설명

WPBifröst is a WordPress plugin that helps create instant passwordless login links. Use those links to securely allow people temporary admin access to your WordPress site (dashboard).

As WordPress site owners, we frequently give temporary admin access to people. Among many cases, giving temporary admin access to support engineers to troubleshoot an issue is prominent. In contrast with the default process of creating a user, WPBifröst can instantly create a secure login link.

How to Create Passwordless Temporary Login Links for WordPress

The following video demonstrates creating a temporary login link for WordPress using WPBifröst.

How often do you need to allow someone access to your WordPress site? There are many cases when you need to allow people access to your site, including support engineers.

Allowing temporary access to your WordPress site was never easier. Create a temporary login URL to give people instant access to your site. You don’t need any email address, username or password.

🔐️ Feature Highlight of WPBifröst

🔑️ Instantly create passwordless temporary login links for WP.

🔑️ Remove/delete temporary login links anytime you want.

🔑️ By default, the temporary login links are valid for 7 days.

🔑️ You can increase the validity by 3 days for expired login links.

How does WPBifröst work

You can create passwordless temporary login links after successfully installing WPBifröst on your WordPress site. Like most WordPress plugins installation is very straightforward. Moreover, it does not require any additional configuration.

WPBifröst adds its option as a sub-menu under the WordPress User menu. You can also quickly access the menu from the installed plugins section. Under the plugin name, there is a quick link called Create Login Links. Click on Create Login Links to access plugin settings. You can create temporary login links from here by clicking the Generate button.

By default, temporary login links are valid for 7 days. When the link expires after 7 days, you will find an option to extend the validity. You can extend validity for 3 days (you can keep repeating this process as long as necessary).

WPBifröst prioritizes security

🔒️ Though we want to add ease to your workflow, site security is our top priority. As a result, we have coupled ease and security together.

🔒️ First, the temporary login link appends a cryptographically secure random byte stream. As a result, there is no pattern for people to predict/target.

🔒️ Second, the link expires in 7 days. So, even if you don’t remove a link, access to your dashboard will not work.

🔒️ On top of that, people who access your dashboard using the passwordless temporary login links, cannot access the User menu. As a result, they cannot create a new user or modify an existing user.

스크린샷

Direct link to create the temporary login link.
Temporary Login submenu under the Users menu.
Click on this ‘Generate a link’ button to generate a temporary login link.
Click on the link to copy the link to the clipboard.
Delete icon to remove the temporary login link.
Extend the time for the link for 3 days.

설치

Install using the WordPress built-in Plugin installer, or Extract the zip file and drop the contents in the wp-content/plugins/ directory of your WordPress installation.
Activate the plugin through the ‘Plugins’ menu in WordPress.
Go to the Temporary Login tab within the Users menu.
Click “Generate a link”, and you’re all set.

FAQ

Why should I use WPBifröst?

WPBifröst aims to add ease to your workflow by simplifying user creation on your WordPress site. To create a WordPress user, you must perform at least four steps. Those steps include setting a username, email address, password, and the user’s role.

WPBifröst simplifies the process and empowers you to create a passwordless login with a single click.

What if I forget to revoke access?

Not to worry. The URL is automatically disabled at the expiration time with no action needed on your part.

Can I share a feature request?

Yes, we appreciate your feedback and ideas. Please share your feature request here.

후기

이 플러그인에 대한 평가가 없습니다.

기여자 & 개발자

“WPBifröst – Instant Passwordless Temporary Login Links”(은)는 오픈 소스 소프트웨어입니다. 다음의 사람들이 이 플러그인에 기여하였습니다.

Hakik Zaman

자국어로 “WPBifröst – Instant Passwordless Temporary Login Links”(을)를 번역하세요.

개발에 관심이 있으십니까?

코드 탐색하기는, SVN 저장소를 확인하시거나, 개발 기록을 RSS로 구독하세요.

변경이력

1.0.8

Fix: Security Vulnerability.
Update: Disallow profile.php for temporary users.
Tweak: Loads the scripts only on the plugin settings page.
Removed: load_plugin_textdomain() as this plugin is hosted on WordPress.org, so, it is no longer need to manually include this function call for translations under the plugin slug. WordPress will automatically load the translations as needed.

1.0.7

Fix: Show Toolbar when viewing site.
Compatibility: WordPress 6.8.

1.0.6

Security: Codebase updated based on Plugin Check Plugin (PCP).
Compatibility: WordPress 6.7.

1.0.5

Fix: Disallowed a temporary user to access plugin setting page using a link.

1.0.4

Update: Extend time for 3 days is always visible now.

1.0.3

Security: Temporary users are not allowed to access the User/Profile menu.
Tweak: admin_init was changed with wp_dashboard_setup to control capabilities and admin menu.
Appearance: Fixed the outline style of the delete button and added a tooltip for clear instruction.

1.0.2

Add: Disallow the temporary user to delete an user of the site.
Add: POT file added.
Fix: Text domain for a method.
Fix: Headers already sent warning after deleting a link.

1.0.1

Fix: Plugin file header, sanitize for wp_nonce, prefix related issue, internationalization issues.

1.0.0

Initial release