Magic Login Link - Improvements

# Feature Request: Enhanced Magic Login Links with Configurable Expiry and Sub-Flows ## Current Limitation Magic login links currently have a fixed 1-hour expiry period, which significantly limits their practical application for real-world business scenarios where users need more time to respond to requests. ## Problem Statement The rigid 1-hour timeout creates several issues: - Users may not check email within the narrow time window - Business processes often require multi-day response periods - Links become unusable before users have reasonable opportunity to act - Reduces effectiveness for approval workflows, order confirmations, and similar tasks ## Proposed Enhancement: Two-Tier Approach ### Tier 1: Configurable Expiry Period (Minimum Viable Enhancement) *Basic Implementation* Allow administrators to define custom expiry periods for magic login links. *Suggested Range:* - Minimum: 10 minutes - Maximum: 14 days - Default: Current 1 hour (maintains backward compatibility) *Configuration Options:* - Minutes (10-59) - Hours (1-23) - Days (1-14) *Security Considerations:* - Clear warnings about extended expiry risks - Admin-only configuration access - Optional IP restriction for longer periods - Audit logging for extended-duration links ### Tier 2: Sub-Flow Integration (Advanced Enhancement) *Concept* Transform magic links from simple login tokens into persistent workflow triggers that remain active until expiry or completion. *Key Features:* - Link remains active until user takes action OR expiry time reached - Configurable outcomes based on user response - Multiple flow paths from single magic link - Real-time status tracking *Sub-Flow Capabilities:* - Success flow: Execute when user completes intended action - Expiry flow: Execute when link times out unused - Failure flow: Execute on authentication errors - Custom flows: Based on user selections/inputs ## Use Cases ### Business Process Examples - *Approval Workflows:* Send 3-day approval links to managers - *Order Confirmations:* 48-hour windows for purchase confirmations - *Event Registration:* Week-long RSVP periods - *Document Signing:* Multi-day signing windows - *Feedback Collection:* Extended survey response periods ### One-Click Actions - Approve/Deny requests - Confirm/Cancel orders - Accept/Decline invitations - Submit simple responses - Trigger complex workflows ## Implementation Benefits ### For Users - Reasonable time windows for decision-making - Single-click convenience maintained - Better user experience with less urgency pressure ### For Administrators - Flexible workflow design - Reduced support requests about expired links - Enhanced automation capabilities - Better business process alignment ### For Business Processes - Improved completion rates - More realistic timelines - Reduced manual follow-up required - Enhanced workflow automation ## Technical Considerations ### Security Measures - Administrator education about extended expiry risks - Optional additional authentication for sensitive actions - IP address validation options - Usage analytics and monitoring - Automatic cleanup of expired tokens ### Backward Compatibility - Maintain current 1-hour default - Existing flows continue working unchanged - Gradual migration path for enhanced features ### Performance Impact - Token cleanup processes for longer periods - Database considerations for extended storage - Monitoring for abuse or unusual patterns ## Security Considerations & Risk Mitigation ### Essential Security Requirements Recent industry vulnerabilities affecting 32+ million users highlight critical security needs for magic link implementations: **Core Security Controls** - Cryptographically secure tokens (256-bit entropy, one-time use, hashed storage) - WordPress nonce implementation and capability verification - Rate limiting with exponential backoff - Integration with WordPress security plugins **Administrator Protection (Critical)** - User blacklist preventing admin magic links without explicit authorization flag - Shorter token lifespans for admin accounts (2-5 minutes maximum) - Additional email verification for administrative authentication - IP address validation for admin-level links **Sub-Flow & Automation Security** - Real-time permission validation before workflow execution - Principle of least privilege for automated actions - Comprehensive audit logging for all magic link actions - Expired link reactivation with validity checks and permission verification ### Implementation Safeguards - Clear administrator warnings about extended expiry risks - Maximum 14-day absolute limit with security review requirements - Optional two-factor authentication for sensitive workflows - Automated monitoring for unusual authentication patterns - Integration with existing WordPress security policies ## Success Metrics - Increased magic link utilization rates - Reduced expired link complaints - Higher workflow completion percentages - Improved user satisfaction scores - Decreased manual intervention requirements This enhancement would transform magic links from a limited authentication tool into a powerful workflow automation feature, significantly expanding Flowmattic's capabilities for business process management.