Introduction
Simple-JWT-Login is a free, open-source WordPress plugin that adds JSON Web Token (JWT) authentication to the WordPress REST API. It lets mobile apps, single-page applications, and external services securely interact with your WordPress site — without exposing admin credentials.
With Simple-JWT-Login you can:
- Authenticate users and receive a signed JWT
- Auto-login users via a tokenized link
- Register and delete users programmatically
- Reset and change passwords through the REST API
- Protect any REST endpoint so it requires a valid JWT
- Refresh, validate, and revoke tokens to manage session lifecycle
Whether you're building a headless WordPress site, a React/Vue front-end, a mobile app, or a third-party integration, Simple-JWT-Login provides a clean, standards-based authentication layer.
Requirements
Before installing Simple-JWT-Login, ensure your environment meets the following minimum requirements:
- PHP 5.5 or higher
- WordPress 4.4.0 or higher
Licence
Simple-JWT-Login is open-source and distributed under the GPL 3.0 License.
Installation Guide
Setting up Simple-JWT-Login is quick and easy. Choose one of the following installation methods:
Method 1: Install from WordPress.org (Recommended)
-
Go to the Plugins menu in WordPress and click "Add New".
-
Search for "Simple JWT Login" and select "Install Now".
-
Activate the plugin when prompted.
Method 2: Download and Install Manually
-
Click "Download" to get the latest Simple-JWT-Login plugin version.
-
Upload the
.zipfile via the WordPress plugin uploader (Plugins → Add New → Upload Plugin).
-
Click "Install Now" and Activate the plugin.
Now that you've installed Simple-JWT-Login, check out the Configuration Guide to set up your JWT secret key and enable the features you need.