WordPress Portal for SuiteCRM (Work in Progress)

Show and Tell
,
1

I just wanted to share a quick update on something I’ve been working on — a WordPress-native client portal for SuiteCRM.

The goal was to build something similar to the old Joomla portal, but more modern:

  • Built entirely as a WordPress plugin (shortcodes, REST endpoints, admin settings).
  • No SuiteCRM customizations required — you just connect via OAuth2.
  • Uses the SuiteCRM V8 API, with support for both 7.x and 8.x.
  • Secure behind the WordPress login, with nonce-protected REST calls.

Right now the basics are working: case list with filters & pagination, case detail view, and case updates (including internal vs client replies). Next up is case creation and file attachment polish.

I’m putting together a quick teaser video to show where it’s at. If anyone’s interested in early testing or just getting notified when it’s ready, feel free to reach out.

Would also love any feedback — especially from anyone who’s used the Joomla portal heavily and knows what worked or didn’t.

Here’s a demo:

4 Likes
2

Great Work GIFs - Find & Share on GIPHY

1 Like
3

Just a quick update, I’ve improved the Cases Portal and added a Knowledge Base. Here’s the latest demo.

2 Likes
4

Who wants automatic case escalation by AI sentiment analysis! I do! Who hoo! This is getting exciting.

5

Oh that would be great feature! :partying_face:

6

Also working on AI case deflection. If the answer to the case is in the knowlegebase, then give the client a link to the knowledgebase.

7

That’s so awesome :partying_face: :partying_face: :partying_face:

1 Like
8

Here’s a demo of AI case escalation and AI case deflection in the SuiteCRM/WordPress Portal.

2 Likes
9

This week’s update:

1. Case Stats Dashboard

  • Displays total, open, closed, escalated, and pending cases at a glance.
  • Allows quick filtering so users can drill directly into specific case types.
  • Helps clients and staff stay on top of support workload without scanning full case lists.

2. Layered Security Model

We’ve restructured the plugin so access control is enforced consistently across shortcodes, REST endpoints, and JavaScript rendering. Highlights include:

  • User ↔ Contact Mapping: WordPress users must be explicitly mapped to a SuiteCRM Contact to view their cases.
  • Staff/User Validation: WordPress admins and staff are mapped to SuiteCRM Users, and both User ID + email address are validated against SuiteCRM before granting staff-level access.
  • Case Ownership Checks: Clients can only view case details or updates if their mapped Contact ID has a valid relationship with the case in SuiteCRM.
  • Graceful Failures: Instead of spinning loaders or raw errors, users without access now see clear messages like “You do not have access to this case. Please contact your administrator.”
  • Attachment Protection: Even file downloads (attachments on case updates) now respect the same access rules to prevent unauthorized access by guessing IDs.

Together, this makes the portal secure by default, transparent for admins, and much more user-friendly.

1 Like
10

That’s great improvement!