FluentAuth – The Ultimate Authorization & Security Plugin for WordPress Plugin
Enhance the Security and User Experience of Your Website with Login/Signup Security, Two-Factor Email Authentication, Login Redirects, Social Logins, …
Boost Your Website’s Security with Login/Signup Security, Two-Factor Email Authentication, Login/Logout Redirects, Social Logins, Detailed Audit Logs, and More. FluentAuth is the lightest and blazing fast security plugin for WordPress.
Highlighted Features
- Two-Factor Authentication for Login
- Magic Login via Email
- Social Login / Register
- Limit Login Attempts
- Dynamic Login Redirects
- Detailed Audit Logs
- Core Security Enhancement
- Security Email Notifications
- Super Fast Solution
- Restrict /wp-admin for low level user roles
π Two-Factor Authentication for Login
Ensure secure access to your admin panel with Two-Factor Login via email for high-level user roles like Administrator / Editor. Even if a password gets compromised, only the right person will be able to log in with the additional authentication step.
π Magic Login via Email
Simplify the login process for end users like customers and subscribers. No more password resets or forgotten passwords that cause users to leave your site. With our improved flow and features, users can log in to your site simply by typing their username or email address and clicking on a secure one-time use link sent to their email.
π Social Login / Register
Allow users to log in to your site with their GitHub or Google accounts. This feature is lightweight and easy to enable.
π Limit Login Attempts
Protect your site against brute force attacks by blocking excessive login attempts. Our simple yet powerful tools also improve site security and performance, and allow for customizable lockout timings.
π Dynamic Login Redirects
Easily redirect users to specific pages after they log in or log out. Our drag-and-drop builder lets you customize the login and logout flow for different types of businesses.
π Detailed Audit Logs
Track exactly when users log in to your site and via which method (normal login form, magic URL, or social media) with our powerful audit logs.
π Core Security Enhancement
XML-RPC is a common target for WordPress attacks, but most sites don’t actually need it. This plugin enables you to disable XML-RPC, Remote Application Login, and protect the wp-users listing for REST API for enhanced security.
π Security Email Notifications
As a business owner, it’s important to know when high-level users like administrators, editors, and authors log in to your site, or if someone unauthorized is trying to log in. Our plugin includes email notifications to alert you of these events.
π Super Fast Solution
We’ve built this plugin to be super-fast and simple yet powerful, using the latest technologies like WordPress REST-API, VueJS V3, Vue-Router, and Element-Plus for UI building. We also use custom database tables to store audit logs, so they don’t interfere with your default WordPress database tables.
π Restrict /wp-admin for low level user roles
If you want to restrict /wp-admin access for subscribers or other low level user roles then you can easily enable that and select the user roles that you want to restrict /wp-admin access.
Why FluentAuth?
To improve the security and user experience of a WordPress website, the default authentication system may need to be enhanced with additional plugins. One common issue that WordPress site owners face is their site getting hacked. This is often due to hackers using brute-force attacks to guess passwords and gain access to the admin panel, leading to site takeover. Additionally, the use of common passwords on multiple sites can put all of them at risk if one password is compromised.
Using multiple security plugins can be detrimental to the performance of a WordPress website. These plugins, which are often bloated, intercept every WordPress request and run it through a large number of unnecessary rules, resulting in increased server resource usage and slower site performance. To avoid this issue, consider using a comprehensive security solution that offers multiple features in one package, instead of relying on multiple individual plugins. This will help save server resources and improve the overall performance of your website.
To Solve these issues, we decided to build FluentAuth and made it free.
Replace Multiple Plugins with FluentAuth
FluentAuth has been designed to provide light-weight security solution while adding better UX and performance of your site. If you use FluentAuth then you don’t need the following plugins
For Login Limit and ban brute force attacks
- Limit Login Attempts Reloaded
- WPS Limit Login
For Login & Logout Redirections
- LoginWP (Formerly Peter’s Login Redirect)
- Sky Login Redirect
- WP Login and Logout Redirect
For Login & Logout Redirections
- LoginWP (Formerly Peter’s Login Redirect)
- Sky Login Redirect
- WP Login and Logout Redirect
For Hide Admin Bar and Access Restriction
- Hide Admin Bar
- Hide Admin Bar Based on User Roles
- Auto Hide Admin Bar
- Hide Admin Bar from Non-Admins
User Guides
- Getting Started with FluentAuth
- Login / Logout Redirects
- Register/Login Shortcodes in FluentAuth
- Configure Login with GitHub
- Configure Login with Google
Other Plugins By The Same Team
- FluentCRM β Email Marketing, Newsletter, Email Automation and CRM Plugin for WordPress
- Fluent Forms β Fastest WordPress Form Builder Plugin
- Ninja Tables β Best WP DataTables Plugin for WordPress
- Ninja Charts β Best WP Charts Plugin for WordPress
- WPPayForm – Stripe Payments Plugin for WordPress
- Mautic Integration For Fluent Forms
- Fluent Forms PDF – PDF Entries for Fluent Forms
- FluentSMTP – WordPress Mail SMTP, SES, SendGrid, MailGun Plugin
CONTRIBUTE
If you want to contribute to this project or just report a bug, you are more than welcome. Please check repository from Github.
Installation
This section describes how to install the plugin and get it working.
- Just search for FluentAuth in WordPress Plugins and click install and activate.
OR
- Upload the plugin files to the
/wp-content/plugins/fluent-authdirectory, or install the plugin through the WordPress plugins screen directly. - Activate the plugin through the \’Plugins\’ screen in WordPress
- Use the
FluentAuth->Settingsscreen to configure the plugin
Screenshots
Reporting Dashboard
Login Security Settings
Social Logins Frontend
Custom Login/Signup Shortcodes
Dynamic Login Redirects
Detailed Audit Logs
Social Login Settings
FAQ
All the data will be saved and managed into WordPress. it’s 100% GDPR-Compliant.
Absolutely not! From the very first, We were careful about this. It stores all the logs data in custom database tables, so it will not affect your WordPress database. We built the application with VueJS. Also, The Admin UI is super fast as Itβs a SPA and communicates over ajax.
Changelog
1.0.6 – Date: Jan 28, 2024
- Fix Compatibility issue with PHP 8.x
- Upgrade Internal Libraries
- Improved Login with Google
- Improved UI & UX
1.0.5 – Date: May 04, 2023
- Added Login or Signup with Google Social Auth Connection
- Magic Login URL token is now hashed to improve the security
1.0.4 – Date: Feb 04, 2023
- Added Daily/Weekly/Monthly Email reporting Feature
- Made Login Form as Custom (no login url expose)
- Two-Factor Authentication Improvement
1.0.2 – Date: Dec 17, 2022
- Fix UI issue on dashboard
- Login with GitHub improvement
- Do Two-Factor Authentication even for social login for selected user roles
- Added more hooks for developers
1.0.2 – Date: Dec 16, 2022
- Improved UI & UX
- Added feature to block /wp-admin access and hide admin bar for low-level user roles
- Fix conflict issue with LearnDash and other wp-users REST-API
- Improved IP Address for login verification.
1.0.0 – Date: Dec 12, 2022
- Initial Release