Email OTP Login

Email OTP Login adds an additional layer of security to your WordPress site by requiring users to verify an OTP sent to their email after entering their username and password. This ensures that only users with access to the registered email can log in.

Features:

• Email OTP verification during login.
• OTP expires in 5 minutes (configurable).
• OTP stored securely using WordPress password hashing.
• Works with the default WordPress login form.
• Uses WordPress built-in wp_mail() function (works with SMTP plugins).

This plugin does not modify WordPress core files.

License

This plugin is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 2 or later.

This plugin is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

1. Upload the plugin folder email-otp-login to the /wp-content/plugins/ directory.
2. Activate the plugin through the ‘Plugins’ menu in WordPress.
3. Ensure your site can send emails (install a plugin like “WP Mail SMTP” if needed).
4. Test by logging in or registering a new account.
   • After entering credentials, an OTP will be emailed.
   • Enter the OTP to complete login.

1. 

   Standard login screen with OTP verification page.

2. 

   Example email received with OTP.

3. 

   OTP verification form after login.

1.0.0

• Initial release with OTP verification for login.