Email OTP Login

作者：Tushar Sharma

描述

Email OTP Login adds an additional layer of security to your WordPress site by requiring users to verify an OTP sent to their email after entering their username and password. This ensures that only users with access to the registered email can log in.

Features:

Email OTP verification during login.
OTP expires in 5 minutes (configurable).
OTP stored securely using WordPress password hashing.
Works with the default WordPress login form.
Uses WordPress built-in wp_mail() function (works with SMTP plugins).

This plugin does not modify WordPress core files.

License

This plugin is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 2 or later.

This plugin is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

屏幕截图

Standard login screen with OTP verification page.
Example email received with OTP.
OTP verification form after login.

安装

Upload the plugin folder email-otp-login to the /wp-content/plugins/ directory.
Activate the plugin through the ‘Plugins’ menu in WordPress.
Ensure your site can send emails (install a plugin like “WP Mail SMTP” if needed).
Test by logging in or registering a new account.
- After entering credentials, an OTP will be emailed.
- Enter the OTP to complete login.

常见问题

Does this replace my existing password?: No. Users must enter their normal username/password first, then OTP.
What happens if the OTP email does not arrive?: Make sure your site can send emails. We recommend configuring an SMTP plugin for reliable email delivery.
Can I change OTP expiration time?: Yes. In the plugin class, $otp_expiration controls OTP lifetime (default 300 seconds = 5 minutes).
Can I use this with WooCommerce login?: This version is built for native WordPress login. In next release, I will add WooCommerce support.
Is OTP stored securely?: Yes. OTP is stored using the same mechanism WordPress uses for user passwords.

评价

getgiffy 2026 年 2 月 25 日

Works fine, but keep in mind that if you use login-based WP-API access that this also requires OTP. So your existing API calls might fail….

阅读所有1条评价

贡献者及开发者

「Email OTP Login」是开源软件。以下人员对此插件做出了贡献。

Tushar Sharma

帮助将「Email OTP Login」翻译成简体中文。

对开发感兴趣吗?

您可以浏览代码，查看SVN仓库，或通过RSS订阅开发日志。

更新日志

1.0.0

Initial release with OTP verification for login.

评级

3 星（最高 5 星）。

添加我的评价

查看全部评论

描述

License

屏幕截图

安装

常见问题

Does this replace my existing password?

What happens if the OTP email does not arrive?

Can I change OTP expiration time?

Can I use this with WooCommerce login?

Is OTP stored securely?

评价

贡献者及开发者

对开发感兴趣吗?

更新日志

1.0.0

额外信息

评级

贡献者

支持