Опис
Login With – Google Login for WooCommerce, is a simple and secure plugin that adds Google authentication to your WooCommerce store. It allows customers to log in using their Google accounts, providing a quick and familiar login experience that leads to better conversion rates and more sales. With just one click, customers can login with Google — no passwords, no forms, no friction. Faster checkouts mean fewer abandoned carts and more completed purchases. Simple to set up, trusted by users, and built to help your store grow.
External Services
This plugin uses Google OAuth 2.0 for authentication. When a user clicks the „Login with Google“ button, the following data is sent to Google’s servers:
- Client ID and Client Secret (configured in plugin settings)
- User’s email address and basic profile information (name)
- Authentication state token for security
This data is used to:
– Verify the user’s Google account
– Retrieve basic profile information
– Create or update the user’s account in your WooCommerce store
The plugin connects to these Google services:
– https://oauth2.googleapis.com/token (for authentication)
– https://www.googleapis.com/oauth2/v2/userinfo (for user profile data)
For more information about Google’s data handling, please review:
– Google’s Terms of Service
– Google’s Privacy Policy
Features
- Conversion rate and sales booster
- Adds a „Login with Google“ button to WooCommerce login forms
- Works on both the account page and checkout
- Secure OAuth 2.0 authentication
- Automatic user account creation for new Google users
- Syncs user’s name and email from Google profile
- Customizable button appearance
- Mobile-friendly design
Requirements
- WordPress 5.0 or higher
- WooCommerce 3.0 or higher
- PHP 7.2 or higher
- Google API credentials (Client ID and Client Secret)
Постављање
- Go to Plugins > Add New Plugin > Upload Plugin > Select the zip folder / Upload / Install / Activate
- Go to Settings > Login With
- Enter your Google API credentials:
- Client ID
- Client Secret
- Add the Redirect URI to your Google Cloud Console:
- Go to Google Cloud Console > Credentials
- Edit your OAuth 2.0 Client ID
- Add the Redirect URI shown in the plugin settings
- Save the settings
Getting Google API Credentials
- Go to the Google Cloud Console
- Create a new project or select an existing one
- Enable the Google+ API
- Go to Credentials
- Create an OAuth 2.0 Client ID
- Set the application type to „Web application“
- Add your website’s domain to authorized JavaScript origins
- Add the Redirect URI from the plugin settings
- Copy the Client ID and Client Secret to the plugin settings
ЧПП
-
Where can I get Google API credentials?
-
You can get them from the Google Cloud Console. See the „Getting Google API Credentials“ section in the installation instructions.
-
Yes, you can customize the button’s appearance by modifying the CSS in the plugin’s style.css file.
-
Does this work with WooCommerce checkout?
-
Yes, the Google login button appears on both the account page and during checkout.
Прегледи
Сарадници и градитељи
Преведите „Login With“ на свој језик.
Заинтересовани сте за градњу?
Прегледајте код, проверите SVN складиште или се пријавите на белешку градње преко RSS-а.
Белешка о изменама
1.4
- SECURITY: Fixed Login CSRF / Login Fixation – the previous WordPress nonce-based state was identical for all anonymous users, allowing an attacker to log a victim into the attacker’s account. State is now bound to a per-browser cookie.
- SECURITY: OAuth callback handler now only runs on the dedicated redirect URI path; previously a crafted ?code=…&state=… URL on any page would trigger the flow.
- SECURITY: Client Secret field on the settings page is now a password input (was plaintext) and disables autocomplete.
- SECURITY: OAuth state is now cryptographically random (random_bytes), single-use, and short-lived (10 minutes).
- Added staseo_login_with_allow_user filter so site owners can block specific accounts (e.g. admins) from logging in via Google.
- Cache-friendly: state is generated server-side on click, so the login button works correctly with page caching plugins.
- Added explicit timeouts on Google API requests.
- Now compatible with WordPress in a subdirectory.
1.3
- CRITICAL FIX: Removed buggy media library registration that could create thousands of duplicate „Google Login Button“ attachments on every page load
- Added automatic cleanup of duplicate attachments on plugin update (runs once when an admin visits wp-admin)
- Security: Require Google’s verified_email flag to prevent login via unverified Google accounts
- Hardening: Safer handling of missing given_name / family_name in Google response
- Removed unused dead code (AJAX nonce verifier, PNG-as-script registration)
1.2
- Fixed popup login flow – popup now closes automatically after successful Google login
- Parent window now properly refreshes and shows user logged in
- Added fallback mechanisms for cross-origin scenarios
- Improved user experience with login success feedback
1.1
- Updated compatibility info
1.0
- Initial release
- Added Google login functionality
- Added settings page
- Added automatic user creation
- Added mobile-friendly design