An Advance WordPress User Login Plugin
⚒ Reinventing WordPress User Login
With the release of RegistrationMagic plugin 4.0, we have totally upgraded the WordPress user login system. All login and logout options have now been moved inside login form’s own dashboard area. Finally, you can manage login, logout, registration, contact and any other form under a single powerful and reliable WordPress User Login Plugin. With this step, we can now roll out more new features for WordPress user login and registration forms in the coming months. So, without further ado, let us walk you through what’s new!
Download the free yet feature-packed version from our WordPress page.
The Login Form Card
The “All Forms’ section of our WordPress user login plugin displays both prebuilt and user created forms. Login form card has always been pinned to the first position, ahead of WordPress registration forms. But besides displaying plugin’s login form shortcode, it has offered little. We have changed that. While hovering cursor above it, you will notice two familiar links. Login form now has its own Dashboard and Fields pages. We’ll start with the dashboard.
A. The Login Form Dashboard
Welcome to the brand new Login Form dashboard! Although identical to registration and contact form dashboards in look and feel, you will find new set of icons and stats. That’s because login form is inherently different. Here’s a summary of all Dashboard elements:
The Line Graph
? Visualizing WordPress Login Activity
The line graph of WordPress user login plugin represents Login Success vs. Failures on your site. Similar to the registration and contact form line graphs, you have a choice to swap time period between 7, 30 (default), 60 and 90 days. As a result, it’s an excellent place to see what’s going on with your login form. Large variations between lines can point to an issue with the page or alert you about a brute force attack.
The Submission Activity Tracker
? Staying On Top Of WordPress Login Notifications
In contrast to registration forms, the Submission Activity Tracker in second column now represents the login events via the plugin, with user details. Because these events do not have simi submission pages, the items in the list are not clickable.
The Build Section
? Building That Perfect Login Form using WordPress User Login Plugin
The Build section provides controls to edit and modify the view of your custom Login Form of your WordPress user login plugin. Furthermore, it has three icons leading to respective settings pages:
- Logged In View
The Fields link takes you to the Login Form’s Fields Manager. You can also find this link from the form card! This is where you tweak the plugin’s login form.
Because it’s a login form, you cannot add other custom fields to it. Despite this, you still get a fair amount of flexibility. Plus, Username, Email and Password fields are now fully editable with newer options. Additionally, you can add custom icons, styles, placeholders, labels for buttons, etc. Also, you can remove the password field altogether to auto-generate passwords for your users.
Finally, you can edit the design of Login Form of your WordPress user login plugin in the Visual Design Editor. While this was standard across custom registration and contact forms, login form still had to inherit theme’s properties (which it still does by default). Be ready to add a bit of visual flair to your form!
3. Logged In View
The login form you just built can take care of things before a user has logged in (or after a logout). But what will your users see on login page after logging in? While many WordPress User Login Plugins add a line or two of static text with a logout link, we didn’t think that was a bright idea. So with this release, you will have greater flexibility on what appears to the user on the Login page after logging in. Moreover, the view applies to widgets associated with the plugin. Definitely relevant for the sites with a persistent login form rendered on every page via a widget.
Also, these settings allow you to add custom greeting text, custom salutations, avatar, custom text, links, etc. And of course, logout link is also present by default.
The Configure Section
⚡️ Power And Security For User Login
Here, you will find all the settings for Login form’s behavior. Likewise, it is divided into:
- Validation and Security
- Password Recovery
- Two-Factor Authentication
- Email Templates
Role based custom redirections are here! From a humble redirection option in Global Settings, we have expanded it into a dedicated area inside the plugin. Both custom login and logout redirections are possible for each role. Certainly, a super handy tool for admins with substantial role focussed sites. Of course, you can still set a common redirection for all users if that’s what you want.
2. Validation And Security
Introducing a significant addition to plugin’s Login system. While adding a few important layers of security against hacks like brute force, it does not takes reigns from your hands. Many new options debuting here are fast becoming standard across the secure web. So, there’s no reason your site should be left behind!
Moreover, you can specify error messages for failure events too.
You can also:
- Prompt users to reset their passwords.
- Warn them when their username was used in a failed login attempt.
- Send updates to the admin.
- Enforce reCAPTCHA after a certain number of failures.
- And even ban an IP after successive failures with fully customization ban durations!
Although indispensable on registration forms, many of us do not add reCAPTCHA to our login page. It’s a trade-off, to avoid inconvenience to actual human users of our sites. While true, this is also an open bait for brute force attacks. A common hack, where a bot will try to force through the plugin’s login form. The bot will batter it with seemingly many password trials. Now you can add reCAPTCHA which appears only after certain number of failed attempts. Further failures can be configured to ban the IP, temporarily or permanently. A temporary ban can enforce a logout state for custom cool down time.
3. Password Recovery
Password Recovery allows you to add a custom password recovery link tour login form. Or, you can completely hide it if you want. We are working on adding more options to this area.
4. Two-Factor Authentication
Two Factor Authentication is gaining popularity in wake of data theft and growing risks of unauthorized access. Hence, RegistrationMagic WordPress User Login Plugin now offers custom Two Factor Authentication system. You can set OTP type, length and expiry along with its behavior. It also supports the regeneration of OTP with rules. Further, you can use Two-Factor Authorization on specific user roles!
5. Email Templates
Introducing a new set of custom User and Admin email templates triggered by login events to complement existing user registration templates. What’s more, they also arrive with new content shortcodes to make your notification even more powerful. These templates are divided into two sections:
Emails to the User
These are the emails which are sent to the user. They include:
a. Failed Login Attempt Email Notification
This email is triggered when someone tries to login using a valid username or email, but an incorrect password. Thus, the recipient is the owner of a user account. If the owner did not attempt the login, it points to suspicious login event. Probably it’s a good idea here to add an admin’s contact details or link to a form on your site. This allows users to report back the incident. User feedback here can also help you single out suspicious activities on your site.
Pro Tip: You can create a reporting contact form and paste its link in the template. Not only it allows you to track spam but also makes sure it automatically attaches each report to sender’s account. Also, you can auto-fill user information in the reporting form using meta data – autofill contact form fields using user account. If you are using RegistrationMagic Premium, you can also forward all these requests to a designated security person.
b. One Time Password
Custom Template for sending a one time password.
Emails to the Admin
These are the emails sent to the admin.
a. Failed Login Attempt Email Notification
All failed login notifications are sent to the Admin with IP and time stamp.
Pro Tip: If you are on the move, and feel suspicious activity on your site login system, you can block the IP right from the notification email with a single click.
b. IP Blocked email notification
This email sends details when an IP is blocked based on rules set by you.
The Publish Section
? Front-end WordPress Login Page
The Publish section shows links related to front-end rendering of various login components:
- Login Box
- Login Button
- OTP Login
1. Login Box
A shortcode that renders login form on any page or post. Similarly, you can paste the shortcode inside a widget with an editor. If you need to display login inside a widget area, we would recommend the next two methods.
2. Login Button (Widget)
It allows you to publish Login and Logout buttons anywhere on your site. Added to that, it offers you the option to define your custom Login and Logout button labels.
3. OTP Login (Widget)
Another login widget that renders login form. Also, it supports OTP for users without an account on your site. OTP allows them to see their submissions and payments.
A beautiful and powerful login system that uses overlays. As a result, it does not interfere with your WordPress theme or layout. Besides login, it renders custom registration form, user account details, log out button, WooCommerce shopping cart and much more!
The Integrate Section
? A Social WordPress User Login Plugin
Using Integrate section you can allow users to login using popular external services like Facebook, Google, Twitter, Windows Live, Instagram, etc. Clicking on these icons will offer you methods to set up each external services.
The Analyze Section
? Keeping An Eye On WordPress User Login Plugin Activity
Following on the heels of success with registration forms, the Analyze space debuts with a Login Form! Since a login form shows a different set of statistics, we have redone all of it from scratch. The result is a filtrable timeline view of login events. Moreover, the new section offers controls to make important decisions about these events.
Each login event is recorded with the following data:
- Username or Email
- Two-Factor Authentication
- OTP (Non-registered users)
- Login Result
- Password Reset
- OTP Resent
- OTP Regenerated
- Failure Reason
- Wrong Password (Normal/ 2FA)
- Wrong Username (Normal/ 2FA/ OTP)
- OTP Expired (2FA/ OTP)
- OTP Invalid (2FA/ OTP)
- Wrong reCAPTCHA
- Password Reset Initiation
1. Login Analytics
The Login Analytics section displays two visual elements:
- Login Timeline
- Login Success vs. Failure Line Graph
This is a visual table which shows a list of login events. It replaces the regular table in Form Analytics. Also, each list item has a cog shaped button with a drop down menu. Additionally, an Advanced View link on top reveals extra filters.
Following details are visible:
- Login Date
- User Avatar
- Availability (Green Orb)
- Browser (Icon)
- IP (Red and crossed if IP was banned during failure)
- Method – Normal/ 2FA/ OTP/ Social
- Icon view of the login result
- Boolean Login result – True / False
- Cog Icon (with a drop down menu.)
Clicking the cog button will open a drop down menu. It has actionable items related to login records.
- Suspend User (If the user is already suspended, it shows ‘Activate User’).
- Reset Password – Resets and resends strong password.
- Block IP – Blocks IP in the record. If it is already blocked, it becomes ‘Unblock IP’.
- Send Email – Opens a popup to send mails to the user.
- Details – Displays more data about the login in a popup.
First three items will trigger a popup set up messages.
Then clicking the Details item shows the detailed data in a modal. Here’s an example:
Advanced View in Login Timeline
Plus, the Advanced View offers extra controls inside a timeline table. It is a single page view, that shows all login records with the following filters.
- Login Type:
- Any Default
- Login Result:
- Any Default
- Failure (All)
- Wrong Username/ Password/ reCAPTCHA, OTP
- Expired OTP
- Social Authentication Failure
- Global Expression: Input box Searches username, first name, last name, IP.
- Search Button
Login Success vs. Failure line graph
This is the same graph that appears on the Form Dashboard.
2. Logs Retention
The Logs Retention allows you to set a limit for keeping the logs. Thus, it can help you in cleaning database and complying with local data laws.
B. User Manager
So finally you get to the User Pages also the User Manager here show login activity! Apart from Registration, Payments, Mails and WooCommerce tabs, we have also added a new tab. This will show you a timeline of a user’s login activity.
C. Login and Logout Button Widget
Finally, a Login Logout Button widget which you can place on any widget position on your site! Added to that, it also offers a Log Out View with the ability to set login and logout button labels. You can even set a sign in form with a link to open in a modal! Then, hover effects with Logged In View adds a dash of style. This may be the only Login and Logout button widget you need on your site.
So, hope you enjoyed reading about our new WordPress User Login system. Despite being a module in RegistrationMagic as a whole, it can replace your current WordPress Login Plugin. So give it a try! Besides, We have kept many login features for FREE. Also, do not forget to check out the advanced RegistrationMagic WordPress registration form. In case you need to create a WordPress registration page to register your users.
- Setup payments on Registration form using Products [Payments Guide] - June 10, 2022
- How to add or update user profile fields using WordPress forms - August 5, 2020
- Boost RegistrationMagic User Profiles With ProfileGrid Integration - February 19, 2019
- WordPress Registration Shortcodes List - August 14, 2018
- Advance WordPress User Login Plugin Guide - August 8, 2018
- WordPress User Registration Status Guide - April 9, 2018
- Create Intelligent Contact Form in WordPress [Breakthrough Ideas] - February 8, 2018
- Create Your First WordPress Registration Page – Starter Guide - November 14, 2017
- How to Add Custom Fields to WooCommerce Checkout Form - November 3, 2017
- Setup Early Bird Registration for an Event on WordPress Site, with Ease! - April 20, 2017