Description
WPBifröst is a WordPress plugin that helps create instant passwordless login links. Use those links to securely allow people temporary admin access to your WordPress site (dashboard).
As WordPress site owners, we frequently give temporary admin access to people. Among many cases, giving temporary admin access to support engineers to troubleshoot an issue is prominent. In contrast with the default process of creating a user, WPBifröst can instantly create a secure login link.
How to Create Passwordless Temporary Login Links for WordPress
The following video demonstrates creating a temporary login link for WordPress using WPBifröst.
How often do you need to allow someone access to your WordPress site? There are many cases when you need to allow people access to your site, including support engineers.
Allowing temporary access to your WordPress site was never easier. Create a temporary login URL to give people instant access to your site. You don’t need any email address, username or password.
🔐️ Feature Highlight of WPBifröst
🔑️ Instantly create passwordless temporary login links for WP.
🔑️ Remove/delete temporary login links anytime you want.
🔑️ By default, the temporary login links are valid for 7 days.
🔑️ You can increase the validity by 3 days for expired login links.
How does WPBifröst work
You can create passwordless temporary login links after successfully installing WPBifröst on your WordPress site. Like most WordPress plugins installation is very straightforward. Moreover, it does not require any additional configuration.
WPBifröst adds its option as a sub-menu under the WordPress User menu. You can also quickly access the menu from the installed plugins section. Under the plugin name, there is a quick link called Create Login Links. Click on Create Login Links to access plugin settings. You can create temporary login links from here by clicking the Generate button.
By default, temporary login links are valid for 7 days. When the link expires after 7 days, you will find an option to extend the validity. You can extend validity for 3 days (you can keep repeating this process as long as necessary).
WPBifröst prioritizes security
🔒️ Though we want to add ease to your workflow, site security is our top priority. As a result, we have coupled ease and security together.
🔒️ First, the temporary login link appends a cryptographically secure random byte stream. As a result, there is no pattern for people to predict/target.
🔒️ Second, the link expires in 7 days. So, even if you don’t remove a link, access to your dashboard will not work.
🔒️ On top of that, people who access your dashboard using the passwordless temporary login links, cannot access the User menu. As a result, they cannot create a new user or modify an existing user.
Screenshots
Installation
- Install using the WordPress built-in Plugin installer, or Extract the zip file and drop the contents in the wp-content/plugins/ directory of your WordPress installation.
- Activate the plugin through the ‘Plugins’ menu in WordPress.
- Go to the Temporary Login tab within the Users menu.
- Click “Generate a link”, and you’re all set.
FAQ
-
Why should I use WPBifröst?
-
WPBifröst aims to add ease to your workflow by simplifying user creation on your WordPress site. To create a WordPress user, you must perform at least four steps. Those steps include setting a username, email address, password, and the user’s role.
WPBifröst simplifies the process and empowers you to create a passwordless login with a single click.
-
What if I forget to revoke access?
-
Not to worry. The URL is automatically disabled at the expiration time with no action needed on your part.
-
Yes, we appreciate your feedback and ideas. Please share your feature request here.
Reviews
ഈ പ്ലഗിന് റിവ്യൂകൾ ഒന്നുമില്ല.
Contributors & Developers
“WPBifröst – Instant Passwordless Temporary Login Links” is open source software. The following people have contributed to this plugin.
ContributorsTranslate “WPBifröst – Instant Passwordless Temporary Login Links” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
1.0.6
- Security: Codebase updated based on Plugin Check Plugin (PCP).
- Compatibility: WordPress 6.7.
1.0.5
- Fix: Disallowed a temporary user to access plugin setting page using a link.
1.0.4
- Update: Extend time for 3 days is always visible now.
1.0.3
- Security: Temporary users are not allowed to access the User/Profile menu.
- Tweak:
admin_init
was changed withwp_dashboard_setup
to control capabilities and admin menu. - Appearance: Fixed the outline style of the delete button and added a tooltip for clear instruction.
1.0.2
- Add: Disallow the temporary user to delete an user of the site.
- Add: POT file added.
- Fix: Text domain for a method.
- Fix: Headers already sent warning after deleting a link.
1.0.1
- Fix: Plugin file header, sanitize for wp_nonce, prefix related issue, internationalization issues.
1.0.0
- Initial release