuth callback/state handling to make popup and REST-based flows more robust.
- Initial release.