What's Changed

• Bump js-yaml by @dependabot[bot] in #55
• Bump node-forge from 1.3.1 to 1.3.2 by @dependabot[bot] in #56
• Bump lodash from 4.17.21 to 4.17.23 by @dependabot[bot] in #60
• Bump lodash-es from 4.17.21 to 4.17.23 by @dependabot[bot] in #59
• Bump qs and express by @dependabot[bot] in #58
• Bump phpunit/phpunit from 9.6.16 to 9.6.33 by @dependabot[bot] in #62
• Bump qs and body-parser by @dependabot[bot] in #61
• Bump qs from 6.14.1 to 6.14.2 by @dependabot[bot] in #64
• Bump webpack from 5.102.1 to 5.105.0 by @dependabot[bot] in #63

Full Changelog: 2.6.2...2.6.3

• [Added] Admin notice when placeholder encryption keys/salts are in use.
• [Fixed] Added capability checks for the settings page.
• [Fixed] Improved validation of $_SERVER variables.
• [Improved] Settings import file validation.

Full Changelog: 2.6.1...2.6.2

What's Changed

• Tested with WP 6.9
• [Updated] Dependencies.
  • Bump axios from 1.10.0 to 1.11.0 by @dependabot[bot] in #50
  • Bump tar-fs from 3.1.0 to 3.1.1 by @dependabot[bot] in #52
  • Bump tmp and inquirer by @dependabot[bot] in #53
  • Bump playwright and @playwright/test by @dependabot[bot] in #54

Full Changelog: 2.6...2.6.1

• [Added] Ability to override TTL and token validity on a per-user basis.
• [Updated] Dependency packages to latest versions.
• Read the full update: Magic Login PRO 2.6

• [Added] No-cache headers for magic login links to prevent caching issues.

• [New] Tools Section – Added reset, export, and import options in the settings panel. Learn more
• [Updated] Settings UI – Visual and structural improvements to reflect new PRO features.
• [Updated] Dependencies.
• [Changed] Minimum PHP version raised to 7.4.
• Read the full update: Magic Login 2.5

• [Added] New filter magic_login_email_placeholders to customize email placeholders.
• [Updated] Dependencies.
• Tested with WP 6.8

• Small tweaks and improvements.

• [New Feature] Code Login – Users can log in with a code sent to their email or phone number instead of clicking a link.
• [Improvement] UI update for SMS Login feature. Learn More
• [Improvement] Applied login_redirect filter before magic_login_redirect to allow other plugins to modify the redirect URL.
• [Improvement] login.php is now deprecated in favor of LoginManager class.
• [Fix] Properly encode the redirection URL on the wp-login page.
• [Fix] Corrected various typos. Props @szepeviktor
• Read the full update: Magic Login 2.4

• [Fixed] Ensure proper handling of email recipient for {{MAGIC_LINK}} integration.
• [Fixed] French translation.
• [Improved] Applied array_shift() to extract the first recipient if $atts['to'] is an array.