Title: Elevation Magic Link Login
Author: Elevation Team
Published: <strong>January 23, 2026</strong>
Last modified: January 23, 2026

---

Search plugins

![](https://ps.w.org/elevation-magic-link/assets/banner-772x250.png?rev=3445817)

![](https://ps.w.org/elevation-magic-link/assets/icon-256x256.png?rev=3445817)

# Elevation Magic Link Login

 By [Elevation Team](https://profiles.wordpress.org/elevation1support/)

[Download](https://downloads.wordpress.org/plugin/elevation-magic-link.1.2.2.zip)

 * [Details](https://pcd.wordpress.org/plugins/elevation-magic-link/#description)
 * [Reviews](https://pcd.wordpress.org/plugins/elevation-magic-link/#reviews)
 *  [Installation](https://pcd.wordpress.org/plugins/elevation-magic-link/#installation)
 * [Development](https://pcd.wordpress.org/plugins/elevation-magic-link/#developers)

 [Support](https://wordpress.org/support/plugin/elevation-magic-link/)

## Description

Elevation Magic Link Login allows your users to sign in without remembering a password.
By simply entering their username or email address, they receive a secure, time-
sensitive link via email that logs them in instantly.

This plugin is built with security as a priority, utilizing WordPress best practices
such as nonces, input sanitization, output escaping, hashed tokens, and HMAC signatures
to ensure your site and users remain protected.

#### Features

Adds a “Send Me a Magic Link” button to the default WP login form.

New: Toggle-based UI that hides the password field when requesting a link for a 
cleaner experience.

Secure, high-entropy token generation.

Tokens are hashed before storage for maximum security.

Cross-device support: Uses stateless HMAC signatures to validate links even if opened
on a different device than requested.

One-time use links that expire after 15 minutes (filterable).

No-password fallback for users who forget their credentials.

Lightweight and developer-friendly.

Filterable redirect URL after successful login.

## Installation

Upload the elevation-magic-link-login folder to the /wp-content/plugins/ directory.

Activate the plugin through the ‘Plugins’ menu in WordPress.

Your login page will now display the Magic Link button.

## FAQ

### How long do links stay valid?

By default, links expire after 15 minutes. Developers can change this using the 
emll_token_expiration filter.

### Does this replace the standard password login?

No, it adds a secondary option. Users can still log in using their standard username
and password.

### How can I change the redirect URL?

You can use the emll_login_redirect filter in your theme’s functions.php. Example:

add_filter(’emll_login_redirect’, function($url, $user) { return home_url(‘/welcome’);},
10, 2);

## Reviews

There are no reviews for this plugin.

## Contributors & Developers

“Elevation Magic Link Login” is open source software. The following people have 
contributed to this plugin.

Contributors

 *   [ Elevation Team ](https://profiles.wordpress.org/elevation1support/)
 *   [ Mauricio Suarez ](https://profiles.wordpress.org/msuarez25/)

[Translate “Elevation Magic Link Login” into your language.](https://translate.wordpress.org/projects/wp-plugins/elevation-magic-link)

### Interested in development?

[Browse the code](https://plugins.trac.wordpress.org/browser/elevation-magic-link/),
check out the [SVN repository](https://plugins.svn.wordpress.org/elevation-magic-link/),
or subscribe to the [development log](https://plugins.trac.wordpress.org/log/elevation-magic-link/)
by [RSS](https://plugins.trac.wordpress.org/log/elevation-magic-link/?limit=100&mode=stop_on_copy&format=rss).

## Changelog

#### 1.2.2

Improved UI: The “Send Magic Link” button now toggles the form view, hiding the 
password field and showing a specific email submission button.

Added “Back to Password Login” link for better usability.

#### 1.2.1

Security Update: Implemented Stateless HMAC Signature verification. This validates
the link origin while allowing users to request on one device and login on another.

Fix: Replaced raw script tags with wp_add_inline_script for better WordPress standard
compliance.

#### 1.2

Added emll_login_redirect filter for custom redirect URLs.

Documentation updates.

#### 1.1

Added hashed token storage.

Improved security checks for user identification.

Added CSRF protection via nonces.

#### 1.0

Initial release.

## Meta

 *  Version **1.2.2**
 *  Last updated **2 months ago**
 *  Active installations **Fewer than 10**
 *  WordPress version ** 5.0 or higher **
 *  Tested up to **6.9.4**
 *  Language
 * [English (US)](https://wordpress.org/plugins/elevation-magic-link/)
 * Tags
 * [authentication](https://pcd.wordpress.org/plugins/tags/authentication/)[login](https://pcd.wordpress.org/plugins/tags/login/)
   [magic link](https://pcd.wordpress.org/plugins/tags/magic-link/)[passwordless](https://pcd.wordpress.org/plugins/tags/passwordless/)
   [security](https://pcd.wordpress.org/plugins/tags/security/)
 *  [Advanced View](https://pcd.wordpress.org/plugins/elevation-magic-link/advanced/)

## Ratings

No reviews have been submitted yet.

[Your review](https://wordpress.org/support/plugin/elevation-magic-link/reviews/#new-post)

[See all reviews](https://wordpress.org/support/plugin/elevation-magic-link/reviews/)

## Contributors

 *   [ Elevation Team ](https://profiles.wordpress.org/elevation1support/)
 *   [ Mauricio Suarez ](https://profiles.wordpress.org/msuarez25/)

## Support

Got something to say? Need help?

 [View support forum](https://wordpress.org/support/plugin/elevation-magic-link/)