OneTimeAuthentificationLink
OneTimeAuthentificationLink
Section titled “OneTimeAuthentificationLink”Compatibility OTOBO ≥ 11.0.x, Znuny ≥ 7.0.x
Overview
Section titled “Overview”With the OneTimeAuthentificationLink plugin, OTOBO automatically generates single-use access tokens for customers. New users are created if necessary and receive a link via email to log in directly to their ticket portal without a password. Tokens expire after use or after a configurable period.
System Requirements
Section titled “System Requirements”- Framework: OTOBO 11.0.x
- Packages: –
- Third-Party: –
Installation
Section titled “Installation”- Via Package Manager
- Log in as an admin and open System Administration → Package Manager.
- Search for “OneTimeAuthentificationLink” and click Install.
- Manual Installation
- Unpack the plugin archive into
Kernel/Config/Files/. - In the admin area, go to System Administration → Update → Reload File System.
Configuration (SysConfig)
Section titled “Configuration (SysConfig)”Core::Auth::Customer
Section titled “Core::Auth::Customer”| Key | Description |
|---|---|
| OneTimeAuth::CustomerErrorMessageNewLink | Error message when a new link has been sent |
| OneTimeAuth::CustomerErrorMessageRefreshFailed | Message when a new token could not be generated |
| OneTimeAuth::TokenRefreshNotificationID | Notification text element for link refresh |
| OneTimeAuth::AccessDaysAfterClose | Number of days links remain valid after a ticket is closed |
| OneTimeAuth::CustomerErrorMessageLinkExpired | Error message when using an expired token |
| OneTimeAuth::CustomerErrorMessageWrongLink | Message when using an old token if a new one already exists |
Core::Email::PostMaster
Section titled “Core::Email::PostMaster”- PostMaster::PreFilterModule###000-CreateCustomerUser
Automatically creates a CustomerUser upon receipt of new emails and protects against header spoofing via
X-OTOBO-Customer.
Daemon::SchedulerCronTaskManager::Task
Section titled “Daemon::SchedulerCronTaskManager::Task”- Daemon::SchedulerCronTaskManager::Task###DeleteExpiredOTATokens Deletes expired One-Time-Authentification-Tokens of closed tickets.
- Send an email to the support address configured in OTOBO.
- If no customer with this address has been created yet, the plugin automatically creates a CustomerUser.
- Customers receive an email with a single-use valid link.
- Clicking the link opens the ticket portal without further login.
- Links expire after the first use or after the number of days defined in
AccessDaysAfterClose.
Limitations
Section titled “Limitations”- Tokens can only be used once and cannot be extended manually.
- Expiration of links must be ensured via CronTasks.
- In case of incorrect mail configuration, the automation may fail.
Support & Further Information
Section titled “Support & Further Information”- Manufacturer: Rother OSS GmbH
- Version: 11.0.3 (26.02.2025)
- Documentation: See official OTOBO documentation
- Contact: hello@otobo.de