FluentAuth – The Ultimate Authorization & Security Plugin for WordPress

January 28, 2024

FluentAuth – The Ultimate Authorization & Security Plugin for WordPress Plugin

Enhance the Security and User Experience of Your Website with Login/Signup Security, Two-Factor Email Authentication, Login Redirects, Social Logins, …

Boost Your Website’s Security with Login/Signup Security, Two-Factor Email Authentication, Login/Logout Redirects, Social Logins, Detailed Audit Logs, and More. FluentAuth is the lightest and blazing fast security plugin for WordPress.

Highlighted Features

  • Two-Factor Authentication for Login
  • Magic Login via Email
  • Social Login / Register
  • Limit Login Attempts
  • Dynamic Login Redirects
  • Detailed Audit Logs
  • Core Security Enhancement
  • Security Email Notifications
  • Super Fast Solution
  • Restrict /wp-admin for low level user roles

πŸš€ Two-Factor Authentication for Login
Ensure secure access to your admin panel with Two-Factor Login via email for high-level user roles like Administrator / Editor. Even if a password gets compromised, only the right person will be able to log in with the additional authentication step.

πŸš€ Magic Login via Email
Simplify the login process for end users like customers and subscribers. No more password resets or forgotten passwords that cause users to leave your site. With our improved flow and features, users can log in to your site simply by typing their username or email address and clicking on a secure one-time use link sent to their email.

πŸš€ Social Login / Register
Allow users to log in to your site with their GitHub or Google accounts. This feature is lightweight and easy to enable.

πŸš€ Limit Login Attempts
Protect your site against brute force attacks by blocking excessive login attempts. Our simple yet powerful tools also improve site security and performance, and allow for customizable lockout timings.

πŸš€ Dynamic Login Redirects
Easily redirect users to specific pages after they log in or log out. Our drag-and-drop builder lets you customize the login and logout flow for different types of businesses.

πŸš€ Detailed Audit Logs
Track exactly when users log in to your site and via which method (normal login form, magic URL, or social media) with our powerful audit logs.

πŸš€ Core Security Enhancement
XML-RPC is a common target for WordPress attacks, but most sites don’t actually need it. This plugin enables you to disable XML-RPC, Remote Application Login, and protect the wp-users listing for REST API for enhanced security.

πŸš€ Security Email Notifications
As a business owner, it’s important to know when high-level users like administrators, editors, and authors log in to your site, or if someone unauthorized is trying to log in. Our plugin includes email notifications to alert you of these events.

πŸš€ Super Fast Solution
We’ve built this plugin to be super-fast and simple yet powerful, using the latest technologies like WordPress REST-API, VueJS V3, Vue-Router, and Element-Plus for UI building. We also use custom database tables to store audit logs, so they don’t interfere with your default WordPress database tables.

πŸš€ Restrict /wp-admin for low level user roles
If you want to restrict /wp-admin access for subscribers or other low level user roles then you can easily enable that and select the user roles that you want to restrict /wp-admin access.

Why FluentAuth?

To improve the security and user experience of a WordPress website, the default authentication system may need to be enhanced with additional plugins. One common issue that WordPress site owners face is their site getting hacked. This is often due to hackers using brute-force attacks to guess passwords and gain access to the admin panel, leading to site takeover. Additionally, the use of common passwords on multiple sites can put all of them at risk if one password is compromised.

Using multiple security plugins can be detrimental to the performance of a WordPress website. These plugins, which are often bloated, intercept every WordPress request and run it through a large number of unnecessary rules, resulting in increased server resource usage and slower site performance. To avoid this issue, consider using a comprehensive security solution that offers multiple features in one package, instead of relying on multiple individual plugins. This will help save server resources and improve the overall performance of your website.

To Solve these issues, we decided to build FluentAuth and made it free.

Replace Multiple Plugins with FluentAuth

FluentAuth has been designed to provide light-weight security solution while adding better UX and performance of your site. If you use FluentAuth then you don’t need the following plugins

For Login Limit and ban brute force attacks

  • Limit Login Attempts Reloaded
  • WPS Limit Login

For Login & Logout Redirections

  • LoginWP (Formerly Peter’s Login Redirect)
  • Sky Login Redirect
  • WP Login and Logout Redirect

For Login & Logout Redirections

  • LoginWP (Formerly Peter’s Login Redirect)
  • Sky Login Redirect
  • WP Login and Logout Redirect

For Hide Admin Bar and Access Restriction

  • Hide Admin Bar
  • Hide Admin Bar Based on User Roles
  • Auto Hide Admin Bar
  • Hide Admin Bar from Non-Admins

User Guides

Other Plugins By The Same Team

CONTRIBUTE

If you want to contribute to this project or just report a bug, you are more than welcome. Please check repository from Github.

Installation

This section describes how to install the plugin and get it working.

  1. Just search for FluentAuth in WordPress Plugins and click install and activate.

OR

  1. Upload the plugin files to the /wp-content/plugins/fluent-auth directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the \’Plugins\’ screen in WordPress
  3. Use the FluentAuth -> Settings screen to configure the plugin

Screenshots

  1. Reporting Dashboard

    Reporting Dashboard

  2. Login Security Settings

    Login Security Settings

  3. Social Logins Frontend

    Social Logins Frontend

  4. Custom Login/Signup Shortcodes

    Custom Login/Signup Shortcodes

  5. Dynamic Login Redirects

    Dynamic Login Redirects

  6. Detailed Audit Logs

    Detailed Audit Logs

  7. Social Login Settings

    Social Login Settings

FAQ

Is it a GDPR-Compliant?

All the data will be saved and managed into WordPress. it’s 100% GDPR-Compliant.

Will it is a performance issue for WordPress?

Absolutely not! From the very first, We were careful about this. It stores all the logs data in custom database tables, so it will not affect your WordPress database. We built the application with VueJS. Also, The Admin UI is super fast as It’s a SPA and communicates over ajax.

Changelog

1.0.6 – Date: Jan 28, 2024

  • Fix Compatibility issue with PHP 8.x
  • Upgrade Internal Libraries
  • Improved Login with Google
  • Improved UI & UX

1.0.5 – Date: May 04, 2023

  • Added Login or Signup with Google Social Auth Connection
  • Magic Login URL token is now hashed to improve the security

1.0.4 – Date: Feb 04, 2023

  • Added Daily/Weekly/Monthly Email reporting Feature
  • Made Login Form as Custom (no login url expose)
  • Two-Factor Authentication Improvement

1.0.2 – Date: Dec 17, 2022

  • Fix UI issue on dashboard
  • Login with GitHub improvement
  • Do Two-Factor Authentication even for social login for selected user roles
  • Added more hooks for developers

1.0.2 – Date: Dec 16, 2022

  • Improved UI & UX
  • Added feature to block /wp-admin access and hide admin bar for low-level user roles
  • Fix conflict issue with LearnDash and other wp-users REST-API
  • Improved IP Address for login verification.

1.0.0 – Date: Dec 12, 2022

  • Initial Release

Details

  • Version: 1.0.6
  • Active installations: 5,000
  • WordPress Version: 5.0
  • Tested up to: 6.4.5
  • PHP Version: 7.1

Ratings


5 Stars
4 Stars
3 Stars
2 Stars
1 Stars