Frequently Asked Questions

Find answers to the most commonly asked questions about OneTap Login for WooCommerce.

General Questions

OneTap Login is a WordPress/WooCommerce plugin that adds Google sign-in functionality to your site. Its unique feature is Google One Tap - a popup that allows users to sign in with just one click, without any redirects or new windows.

OneTap Login is the only WordPress plugin that implements Google's native One Tap technology. Other plugins use traditional OAuth flows with redirects. One Tap provides:

No page redirects
One-click login
Higher conversion rates (up to 40% improvement)
Native Google UI

Do I need WooCommerce to use this plugin?

No! The plugin works with WordPress alone. WooCommerce integration is optional and adds features like:

Checkout sign-in
Cart page sign-in
Customer role assignment
Order attribution

Is it free?

The FREE version includes:

Google One Tap popup
Sign-in button
Basic statistics
Account linking
WooCommerce integration

The PRO version adds:

Advanced analytics
Custom redirects
Domain restrictions
Webhooks
Email marketing integration
And more

Setup & Configuration

What do I need to set up the plugin?

You need:

WordPress 5.8+ with HTTPS
A Google Cloud Console account (free)
An OAuth 2.0 Client ID and Secret
5-10 minutes for setup

Is Google Cloud Console free?

Yes! Creating a Google Cloud project and OAuth credentials is completely free. You only pay for Google Cloud services if you use them (compute, storage, etc.), which OneTap doesn't require.

Why does it need HTTPS?

Google requires HTTPS for OAuth authentication. This protects user credentials during transmission. Most modern hosts provide free SSL certificates via Let's Encrypt.

Can I use it on localhost for testing?

Yes! Google allows http://localhost as an authorized origin for development. Just add:

Authorized JavaScript origins: http://localhost:3000 (or your port)
Authorized redirect URIs: http://localhost:3000/wp-json/onetap/v1/callback

How do I get a Client ID and Secret?

Go to Google Cloud Console
Create a new project
Go to APIs & Services > Credentials
Create OAuth 2.0 Client ID (Web application type)
Add your domain to JavaScript origins
Copy Client ID and Secret to plugin settings

See our detailed setup guide for step-by-step instructions with screenshots.

Common reasons:

User not logged into Google: They need an active Google session
User dismissed it before: There's a cooldown period (2+ hours)
Third-party cookies blocked: Some browsers block them
Not using HTTPS: Required except for localhost
Wrong Client ID: Double-check your settings

How do I reset the One Tap cooldown?

The cooldown is Google's policy to prevent annoyance. To reset for testing:

Clear cookies for google.com
Or use incognito/private mode
Or wait for the cooldown to expire

Does One Tap work on mobile?

Yes, but behavior differs:

On mobile Chrome, it appears as a bottom sheet
On iOS Safari, it requires user interaction first
Some in-app browsers (Facebook, Instagram) may not support it

Can I control where One Tap appears?

Yes, in FREE version you can enable/disable One Tap. In PRO, you get more control over:

Which pages show One Tap
Delay before showing
Position hints

Can I customize the button appearance?

Yes! You can change:

Theme: Outline (light), Filled Blue, Filled Black
Shape: Pill (rounded) or Rectangular
Text: "Continue with Google", "Sign in with Google", etc.

PRO adds:

Size (small, medium, large)
Width control
Alignment

Where does the button appear?

By default:

WooCommerce My Account page
WordPress wp-login.php

PRO allows placement on:

Checkout page
Cart page
Any page via shortcode

Can I use a shortcode?

Yes (PRO feature):

[onetap_button text="continue_with" theme="filled_blue"]

See Shortcode documentation for all parameters.

User Accounts

What happens when someone signs in with Google?

New user: Account created automatically using Google email/name
Existing user (same email): Linked to existing account
Returning Google user: Logged in immediately

Absolutely! Google sign-in is an additional option. Users can:

Sign in with Google
Sign in with username/password
Use both methods interchangeably

What user data is collected?

From Google, we receive:

Email address
First and last name
Profile picture URL (not stored)
Google ID (for account linking)

We do NOT receive passwords or sensitive Google data.

What role are new users assigned?

Default roles:

With WooCommerce: Customer
Without WooCommerce: Subscriber

You can change the default role in settings. Admin, Editor, and Shop Manager cannot be assigned for security.

Can existing users link their Google account?

Yes! If the Google email matches an existing WordPress account:

FREE: Automatic linking by email
PRO: Account Merge with password verification (more secure)

Security

Is it safe to use?

Yes! OneTap Login implements multiple security layers:

JWT token validation with Google
CSRF protection
Rate limiting (10 requests/5 minutes)
Role restrictions (can't create admins)
HTTPS requirement

Can someone create an admin account via Google?

No. Administrator, Editor, and Shop Manager roles are forbidden. Even if someone tries to exploit the system, they'll get a safe default role.

What if someone has my email on a Google account I don't control?

For FREE version, you can disable automatic account linking. For PRO, Account Merge requires the existing password to be entered, preventing unauthorized access.

How is the connection to Google secured?

All communication over HTTPS
JWT tokens validated with Google's servers
Tokens are time-limited and single-use
No sensitive data stored long-term

WooCommerce

Does it work with WooCommerce Checkout Blocks?

Yes! Both Classic Checkout and Block-based Checkout are supported (PRO feature for checkout integration).

Yes (PRO feature). The Google button appears on the checkout page, allowing quick sign-in before completing purchase.

Does it preserve cart contents?

Yes! When a guest signs in with Google, their cart contents are preserved and transferred to their account.

Does it work with WooCommerce Subscriptions?

Yes, it's fully compatible with WooCommerce Subscriptions.

Compatibility

Which themes are compatible?

OneTap Login works with any properly-coded WordPress theme. We've tested with:

Storefront
Astra
Flatsome
GeneratePress
Kadence
OceanWP
Divi
And many more

Does it work with page builders?

Yes! Use the shortcode (PRO) with:

Elementor
Divi Builder
Gutenberg
WPBakery
Beaver Builder
Brizy
And others

Are there plugin conflicts?

OneTap is designed to work alongside other plugins. Known compatible:

Security plugins (Wordfence, iThemes, Sucuri)
Caching plugins (WP Rocket, W3TC, LiteSpeed)
Cookie consent plugins (CookieBot, Complianz, etc.)
2FA plugins (Two Factor, WP 2FA, etc.)

If you encounter conflicts, check our troubleshooting guide.

PRO Features

What's included in PRO?

PRO includes everything in FREE plus:

Advanced analytics with charts
Custom post-login redirects
Email domain restrictions
Shortcode for custom placement
Webhooks (Zapier, Make integration)
Email marketing integration (5 providers)
Role mapping by email domain
Welcome email editor
Pending approval workflow
Account merge with password verification
UTM tracking
Thank you page account linking
Email verification bypass
Marketing consent collection
Settings import/export
Priority support

How much does PRO cost?

Starting at:

Single Site: $9.99/month or $79/year
5 Sites: $14.99/month or $149/year
20 Sites: $24.99/month or $249/year

Lifetime licenses also available.

Is there a free trial?

We offer a 14-day money-back guarantee. Try PRO risk-free, and if it doesn't meet your needs, get a full refund.

Can I upgrade from FREE to PRO?

Yes! Your settings are preserved when upgrading. Simply:

Purchase PRO license
Install PRO version
Enter license key
All FREE settings remain

Troubleshooting

I get "Invalid Origin" error

Your domain isn't in Google Cloud Console's authorized origins. Add:

https://yourdomain.com
https://www.yourdomain.com

I get "redirect_uri_mismatch" error

Add to Authorized redirect URIs:

https://yourdomain.com/wp-json/onetap/v1/callback

Test Connection fails

Check:

Client ID is correct (no extra spaces)
Client Secret is correct
Site uses HTTPS
REST API is accessible

Button doesn't load

Check browser console for errors. Common causes:

JavaScript errors on page
Security plugin blocking
CSP (Content Security Policy) blocking Google scripts

One Tap shows then disappears

This is Google's behavior when:

User isn't logged into Google
User previously dismissed the popup
User's browser blocks it

Yes, when properly configured:

Only essential data collected
Data processing disclosed
Cookie consent integration available
User deletion supported

Possibly. Google sign-in uses cookies. OneTap integrates with 9 cookie consent plugins to delay loading until consent is given.

How do I add to my privacy policy?

Include:

That you use Google sign-in
What data is collected (email, name)
Link to Google's privacy policy
Contact info for data requests

Can users request data deletion?

Yes. Deleting a WordPress user removes:

User account
Associated Google ID
All user meta

Technical

What PHP version is required?

PHP 7.4 or higher. We recommend PHP 8.0+ for best performance.

Does it use external APIs?

Yes, it connects to:

accounts.google.com - Google authentication
oauth2.googleapis.com - Token validation

No other external services required.

Does it affect site performance?

Minimal impact:

Google's script loaded asynchronously
No database-heavy operations
Skeleton placeholder prevents CLS

Is there developer documentation?

Yes! We provide:

PHP hooks and filters
JavaScript events
REST API endpoints
Code examples

See individual feature docs for available hooks.

General Questions​

What is OneTap Login for WooCommerce?​

How is it different from other social login plugins?​

Do I need WooCommerce to use this plugin?​

Is it free?​

Setup & Configuration​

What do I need to set up the plugin?​

Is Google Cloud Console free?​

Why does it need HTTPS?​

Can I use it on localhost for testing?​

How do I get a Client ID and Secret?​

One Tap Popup​

Why isn't the One Tap popup showing?​

How do I reset the One Tap cooldown?​

Does One Tap work on mobile?​

Can I control where One Tap appears?​

Sign-In Button​

Can I customize the button appearance?​

Where does the button appear?​

Can I use a shortcode?​

User Accounts​

What happens when someone signs in with Google?​

Can users still use password login?​

What user data is collected?​

What role are new users assigned?​

Can existing users link their Google account?​

Security​

Is it safe to use?​

Can someone create an admin account via Google?​

What if someone has my email on a Google account I don't control?​

How is the connection to Google secured?​

WooCommerce​

Does it work with WooCommerce Checkout Blocks?​

Can customers sign in during checkout?​

Does it preserve cart contents?​

Does it work with WooCommerce Subscriptions?​

Compatibility​

Which themes are compatible?​

Does it work with page builders?​

Are there plugin conflicts?​

PRO Features​

What's included in PRO?​

How much does PRO cost?​

Is there a free trial?​

Can I upgrade from FREE to PRO?​

Troubleshooting​

I get "Invalid Origin" error​

I get "redirect_uri_mismatch" error​

Test Connection fails​

Button doesn't load​

One Tap shows then disappears​

GDPR & Privacy​

Is OneTap GDPR compliant?​

Do I need cookie consent?​

How do I add to my privacy policy?​

Can users request data deletion?​

Technical​

What PHP version is required?​

Does it use external APIs?​

Does it affect site performance?​

Is there developer documentation?​

Still Have Questions?​