This feature enables you to provide a link for your users to click that will automatically log them into your site without requiring them to enter their username and password.
AutoLogin carries additional risks with it. You will need to determine for your site if the risks outweigh the conveniences. Skip to the bottom to read more about autologin security risks.
AutoLogin URL Quickstart
After you enter your autologin auth key and save your settings, Memberium will create example links and display them at the bottom of the Memberium > Settings > HTTP Posts/Links page. You can copy these autologin URL’s into your email template, and edit the URL of the redirect page to reflect where you’d like your members to arrive to.
Memberium also provides an example autologin link to use with Order Forms and Web Forms. Autologin links all use the same kinds of parameters, but depending on what you want to do, and where your user is linking from, you will use some parameters but not others.
You must pass the users Infusionsoft Id in the link to autolog them in. (It is required that you include your own custom Auth Key when using this feature.)
How to auto log in someone from an Infusionsoft email template:
Include this for the url in your template –
How to auto log someone in from customer hub
Example Auto Log In with Redirect:
<a href="https://yourdomain.com/?memb_autologin=yes&Id=~Contact.Id~&Email=~Contact.Email~&auth_key=yourauthkey&redir=/silver-video-2/">Log In Automatically Here</a>
Example Auto Log In with Redirect and Authorization Key (*Set Auth key on your options page):
To successfully enable an autologin, the user must have:
- A username ( email address ),
- A password
- Any appropriate membership tags.
- The member being logged in must have the subscriber role.
- If you are using a full domain link as your redirect, try changing it to just a path
Having caching enabled on the site can cause issues with autologin.
If you’re on Flywheel hosting, then you’d need to enable the “Developer mode” which would disable the caching on the site.
Another workaround if you don’t want to enable the “Developer mode” is to create a new blank page, let’s say /autologin/. Once created, use this page for the autologin.
You’d then send the same link to FlyWheel and inform them to disable caching for this entire URL. Also, if you’re following this method then have the WP_Cache disabled from FlyWheel’s settings.
Memberium Autologin Link Parameters
Autologin from Email
We provide a working example autologin email code that you can copy/paste into your email links from Memberium > Settings > HTTP Posts/Links page on your website. We’ve prefilled the website link, the auth_key and the Infusionsoft email parameters. We’ve also included a sample redir= parameter. You can edit or remove the redir= parameter as needed for your link.
An example email autologin link would look something like this:
Autologin from Order Forms and Web Forms
As of Version 2.41, you can use Autologin with Infusionsoft order and webforms.
We provide a working example autologin webform code that you can copy/paste into your email links from Memberium > Settings > HTTP Posts/Links page on your website. In order to create a link for an order form or webform, you can use the Email autologin link as a starting place, and then edit it as needed for your particular use. To use the link, setup the order/web form to redirect to a custom thank you page, and check the box to pass information. This will add the necessary user information for Memberium to verify their identity and log them in.
An example form autologin link would look something like this:
3rd Party Form System Compatibility
As of the time of this writing, LeadPages does not pass the contact data to the next page, and cannot be used for Autologin.
As of the time of this writing, OptinMonster only has an option to pass the submitted contact’s name (om_name) and email (om_email). It does not pass the Infusionsoft contact Id, or other required parameters to the next page to make Autologin possible. You can read more about OptinMonster’s ability to pass lead data in redirect URL’s here.
Other Form Systems
If you’re using an order entry, or lead capture form system that’s not listed above, please contact us and we’ll help you determine if it can support autologin.
Autologin Security Concerns
Because this feature bypasses the more secure password login, it makes your site less secure to use. Anyone with access to the link can login to your user’s account, which makes it easier to share. If this lowered level of security concerns you, you can easily disable this feature. Autologin links are less secure, because the two pieces of information (The Contact ID and the Email Address) are unchanging and can be shared with any number of users. So, if a user were to change their password, it would not prevent someone with their autologin link from continuing to login as them.
Despite the reduced security, autologin is a popular request and a popular feature. It’s up to each site owner to determine if the risk outweighs the convenience for their site.
Memberium requires that your autologin Auth Key is different from your HTTP POST Auth Key in order to protect you. This prevents any users who get your autologin links from using the codes in those links to make administrative changes to your site.
How to Disable Autologin
As of Version 2.39 and higher, you can enable or disable the Autologin functionality from Memberium > Settings page.
If you do not wish autologin to be enabled for your site, you can disable autologin by leaving the Autologin Auth Key blank, or turning off the “Allow Autologin” feature from Memberium > Settings page.
Multiple Auth Keys
Memberium also supports defining multiple auth keys, by separating them with commas. This makes it simple and easy to change your keys in your action sets without breaking any links as you work on making all of the changes in your Infusionsoft email templates to migrate from an old key to a new key.
Note: Autologin from Infusionsoft Shopping Cart is not possible, because shopping carts don’t merge the fields like order form thank you page URLs do. A workaround for this is to send a purchase confirmation email with the Email Autologin link.