This works for both affiliate and refer-a-friend portals. It reduces the friction of the login step; partners still complete authentication with their one-time code or password. For a fully login-free experience, contact support about single-use sign-in links.
URL parameters
Append these query parameters to your portal’s login URL (/login):
| Parameter | Required | Description |
|---|---|---|
email | Optional | Prefills the login email field with this value and locks it so it can’t be edited. |
autosubmit | Optional | When set to 1, automatically submits the first login step as soon as the page loads (for one-time-code logins, this sends the code immediately). |
Usage
Add the email to the login URL
Link to your portal’s login page and include the partner’s email. This works whether you set it as an iframe Replace
src or open it directly:partners.yourdomain.com with your portal domain.Optionally skip the first click
Add
autosubmit=1 to request the one-time login code automatically, so the partner lands directly on the code-entry step:If embedding, allow your site to embed the portal
Only relevant when embedding: your website’s domain must be added to the portal’s allowed embedding domains (the same whitelist used by the portal widget). Otherwise the browser will block the iframe. When opening the login URL directly, no whitelist is needed.
What the partner sees
- The login screen opens with the email already filled in and locked.
- With
autosubmit=1, the one-time code is requested immediately; otherwise the partner clicks the login button. - The partner enters the code sent to their email (or their password) and lands on their dashboard.
Behavior and limitations
One-time-code logins
autosubmit requests the login code automatically. The partner still enters the emailed code.Password logins
The email is prefilled and locked, but
autosubmit is ignored — there is no password to submit automatically.Bot protection
If Cloudflare Turnstile is enabled on your portal, auto-submit waits until the challenge is completed.
Invalid email
If the
email value isn’t a valid email address, it is ignored and the normal login screen is shown.This feature only prefills the login step — it does not bypass authentication. Partners still verify their identity via the one-time code or password.
