Login and register with phone

Woocommerce Login and register with phone let customers sign in with their phone number no passwords, no spam. Our plugin offers instant login with OTP, Google Recaptcha protection, and verified checkouts tied to real users only. Say goodbye to fake accounts and hello to security!

Setup and Configuration

↑ Back to top

First, create an account with one of the seven premium OTP service providers we support:

✔ Sinch
✔ Twilio
✔ Vonage
✔ BulkGate
✔ MSG91
✔ Prelude
✔ ShoutOUT

You can watch our video tutorial for guidance on how to configure these services.

Once the plugin is activated, navigate to WooCommerce > Settings. Look for the “Login and Register with Phone” tab in the settings.

Inside this section, you’ll find the following configuration tabs:

• General
• OTP Gateways
• Rate Limiting

These tabs allow you to customize the login flow, select your OTP provider, and manage request limits for enhanced security and control.

General Settings

Under the Login and Register with Phone > General tab, you can manage the primary configuration for phone-based login functionality:

• Login with Phone Form Shortcode
  Use this shortcode:
  [rwp_display_login_with_phone_form]
  to display the phone login form on any custom page.
• Select Countries
  Specify the countries where phone login should be enabled. Leave it empty to allow login from all countries.
• Enable My Account Page Form
  When checked, displays the phone login form on the My Account page.
• Hide Default My Account Page Form
  Enable this to hide the default WooCommerce login form from the account page.
• Enable Phone Number Edit Form on My Account Page for Logged-in Users
  Allows logged-in users to update their phone number from the My Account page.
• Enable Checkout Page Form
  Displays the phone login form directly on the checkout page.
• Force Users to Login Before Checkout
  Requires customers to log in using their phone number before they can proceed with checkout.
• Enable Captcha
  Adds Google reCAPTCHA to the phone login form to prevent spam and bot activity.
• reCAPTCHA Site Key (v2)
  Input your reCAPTCHA site key here.
• reCAPTCHA Secret Key (v2)
  Input your reCAPTCHA secret key here.
• Click Save changes to apply your settings.
  
  
  
  
  

OTP Gateway Settings

↑ Back to top

Under the OTP Gateways tab, you can configure and integrate your preferred OTP service provider for sending One-Time Passwords to users.

Choose Service Provider

Select one of the supported premium OTP providers by clicking its button:
✔ BulkGate
✔ MSG91
✔ Prelude
✔ ShoutOUT
✔ Sinch
✔ Twilio
✔ Vonage

Each provider has its own set of fields required for integration.

Example: Twilio Configuration

If you choose Twilio, you’ll need to provide the following credentials:

• Twilio Account SID
  Enter your Twilio account’s SID. This is a unique identifier used to authenticate your API requests.
• Twilio Auth Token
  Enter your Twilio Auth Token. This acts as your password to securely access Twilio services.
• Twilio Service ID
  Provide the Messaging Service SID to identify the service from which the OTP will be sent.

After entering the credentials, click Save changes to apply the configuration.

Rate Limiting Settings

↑ Back to top

The Rate Limiting tab allows you to add an extra layer of security and prevent abuse of the OTP login feature by limiting how often OTPs can be requested. Here are the available options:

• Enable Rate Limiting
  Toggle this option to activate rate limiting for OTP requests.
• Max Attempts Per IP
  Set the maximum number of OTP requests allowed from a single IP address within the specified time window.
• Time Window (in Minutes)
  Define the time frame (in minutes) in which the max attempts per IP are counted. Once the limit is reached, further OTP requests from that IP will be blocked until the time window resets.

These settings help prevent brute-force attacks and misuse by controlling the number of OTP requests a user can make in a given time frame.

FAQs

↑ Back to top

Help customers by answering commonly asked questions.