Apraksts

Bifröst is a WordPress plugin that helps create instant passwordless login links. Use those links to securely allow people temporary admin access to your WordPress site (dashboard).

As WordPress site owners, we frequently give temporary admin access to people. Among many cases, giving temporary admin access to support engineers to troubleshoot an issue is prominent. In contrast with the default process of creating a user, Bifröst can instantly create a secure login link.

How to Create Passwordless Temporary Login Links for WordPress

The following video demonstrates creating a temporary login link for WordPress using Bifröst.

How often do you need to allow someone access to your WordPress site? There are many cases when you need to allow people access to your site, including support engineers.

Allowing temporary access to your WordPress site was never easier. Create a temporary login URL to give people instant access to your site. You don’t need any email address, username or password.

🔐️ Feature Highlight of Bifröst

🔑️ Instantly create passwordless temporary login links for WP.

🔑️ Remove/delete temporary login links anytime you want.

🔑️ By default, the temporary login links are valid for 7 days.

🔑️ You can increase the validity by 3 days for expired login links.

How does Bifröst work

You can create passwordless temporary login links after successfully installing Bifröst on your WordPress site. Like most WordPress plugins installation is very straightforward. Moreover, it does not require any additional configuration.

Bifröst adds its option as a sub-menu under the WordPress User menu. You can also quickly access the menu from the installed plugins section. Under the plugin name, there is a quick link called Create Login Links. Click on Create Login Links to access plugin settings. You can create temporary login links from here by clicking the Generate button.

By default, temporary login links are valid for 7 days. When the link expires after 7 days, you will find an option to extend the validity. You can extend validity for 3 days (you can keep repeating this process as long as necessary).

Bifröst prioritizes security

🔒️ Though we want to add ease to your workflow, site security is our top priority. As a result, we have coupled ease and security together.

🔒️ First, the temporary login link appends a cryptographically secure random byte stream. As a result, there is no pattern for people to predict/target.

🔒️ Second, the link expires in 7 days. So, even if you don’t remove a link, access to your dashboard will not work.

🔒️ On top of that, people who access your dashboard using the passwordless temporary login links, cannot access the User menu. As a result, they cannot create a new user or modify an existing user.

Ekrānuzņēmumi

Direct link to create the temporary login link.
Temporary Login submenu under the Users menu.
Click on this ‘Generate a link’ button to generate a temporary login link.
Click on the link to copy the link to the clipboard.
Delete icon to remove the temporary login link.
Extend the time for the link for 3 days.

Uzstādīšana

Install using the WordPress built-in Plugin installer, or Extract the zip file and drop the contents in the wp-content/plugins/ directory of your WordPress installation.
Activate the plugin through the ‘Plugins’ menu in WordPress.
Go to the Temporary Login tab within the Users menu.
Click “Generate a link”, and you’re all set.

BUJ

Why should I use Bifröst?

Bifröst aims to add ease to your workflow by simplifying user creation on your WordPress site. To create a WordPress user, you must perform at least four steps. Those steps include setting a username, email address, password, and the user’s role.

Bifröst simplifies the process and empowers you to create a passwordless login with a single click.

What if I forget to revoke access?

Not to worry. The URL is automatically disabled at the expiration time with no action needed on your part.

Can I share a feature request?

Yes, we appreciate your feedback and ideas. Please share your feature request here.

Atsauksmes

Par šo spraudni nav atsauksmju.

Autori un izstrādātāji

“Bifröst – Instant Passwordless Temporary Login Links” ir atvērtā pirmkoda programmatūra. Šo spraudni ir veidojuši šādi cilvēki.

Hakik Zaman

Tulkot “Bifröst – Instant Passwordless Temporary Login Links&#8221 savā valodā.

Vai jūs interesē attīstība?

Pārlūkojiet kodu, apmeklējiet SVN krātuvi vai abonējiet attīstības žurnālu, ko izveidojis RSS.

Izmaiņu žurnāls

1.0.9

Security: Codebase updated based on Plugin Check Plugin (PCP).
Compatibility: WordPress 6.9.

1.0.8

Fix: Security Vulnerability.
Update: Disallow profile.php for temporary users.
Tweak: Loads the scripts only on the plugin settings page.
Removed: load_plugin_textdomain() as this plugin is hosted on WordPress.org, so, it is no longer need to manually include this function call for translations under the plugin slug. WordPress will automatically load the translations as needed.

1.0.7

Fix: Show Toolbar when viewing site.
Compatibility: WordPress 6.8.

1.0.6

Security: Codebase updated based on Plugin Check Plugin (PCP).
Compatibility: WordPress 6.7.

1.0.5

Fix: Disallowed a temporary user to access plugin setting page using a link.

1.0.4

Update: Extend time for 3 days is always visible now.

1.0.3

Security: Temporary users are not allowed to access the User/Profile menu.
Tweak: admin_init was changed with wp_dashboard_setup to control capabilities and admin menu.
Appearance: Fixed the outline style of the delete button and added a tooltip for clear instruction.

1.0.2

Add: Disallow the temporary user to delete an user of the site.
Add: POT file added.
Fix: Text domain for a method.
Fix: Headers already sent warning after deleting a link.

1.0.1

Fix: Plugin file header, sanitize for wp_nonce, prefix related issue, internationalization issues.

1.0.0

Initial release