ARTICLE CONTENT:
Password Options
By default, user passwords are encrypted and stored in WordPress. If integrated with a CRM you can store password inside your CRM or choose not to store it.
Keap/Infusionsoft is the only CRM at this time that encrypts the password field.
1. Store passwords
- Map the password field in AccessAlly > Settings > General Setup > Set Up The Username and Password Settings
- You can choose a standard password field from your CRM or create a custom field to store the password.
%27%20fill-opacity%3D%27.5%27%3E%3Cpath%20fill%3D%22%23d1d1d1%22%20fill-opacity%3D%22.5%22%20d%3D%22M1576.6%2019.7H832V8.5h744.6z%22%2F%3E%3Cellipse%20fill%3D%22%23fff%22%20fill-opacity%3D%22.5%22%20rx%3D%221%22%20ry%3D%221%22%20transform%3D%22matrix(3.09526%2040.22655%20-577.31104%2044.42166%20432.1%2014)%22%2F%3E%3Cellipse%20fill%3D%22%23fff%22%20fill-opacity%3D%22.5%22%20rx%3D%221%22%20ry%3D%221%22%20transform%3D%22matrix(546.3735%20-11.77948%20.12158%205.63931%20457.3%2010)%22%2F%3E%3Cpath%20fill%3D%22%23d0d0d0%22%20fill-opacity%3D%22.5%22%20d%3D%22M-11-2.8L96%202.8l-.3%205.6-107-5.6z%22%2F%3E%3C%2Fg%3E%3C%2Fsvg%3E)
- Verify that the non-encryted password field in your CRM doesn’t pose a security risk for your business
- Use features like emailing passwords when someone purchases and sending auto login links to current subscribers
2. Do not store passwords
-
- Verify the password field is blank so that no passwords will be stored in your CRM. Go to: AccessAlly > Settings > General Setup > Set Up The Username and Password Settings
%22%20transform%3D%22translate(2.8%202.8)%20scale(5.625)%22%20fill-opacity%3D%22.5%22%3E%3Cpath%20fill%3D%22%23fff%22%20d%3D%22M147-2L56%2018%2024-16z%22%2F%3E%3Cellipse%20fill%3D%22%23d1d1d1%22%20rx%3D%221%22%20ry%3D%221%22%20transform%3D%22rotate(145.2%202.7%202)%20scale(27.66072%2046.99107)%22%2F%3E%3Cellipse%20fill%3D%22%23d5d5d5%22%20cx%3D%22200%22%20cy%3D%222%22%20rx%3D%2266%22%20ry%3D%222%22%2F%3E%3Cpath%20fill%3D%22%23fff%22%20d%3D%22M47%2018L30-16%20167-5z%22%2F%3E%3C%2Fg%3E%3C%2Fsvg%3E)
- Note the following features do not work when you don’t store passwords in your CRM.
- Verify the password field is blank so that no passwords will be stored in your CRM. Go to: AccessAlly > Settings > General Setup > Set Up The Username and Password Settings
1. Email Passwords – You will not be able to email the password to clients since it isn’t stored. This includes confirmation emails after purchase. Note: You can securely display their login info on the thank you page.
2. Auto Login Links – You will not be able to send auto login links to current email subscribers.
Reset a User Password
There are two ways that an existing user can reset their password.
1. Use the Forgot Password link on the log in form
-
- The user can click on the Forgot Password link on the login form.
- They’ll be prompted to enter their email address and get a new password.
- They’ll receive an email from WordPress that has a link to reset their password.
Note: You can update the language in your login widget to reflect how you want your users to use it.
2. Configure an Account page for your users
You can set up an Account or Profile page for your users and give them the option to update their password. Click here for more information on how to create an Account Profile page.
Alternative Ways to Emailing User Passwords
If you don’t want to email or display user passwords on AccessAlly for security or other reasons there are three alternative ways to do this for both Free and Paid Offers.
1. New User Creates Their Own Password
With this option a new user on your site will see a box on the order form to accept a pre-generated password or change this to a password of their choice. This works for both paid order form purchases and checking out for free using an AccessAlly order form.
Go to AccessAlly > Sales > Order Form Setup > Choose the order form > view Payment Success tab.
- Show templated success message on the same page – this is the only option that allows for a new user to create their own password.
- A note about what users will see the password input section.
- Checkbox if you would like to “Show password input” on the order form.
- Password Prompt allows you to customize the default wording that appears for a new user in this section.
- Allow weak passwords checkbox (not recommended!) by default there are password requirements that appear for new users creating a password to ensure safety for your site.
- The coding used to display the user password do not remove or alter this coding!
What this option looks like in the back end of an order form for an admin or tech team member setting this up.
What this option looks like on the front end to a new user that accepts the default password.
What this option looks like on the front end to a new user that creates a new password. Once the password prompt has each required item in red they can confirm their password.
Items that are required:
- The password must be at least eight characters long
- The password must contain at least one lowercase letter
- The password must contact at least one uppercase letter
- The password must contain at least one number
- The password must contain at least one special character
If this user makes future purchases the password section will be hidden because they already have a password.
Frequently Asked Questions About Users Creating a Password
Yes, we’ve added a webhook to allow external plugins to check for password strength at reset.
Yes, but only if they “check out” on an AccessAlly order form for free. This option does not work if they complete a CRM opt-in form signup, or if they fill out an AccessAlly opt-in form. This option only works AccessAlly order forms using the templated success message option at purchase.
No, this method would only work for the team leader as they are the only person paying using an AccessAlly order form. This has been added as a future feature request.
2. On-Demand Login Feature
Free Opt-ins: You can use the On-demand login feature to automatically log your new users in.
The On-Demand login will not log people in if they already have an existing account on the site – instead, it will ask them to enter their username and password. This is done for security reasons so that a stranger doesn’t use someone’s email address to gain access to their account.
3. Snappy Login Links™️ feature (never use a password)
You can opt-out of using passwords altogether with the Snappy Login Links™️ feature.
If a member already exists, you can use Snappy Login to have a one-time expiring link sent to a member’s email address that allows them to log in without a password.
4. AccessAlly Welcome Email Functionality
You can use AccessAlly’s Welcome Email to send out a password reset link to your user after they have purchased. From there they can easily set a chosen password.
5. Display the user’s login information after purchase
You can deliver your new users’ password directly after purchasing on the thank you / confirmation page. This is a good option if you don’t want to store passwords in your CRM.
Go to: AccessAlly > Offerings > Choose the offering you want to edit > Go to Forms > Click the pencil icon to edit.
Go to the Payment Success tab, and in the message area, you will add the following text:
Username: {[username]}
Password: {[password]}
This will dynamically load the username and password for the user.
Once entered, click Save.
Now when a customer purchases this Offering they will automatically be logged in and will be provided their username and password on the Thank You success page.
Password Troubleshooting
Issue: Users Receiving Empty Passwords in Welcome Emails
Step 1. Purchase using a test user to see if you can recreate the issue. If the issue presents with your test purchase, move to Step 2. If the issue doesn’t persist with your test purchase, check to make sure the contact IDs match for the user that purchased. Once the contact IDs match in your CRM and AccessAlly, resync your user.
Step 2. Check the HTTP post/webhook in your CRM
Check to make sure an HTTP post/webhook sends to AccessAlly in your campaign after someone opts in/purchases, and before the email is sent.
Step 3. Verify the HTTP post is correct
If the Webhook is in the right location, check that the URL to make sure it’s correct. Remember to check for extra spaces before or in the URL.
Find your unique HTTP Post in AccessAlly. Go to: AccessAlly > Settings > General Setup >Send HTTP Post settings > Find your HTTP Post URL.
