WooCommerce WooCommerce

DataFirefly Social Connect — Social login & analytics for WooCommerce

One-click sign-in via 6 social networks + detailed analytics + A/B testing

Six social providers (Google, Apple, Facebook, Microsoft, LinkedIn, X) with a full analytics dashboard, order attribution, A/B testing and anti-fraud. One install, six sign-in buttons, and the exact measurement of their impact on your revenue.

At a glance
  • 6 social providers: Google (+ One-Tap), Apple, Facebook, Microsoft, LinkedIn, X
  • Stats dashboard: sign-ins, registrations, attributed orders, revenue, top countries
  • Button A/B testing + anti-fraud (IP velocity) + MaxMind geolocation
  • CSV export, native GDPR compliance, HPOS and blocks compatible
v1.1.0 6 providers HPOS GDPR A/B testing
  • 30-day refund
  • 12 months updates
  • 24h support
www.datafirefly.com/en/
DataFirefly Social Connect — Social Login & Analytics for WooCommerce
v1.1.0 · updated 2026-05-28
What it does

The short version.

01

6 social providers

Google (with One-Tap), Apple (Sign in with Apple ES256), Facebook (Graph v19 + appsecret_proof), Microsoft (identity platform), LinkedIn (OpenID Connect), X (OAuth2 + PKCE) — one plugin for every button.

02

Detailed analytics

Sign-ins, registrations, linked accounts, attributed orders, revenue, conversion rate, breakdown by provider and device, top countries — native canvas charts, zero CDN dependency.

03

Order attribution

Every WooCommerce order placed by a customer who signed in socially is attributed back to its provider — you measure real ROI, not just click counts.

04

Built-in A/B testing

Compare two button looks (style, shape, layout, label) with impressions, conversions, per-variant rate and an automatic winner. 50/50 cookie assignment, no external service.

05

Anti-fraud & native GDPR

Per-IP velocity limiting (configurable thresholds, timed block), disposable emails blocked, hashed or disabled IP storage, native WordPress export and erasure.

06

HPOS + blocks + clean code

100% compatible with HPOS and WooCommerce Cart & Checkout Blocks. Strictly-typed PHP 8, PSR-4, zero external dependencies, native canvas charts, multilingual FR / EN / ES / DE / IT.

The long version

Everything you'd want to know before you install.

A detailed look at how DataFirefly Social Connect — Social login & analytics for WooCommerce works, why we built it the way we did, and the thinking behind the features above.

§ 01

Six social sign-ins in a single plugin

Instead of installing one plugin per provider, Social Connect bundles Google (with One-Tap), Apple (Sign in with Apple), Facebook, Microsoft (identity platform), LinkedIn and X (Twitter) into a single extension. Every authentication flow is implemented properly: full JWKS signature verification for Google One-Tap, on-the-fly ES256 signing of the Apple client secret, appsecret_proof hardening for Facebook, S256 PKCE for X. No simulation — these are the real OAuth 2.0 / OpenID Connect protocols.

§ 02

Measure what matters: attributed orders

Most social-login plugins count button clicks. Social Connect goes much further: every WooCommerce order placed by a customer who signed in socially is attributed back to its originating provider. You know exactly how much revenue Google brought you, how much Apple, how much LinkedIn — and how much each A/B variant converts. Dashboard KPIs include sign-ins, registrations, linked accounts, attributed orders, revenue, conversion rate, breakdown by device and top countries.

§ 03

Button A/B testing with zero third-party service

Compare two looks (filled / outline / minimal style, rounded / pill / square shape, stacked / inline layout, "Continue with…", "Sign in with…" or icon-only label) with measured impressions, conversions and per-variant rate. The winning variant is highlighted automatically on the dashboard. No external service calls: everything is measured in your database, GDPR-compliant by construction.

§ 04

Anti-fraud designed for exposed stores

A store with social login is also a target for credential-stuffing attempts and automated account creation. Social Connect includes per-IP velocity limiting (attempts per rolling window + block duration, all configurable), a disposable-email filter (extensible via WordPress filter) and hashed IP storage by default (HMAC-SHA256 with wp_salt). The block event is logged in the recent activity for audit.

§ 05

Privacy and GDPR at the heart of the design

Three IP-storage modes (full, hashed, or none), geolocation through the MaxMind database WooCommerce already embeds (no external calls), personal-data export and erasure integrated with WordPress's native Tools, an events table kept separate from the linked-accounts table to make erasure easier without losing statistical aggregates. GDPR-compliant across the EU and beyond.

§ 06

Premium code, performance preserved

Written in strictly-typed PHP 8, PSR-4 architecture without Composer dependencies, charts rendered with native HTML5 canvas (no CDN, no Chart.js), SQL indexes on filter columns, JWKS public keys and Apple client secret cached, database-version management with automatic dbDelta migration. HPOS and Cart & Checkout Blocks compatibility declared by the book.