We have introduced the ability to bypass email verification upon login for your Billing Portal customers. Traditionally, customers are required to click a link in an email before being granted access to their Billing Portal account. This verification step, which is required on each device the customer uses to access Portal, is in place to ensure that the intended customer is the only person with access to their Billing Portal account.
Some merchants would like to make it even easier for customers to access Portal. Now, these merchants may choose to allow customers to access their Billing Portal account regardless of whether or not they have performed the verification step. To enable this option, just choose "Bypass email verification for logins" in the Billing Portal section of your Site settings:
As noted in the screenshot above, this option is less secure than requiring customers to verify their email address before accessing Billing Portal. With this setting enabled, anyone with a customer's Management Link can access their Billing Portal account. Please consider the security implications for your customers before enabling this setting.
As before, Management Links are available from a variety of sources:
- They are included at the bottom of Chargify-generated statements
- They are available from the Subscription and Customer page in the Chargify admin (you can copy & paste the link to send it to the customer yourself
- They are available via the API: http://docs.chargify.com/api-billing-portal