Magic Link lets users log in or sign up with a one-time link sent to their email. No password fields are required on the form.
This article covers:
-
How to enable Magic Link
-
Login vs signup behaviour
-
Security options (expiry, same-IP, attempts)
-
Redirects after login
-
Email template and test tools
1. Enable Magic Link
-
Go to VentraConnect Social Login → Passwordless Mode.
-
In the sidebar, click Magic Link.
-
Turn the Active toggle On.
-
Click Save Changes.
This enables Magic Link as an available login method wherever passwordless is supported (WordPress login, WooCommerce, memberships, LMS, comments, depending on what you’ve enabled).
2. Choose login and signup behaviour
In the Magic Link settings screen you’ll see:
-
Login & signup mode – controls whether Magic Link can:
-
Log in existing users only, or
-
Allow new account creation, or
-
Follow global Passwordless mode rules
-
Pick the option that matches your site:
-
For most WooCommerce / membership sites, allow Magic Link to create new accounts where you normally allow registrations.
-
For closed communities, restrict Magic Link to existing users only.
3. Configure security: expiry, resend, attempts, IP
Key fields on the Magic Link settings screen:
-
Link expiry (minutes) – how long the link is valid once issued.
-
Typical range: 10–30 minutes.
-
-
Resend throttle (sec) – minimum seconds between repeated sends to the same email address.
-
Max attempts – how many times a user can try to consume the same link before it’s locked.
Depending on your version you may also see:
-
Same-IP enforcement – when enabled, the link can only be used from the same IP that requested it.
-
This is a stricter security option for high-risk sites.
-
Disable it if your users commonly change networks between checking email and logging in (e.g. mobile vs Wi-Fi).
-
Magic Link links are always:
-
Single-use – once successfully used, they can’t be used again
-
Expiry-bounded – once the expiry time passes, the link is marked as expired
4. Set redirects for Magic Link
By default, Magic Link respects your global redirect rules and per-integration settings (WooCommerce, memberships, LMS).
You can optionally override this on the Magic Link settings screen:
-
Redirect override
-
Return to previous page – send users back where they started
-
Send to homepage
-
Custom URL – e.g.
/my-account/or/dashboard/
-
If you leave it as “None”, Magic Link follows:
-
The global redirect settings in Settings → Redirects & Security
-
Any plugin-specific redirect rules (WooCommerce, etc.)
5. Customize the Magic Link email
In the Email settings section:
-
Email subject – subject line for Magic Link emails
-
Email body – HTML/text template
You can use placeholders such as (examples – adjust to whatever you actually implemented):
-
{magic_link}– the one-time login URL -
{site_name}– your site’s name -
{user_email}– the email address the link was sent to
Write clear copy that:
-
Explains this is a one-time link
-
Mentions the expiry time
-
Warns users not to forward the email
Example skeleton:
Hi {user_email},
Use the button below to log in to {site_name}. This link works once and expires in {expires_in} minutes.
If you didn’t request this email, you can ignore it.
6. Preview & test Magic Link
At the bottom of the Magic Link settings page:
-
Use the Preview & test section.
-
Make sure the button label looks correct (e.g. “Continue with Magic Link”).
-
Use the “Send test email” option to send yourself a Magic Link to your admin address.
-
Open the email on a normal browser, click the link, and confirm:
-
You are logged in
-
You’re redirected to the expected page
-
The link shows as expired if you try to use it again
-
If anything fails, check:
-
Email deliverability (SPF/DKIM, SMTP plugin, etc.)
-
The Diagnostics & Tools tab for errors
-
The OTP/Magic Link troubleshooting doc
