Cart 0 Product Products (empty)

No products

To be determined Shipping

0,00 € Total

Prices are tax excluded

Check out

Product successfully added to your shopping cart

Quantity

Total

There are 0 items in your cart. There is 1 item in your cart.

Total products (tax excl.)

Total shipping (tax excl.) To be determined

Total (tax excl.)

Continue shopping Proceed to checkout

New

View larger

Customer Access — PrestaShop secure support module

Model medcustomeraccess

Log in to the front-office as any customer in one click, restore their cart on demand — for support and debugging, securely and GDPR-friendly.

More details

Data sheet

Version	1.0.0
Core modifications (override)	No
Third party subscription:	No
Translation :	bg-da-de-el-es-et-fi-fr-hu-it-ja-nl-pl-pt-ro-sk-sv-uk
Compatible Prestashop 1.6	Yes
Compatible Prestashop 1.7	Yes
Compatible PrestaShop 8	Yes
Compatible PrestaShop 9	Yes
Responsive Design	Yes
Multi Shop compatible:	Yes
Free module download	https://link.prestatoolbox.fr/medcustomeraccess

More info

The problem

A customer reports a bug that can only be reproduced on their account: a cart that empties itself, a promo that won’t apply, a missing shipping method, an incorrect B2B price…

Asking for their password? Out of the question: GDPR, security, and they won’t share it anyway. Reproducing with a test account? You won’t see their actual cart or specific settings.

The solution

Customer Access generates a secure one-shot link that opens a front-office session logged in as that customer. You see exactly what they see, with their cart if you choose to.

No password exchange, full audit log in the database, HMAC-SHA256 signed tokens, configurable expiration. GDPR-friendly, traceable, revocable.

How it works

Open the customer profile in the back-office

On any customer’s page in the back-office, a Customer Access block appears automatically with their email and a « Load latest cart » checkbox.

Click « Connect as this customer »

The module generates a unique HMAC-SHA256 token, stored hashed in the database with your employee ID, the IP and the timestamp.

Instant diagnostic on the front-office

A new tab opens straight on the FO with the customer’s session active, their cart restored if requested. You reproduce the issue in seconds.

Detailed features

Secure link

48-character HMAC-SHA256 signed token
Stored as hash only in the database, never in plain text
Configurable expiration from 1 to 1440 minutes (24 hours)
Reusable within the TTL window if the first click fails
Per-shop secret key, generated at installation

Cart restoration

Load the customer’s latest non-ordered cart
Or target a specific cart by its ID
Cart restored at the exact moment of FO login
actionAuthentication hook fired like a real login
Compatible with price rules, customer groups and restrictions

Full audit log

Trace of every generation: employee, customer, related cart
Admin IP, generation date, first-use date
Dedicated table ps_medcustomeraccess_log
No modification of native PrestaShop tables
Last 20 connections displayed in the Configuration tab

Access restriction

Option to restrict generation to super-administrator profiles
Automatic verification of the customer account state (active or disabled)
Link automatically invalidated if the customer is deleted
Configurable post-login redirect URL

Back-office integration

« Customer Access » block automatically added to every customer profile
Configuration tab with customer auto-complete search (email, name, ID)
Token validity, logging and restriction settings
Available in 17 languages included

Security and compliance

HMAC-SHA256 signed tokens with a per-shop secret key
GDPR-friendly: no customer password exchange
Full audit log stored in the database
actionAuthentication hook fired for third-party modules
Compatible with the TouchWeb Charter for responsible cybersecurity

Use cases

Technical support

A customer reports a bug in their checkout. You reproduce it in seconds without needing their credentials, seeing exactly what they see with their actual settings.

Cart and promotion debugging

A promo doesn’t apply? A specific B2B price rule? A missing carrier? You load their real cart and check the exact calculation.

Multi-country and multi-language testing

A foreign customer reports a missing shipping method or an incorrect VAT rate: log in as them to validate the actual configuration as seen from their country.

Quality audit and B2B pricing

Verify what a B2B customer sees with their specific prices, customer groups, category restrictions and negotiated conditions.

Installation

Download the module from your PrestaToolBox account.

Install it from your back-office (Modules > Module Manager > Upload a module).

The module automatically creates its log table and generates a unique secret key for your shop.

Set the token validity duration and security options in the Configuration tab.

Activate your Mediacom87 license to receive update notifications and priority support.

Changelog

1.0.0 - 04/20/2026

Initial release
Secure, one-time HMAC-signed access links to log in as a customer on the front-office
Optional cart restoration (latest cart or a specific cart ID)
Configurable token validity (1 to 1440 minutes)
Full audit log with employee, customer, cart, IP and usage status
Optional restriction to super-admin profile
Configurable post-login redirect URL
« Connect as » button injected on the admin customer profile page
Riot.js tabbed admin interface (Configuration, About, Security, Changelog)
Compatible PrestaShop 1.6 - 9.x, PHP 5.6+

Interested in product

Tell us your interest in this product and we will contact you for more details.

Full name

Your URL

Your message

[0/]

By checking this box you agree that we may use this information to contact you..

: Fields marked with an asterisk are required.

Reviews