The Complete Billing & MSP Platform for WordPress
Professional Stripe invoicing, card payments, autopay, customer portals, Autotask PSA integration, contract e-signing, white-label branding, and multi-factor authentication β a complete ecosystem for MSPs.
Three Plugins. One Powerhouse.
AJT Stripe Pro is a standalone billing engine β no WooCommerce required. MSP Hub is designed specifically as an add-on for Stripe Pro standalone, connecting your Autotask PSA, accounting packages, and white-label branding into one seamless portal. AJT MFA locks it all down with two-factor authentication.
AJT Stripe Pro
Professional standalone Stripe billing for WordPress. Invoicing, card payments, subscriptions, autopay, customer portals, and accounting sync β no WooCommerce required.
- Standalone invoicing with NET terms
- NET-7 / NET-14 / NET-30 payment terms
- Saved cards with autopay
- Customer & manager portals
- Magic link passwordless login
- Xero & QuickBooks integration
- Printable branded invoices
- Product catalogue & subscriptions
- Full admin dashboard with analytics
- Email templates & overdue reminders
AJT MSP Hub
The Autotask PSA integration layer. Connects your PSA to your billing portal with tickets, quotes, contracts, services, and complete white-label branding.
- Autotask ticket & quote portal
- Contract e-signing with audit trail
- Contract services with billing rules
- Accounting bridge (Xero/QB β Portal)
- GoCardless direct debit automation
- Friendly invoice name parsing
- White-label branding engine
- Branded login page with MFA
- Line classification & reporting
- Manager role & frontend
AJT MFA
Best-in-class multi-factor authentication. TOTP-based 2FA, hidden login, per-role enforcement, trusted devices, activity logging, and brute-force protection.
- TOTP with all major authenticator apps
- Per-role enforcement with grace period
- Trusted devices & recovery codes
- Hidden login page (secret URL)
- Activity log with IP & device tracking
- Brute-force lockout & XML-RPC blocking
- Integrates with MSP Hub branded login
- Beautiful AJT-branded admin UI
Standalone Invoicing
Create, send, and track Stripe invoices directly from WordPress. Automatic invoice numbering, overdue reminders, and a full admin dashboard β all powered by the Stripe API.
| # | Customer | Amount | Due Date | Status | |
|---|---|---|---|---|---|
| INV-2026-0147 | Pinnacle Solutions Ltd | Β£1,480.00 | 28 Feb 2026 | Pending | |
| INV-2026-0146 | Meridian Consulting | Β£2,800.00 | 21 Feb 2026 | Overdue | |
| INV-2026-0145 | Apex Digital Services | Β£950.00 | 18 Feb 2026 | Paid | |
| INV-2026-0144 | Harbour & Co | Β£3,200.00 | 15 Feb 2026 | Paid |
Card Payments & Autopay
Customers save cards via Stripe SetupIntent (no charge). When invoices arrive, autopay charges their saved card automatically. Supports 3D Secure and SCA compliance.
Magic Link Authentication
Passwordless portal access with encrypted, time-limited magic links. Generate from admin, email to customer, one-click access to the portal.
Admin Creates Link
Generate a unique, encrypted token from the admin dashboard
Email Sent
Branded email with one-click access link delivered to the customer
Token Validated
Single-use token verified server-side with expiry check
Portal Access
Customer logged in instantly β no password required
Customer Portal
A polished, tabbed customer portal where your clients view invoices, manage subscriptions, update payment methods, and edit their profile. Extensible via hooks β MSP Hub injects its own tabs seamlessly.
| Invoice | Description | Amount | Status |
|---|---|---|---|
| INV-0147 | Monthly IT Support β February | Β£1,480.00 | Pending |
| INV-0140 | Monthly IT Support β January | Β£1,480.00 | Paid |
| INV-0133 | Firewall Upgrade Project | Β£3,200.00 | Paid |
Microsoft 365 Business Premium
Per user/month Β· Β£16.60
Endpoint Protection
Per device/month Β· Β£4.50
Managed Backup
Per server/month Β· Β£45.00
Cloud Hosted Phone
Per extension/month Β· Β£12.00
Admin Dashboard
Full admin dashboard with real-time stats, invoice management, customer directory, product catalogue, email templates, branding settings, and diagnostics.
AJT Stripe Integration Pro
β LIVE MODEPrintable Branded Invoices
Print-ready invoices with your company logo, colours, bank details, and payment terms. Professional layout that looks great on screen and paper.
| Description | Qty | Amount |
|---|---|---|
| Monthly IT Support β February | 1 | Β£1,280.00 |
| Ad-hoc: Printer repair | 1 | Β£200.00 |
Accounting Sync & Diagnostics
Push invoices and payments to Xero or QuickBooks Online with OAuth2 integration. Two-way data flow keeps your books accurate without manual double-entry. Built-in diagnostics keep everything healthy.
Xero Sync
OAuth2 authentication, invoice push, payment sync, and contact matching. Two-way data flow keeps books accurate automatically.
QuickBooks Online
OAuth2, invoice push, payment sync, customer matching, and multi-currency support. Sandbox and production modes.
Diagnostics Panel
Connection health checks, Stripe API test calls, webhook verification, license repair, and system status β all from one dashboard tab.
Autotask PSA Integration
Full bi-directional Autotask integration. Tickets, quotes, and contract services sync automatically on a scheduled basis and on-demand whenever changes are made. Your customers view and interact with their PSA data through the portal.
Contract E-Signing
Template-based contracts with DOCX processing, merge fields, and full e-signing workflow. Draw-to-sign on any device with IP/user-agent audit trail.
Create & Send
Build from DOCX templates with merge fields. Auto-populate customer data from Autotask. Send via branded email.
Review & Sign
Customer reviews terms on a branded signing page. Draw signature on any device.
Audit & Archive
IP address, user agent, and timestamp recorded. Signed PDF generated and stored. Contract status updated.
White-Label Branding
Complete white-label system with theme picker, colour palette, typography, logo, and per-surface overrides. Try it β click a colour below.
Your Company Name
Welcome, Sarah Mitchell
Contracts Manager & Billing Rules
Give your team and customers easy-to-use tools for managing contract services. Configurable billing rules control how quantity changes are priced β per-service, per-customer, with anniversary, immediate, or end-of-month effective dates.
Real-World Scenario: Helpdesk Engineer Adds M365 Licenses
Your helpdesk engineer is on the phone with a customer who needs 5 more Microsoft 365 licenses. With MSP Hub, they can see the full picture and make changes without touching Autotask, QuickBooks, or any privileged admin system β and with an approval layer before anything fires an API call.
Frontend shortcode β no wp-admin access needed. They see every service on the contract: current quantities, unit prices, billing period, and renewal dates.
Billing rules calculate the effective date automatically (e.g. immediate with pro-rata). Minimum quantity guardrails are enforced. The engineer sees the price impact before confirming.
The change is saved as a pending record β no APIs are called yet. An admin or contracts manager with approval rights reviews the change, sees the billing impact, and approves or rejects.
On approval, the system updates the Autotask contract service quantity, syncs to the accounting platform, and adjusts the local database cache. All in one atomic operation with error handling and rollback.
The next billing cycle picks up 17 licenses at the correct effective date. Pro-rated charges are calculated by Autotask. The customer sees the updated quantity in their portal immediately.
Accounting Bridge, GoCardless & Friendly Invoices
The accounting bridge pulls invoices from Xero or QuickBooks into the customer portal. It auto-configures GoCardless direct debit, parses cryptic accounting line items into friendly names, and classifies every line for financial reporting.
AllowOnlineACHPayment = true on all their unpaid QuickBooks invoices via sparse API updates. GoCardless then collects payment on the due date β no manual intervention needed.From Autotask to Customer Payment β Fully Automated
See how a single invoice flows through the entire stack β from the moment it is created in Autotask to the point where your customer pays by direct debit, without you lifting a finger.
Invoice Created in Autotask
Your PSA generates a monthly contract invoice with service lines β M365 licenses, endpoint protection, managed backup, etc. Each line references an Autotask service with its own cryptic internal naming.
Synced to QuickBooks / Xero
Autotask pushes the invoice to your accounting platform. For QuickBooks this is native; for Xero, MSP Hub provides the bridge at no extra cost β eliminating the need for a third-party connector.
Accounting Bridge Pulls into MSP Hub
MSP Hub queries your accounting platform via OAuth2, imports the invoice, matches the customer, and stores it locally. Runs automatically on a scheduled sync and on-demand whenever changes are detected β no waiting around.
Friendly Names & Classification Applied
The parsing engine strips Autotask prefixes, extracts date ranges and prorated tags, then matches each line against your service map to replace cryptic names with customer-friendly descriptions. Every line is classified for financial reporting.
GoCardless Direct Debit Configured
For DD customers, the bridge automatically sets AllowOnlineACHPayment on the QuickBooks invoice via sparse API update. GoCardless picks this up and schedules collection on the due date.
Customer Receives Friendly Invoice
The customer sees a clean, branded invoice in their portal with readable service names, clear line items, and a simple payment interface. For DD customers, payment collects automatically on the due date β for card customers, they click to pay.
Multi-Factor Authentication
AJT MFA is a standalone plugin that adds best-in-class TOTP-based two-factor authentication to WordPress. Per-role enforcement, trusted devices, activity logging, hidden login, and a beautiful admin dashboard. Integrates seamlessly with the MSP Hub branded login.
Branded Login, Emails & Dashboard
Complete portal branding. Replace wp-login.php with a branded login page, AJT MFA challenges redirect seamlessly, and every notification email uses your company template.
Built Secure From Day One
Every line of code follows WordPress security best practices. Encryption at rest, nonces on every request, capability checks on every function.
AES-256 Encryption
All sensitive data encrypted at rest with separate key chains for client and server.
RSA JWT Licensing
RS256 asymmetric tokens. Private key stays on the server. Mathematically impossible to forge.
Nonce Everything
Every AJAX endpoint and admin form uses WordPress nonce verification. No exceptions.
Server-Side Prices
Prices always looked up server-side from the product catalogue. Never trust client-submitted amounts.
Input Sanitisation
Every input through sanitize_text_field(), sanitize_email(), intval(), or sanitize_textarea_field().
Capability Checks
Admin functions gate on manage_options. Portal functions gate on is_user_logged_in() or magic-link tokens.
Self-Hosted Licensing. Built From Scratch.
Every AJT plugin is protected by our own server-authoritative licensing platform β not Freemius, not EDD, not a third-party SaaS. We built it ourselves, and it is more secure than anything off the shelf. Yes, our plugins call home β here is exactly what that means and why it matters.
RSA Asymmetric Tokens (RS256)
License tokens are signed with a 2048-bit RSA private key that lives only on our server. Client plugins verify tokens with the public key β token forgery is mathematically impossible, even with full access to the plugin source code.
Continuous Heartbeat Verification
Premium plugins check in every 10 minutes via background cron. Each heartbeat refreshes the license token, syncs the plugin version, and delivers any pending commands. If your server loses connectivity, a 2-hour grace period keeps everything running.
Sentinel MU-Plugin
A must-use WordPress plugin that loads on every request. It monitors file integrity via hash verification, detects colocation tampering, and enforces license downgrade if compliance fails. Because it is an MU-plugin, it cannot be deactivated from the admin UI.
Secure Update Delivery
Plugin updates are served directly from ajt.support β not from WordPress.org, not from a CDN. Update checks verify the site UUID and license status before delivering the package. No valid license, no updates.
License Keys & Activation Limits
Agency and multi-site plans get a license key with a configurable activation limit. The server tracks how many sites are active per key. Hitting the limit blocks new activations until a site is deactivated β enforced server-side, not client-side.
Full Audit Trail
Every registration, heartbeat, tamper report, status change, and command dispatch is logged with timestamps and metadata. The admin dashboard shows the complete history per site β useful for support and compliance.
Yes, Our Plugins Call Home β Here Is What We Send
Every AJT plugin contacts ajt.support for license verification. We are transparent about exactly what is transmitted: your site domain, the plugin version, a unique site UUID (generated on first activation), and an HMAC-signed request for authentication. That is it. We do not collect user data, analytics, telemetry, browsing behaviour, or anything about your customers. The heartbeat exists solely to verify your license is valid and to deliver updates. All communication is encrypted over HTTPS with HMAC replay protection.
ποΈ AJT Licensing Platform
πͺ Typical SaaS (Freemius, EDD, etc.)
Clean Uninstall. Zero Residue.
When you deactivate and delete, every trace is removed. Custom database tables, options, transients, cron events, user meta, pages, and rewrite rules β all cleaned up.
Database Tables
Custom tables dropped on uninstall. Both plugins clean their own tables independently.
Options & Transients
All wp_options keys (27+ per plugin) and pattern-based transients removed cleanly.
Cron Events
All scheduled cron hooks unregistered β no orphaned events lingering in wp-cron.
User Meta
All plugin-specific user meta keys cleaned from every user in the database.
Auto-Created Pages
Portal pages and dashboards auto-created by the plugin are removed on uninstall.
Rewrite Rules
Custom rewrite rules and permalink structures flushed on deactivation. No stale routes left behind.
Coming Soon
The MSP Bundle is under active development. Here is what is on the roadmap β subscribe today and these features will be included in your existing license at no extra charge.
Giacom Integration
Direct integration with the Giacom billing platform. Sync product catalogues, automate license provisioning, and reconcile monthly billing β all from within the MSP Hub admin.
- Product catalogue sync
- Automated license provisioning
- Monthly billing reconciliation
- Customer-facing service catalogue
- Quantity change management
Roll Your Own Billing Provider
A developer-friendly framework for integrating any billing provider β not just Giacom. Define your API endpoints, field mappings, and sync rules. MSP Hub handles the scheduling, error recovery, and portal integration.
- Provider adapter framework
- Configurable API endpoint mapping
- Field mapping & data transforms
- Webhook receiver for real-time sync
- Built-in retry & error recovery
- Full portal integration for end users
MSP Bundle
AJT Stripe Pro + MSP Hub together at a discount. Save when you buy both plugins together.
- All three plugins
- Automatic updates
- Priority email support
- Cancel any time
- All three plugins
- Automatic updates
- Priority email support
- Save vs monthly
- 2-day remote installation
- Full stack configuration
- Billing rules & service map
- Staff training walkthrough
- VPS hosting from Β£25/mo
- Managed hosting from Β£50/mo
- Server maintained by AJT
- Optimised for Stripe Pro
Guided Installations & Consultation
Not sure where to start? We offer guided installation sessions where we walk you through the entire setup β Stripe configuration, Autotask API connections, accounting bridge, white-label branding, and portal deployment. Every MSP is different, and we tailor the install to your workflow.
Guided Installation
We set up the full stack on your WordPress site β Stripe API keys, Autotask credentials, Xero/QB OAuth, branding, portal pages, and MFA. Typically 1β2 hours depending on complexity.
Configuration Review
Already installed? We audit your setup β billing rules, accounting bridge settings, service map, classification rules, and security configuration. We optimise what is there and flag what is missing.
Custom Requirements
Need something specific? We can scope custom development, integrations, or workflow modifications. The plugin architecture is designed to be extensible via WordPress hooks and filters.
Contact Us
Interested in the AJT MSP Bundle? Send us a message and we will get back to you.