OK, it was easy to adjust Jim's script to have a user change his mailbox password and quota remotely without logging on to Cpanel.
Simply take the same script that creates the email account and change the line that starts with $in to (all on one line):
$in = &GET /frontend/USER_THEME/mail/dopasswdpop.html?email=$email&domain=$domain&password=$password1&a=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
Make sure your form's input names match the email, password and quota variables on this line.
Replace the USER_THEME with bluelagoon, default, iconic or whatever the theme for the account is and leave all the rest in the script as is.
Simply take the same script that creates the email account and change the line that starts with $in to (all on one line):
$in = &GET /frontend/USER_THEME/mail/dopasswdpop.html?email=$email&domain=$domain&password=$password1&a=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
Make sure your form's input names match the email, password and quota variables on this line.
Replace the USER_THEME with bluelagoon, default, iconic or whatever the theme for the account is and leave all the rest in the script as is.
& wouldn't that let anyone be able to change anyone's password though ?
Yes it would. So we need to build some kind of protection. Perhaps a secret word could be confirmed by the user and matched against a MySQL table before going through the cpanel step.
Yes it would. So we need to build some kind of protection. Perhaps a secret word could be confirmed by the user and matched against a MySQL table before going through the cpanel step.
oh yeah and if you want it to redirect to another page after making the account:
right after
fputs($socket,$in);
fclose( $socket );
put :
header(&Location: index.php&
; /* Redirect browser */
exit; /* Make sure that code below does
not get executed when we redirect. */
make the index.php file whereever you want to redirect too.
right after
fputs($socket,$in);
fclose( $socket );
put :
header(&Location: index.php&
; /* Redirect browser */exit; /* Make sure that code below does
not get executed when we redirect. */
make the index.php file whereever you want to redirect too.
I actually have adapted getting user info and storing it in a database like name address and stuff but it is used with vBulletin forum software.
Now the last step I need to add to it would be something to check whatever encrytion the pw has maybe md5 ?
to another password to enable the user to beable to change the pw.
let me know if you guys have any ideas
Now the last step I need to add to it would be something to check whatever encrytion the pw has maybe md5 ?
to another password to enable the user to beable to change the pw.
let me know if you guys have any ideas
[quote:fe2bd1e4bc][i:fe2bd1e4bc]Originally posted by Snarf[/i:fe2bd1e4bc]
to another password to enable the user to beable to change the pw.
let me know if you guys have any ideas[/quote:fe2bd1e4bc]
What do webmail sites normally when you sign with them?
to another password to enable the user to beable to change the pw.
let me know if you guys have any ideas[/quote:fe2bd1e4bc]
What do webmail sites normally when you sign with them?
Yeah, I mean that, I think they normally ask you personal questions, not another password, like, what's your pet name and what's your birthday, etc.
(Of course everybody lies on those and trying to guess all the answers is worst than trying to guess the password )
(Of course everybody lies on those and trying to guess all the answers is worst than trying to guess the password
)hehe
yeah that might be something we could do maybe store the personal info like dogs name or something in the db then compare it with what they type and there username and if all matches up then send them a new password.
but what i was wanting to do and i don't know where to start is to compare a password they type (after submitted) it would be encrypted with a password in a file. then if it matches whatever password they have in teh change password field it would change it to that.
I might just put a link in the login part of for forget password to email the webmaster/admin to change it for them, but I really wouldn't wnat to know or change there password for them!
yeah that might be something we could do maybe store the personal info like dogs name or something in the db then compare it with what they type and there username and if all matches up then send them a new password.
but what i was wanting to do and i don't know where to start is to compare a password they type (after submitted) it would be encrypted with a password in a file. then if it matches whatever password they have in teh change password field it would change it to that.
I might just put a link in the login part of for forget password to email the webmaster/admin to change it for them, but I really wouldn't wnat to know or change there password for them!
For thoes of your that used Jim Carters neomail create script.
There is an error in that after you create the email account the user will not beable to login to neomail the reason for this is the cpanel password and user name conflict with the form that is made with it to fix it do this.
Original:
&?
if ($submit){
$host = &www.domain.com&;
$domain = &domain.com&;
$socket = fsockopen($host,2082);
$user = &cpaneluser&;
$password = &cpanelpass&;
$authstr = &$user:$password&;
$pass = base64_encode($authstr);
$in = &GET /frontend/default/mail/doaddpop.html?email=$email&domain=$domain&password=$password&quota=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
fputs($socket,$in);
fclose( $socket );
}
else {
?&
&form method=post&
Username:&input type=text name=email&&br&
Password:&input type=password name=password&&br&
Quota:&input type=text name=quota&
&input type=submit name=submit&
&?
}
?&
Fixed version:
&?
if ($submit){
$host = &www.domain.com&;
$domain = &domain.com&;
$socket = fsockopen($host,2082);
// these lines are changed
$cpaneluser = &cpaneluser&;
$cpanelpass = &cpanelpass&;
$authstr = &$cpaneluser:$cpanelpass&;
//****************************
$pass = base64_encode($authstr);
$in = &GET /frontend/default/mail/doaddpop.html?email=$email&domain=$domain&password=$password&quota=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
fputs($socket,$in);
fclose( $socket );
}
else {
?&
&form method=post&
Username:&input type=text name=email&&br&
Password:&input type=password name=password&&br&
Quota:&input type=text name=quota&
&input type=submit name=submit&
&?
}
?&
There is an error in that after you create the email account the user will not beable to login to neomail the reason for this is the cpanel password and user name conflict with the form that is made with it to fix it do this.
Original:
&?
if ($submit){
$host = &www.domain.com&;
$domain = &domain.com&;
$socket = fsockopen($host,2082);
$user = &cpaneluser&;
$password = &cpanelpass&;
$authstr = &$user:$password&;
$pass = base64_encode($authstr);
$in = &GET /frontend/default/mail/doaddpop.html?email=$email&domain=$domain&password=$password&quota=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
fputs($socket,$in);
fclose( $socket );
}
else {
?&
&form method=post&
Username:&input type=text name=email&&br&
Password:&input type=password name=password&&br&
Quota:&input type=text name=quota&
&input type=submit name=submit&
&?
}
?&
Fixed version:
&?
if ($submit){
$host = &www.domain.com&;
$domain = &domain.com&;
$socket = fsockopen($host,2082);
// these lines are changed
$cpaneluser = &cpaneluser&;
$cpanelpass = &cpanelpass&;
$authstr = &$cpaneluser:$cpanelpass&;
//****************************
$pass = base64_encode($authstr);
$in = &GET /frontend/default/mail/doaddpop.html?email=$email&domain=$domain&password=$password&quota=$quota HTTP/1.0\r\nAuthorization: Basic $pass \r\n&;
fputs($socket,$in);
fclose( $socket );
}
else {
?&
&form method=post&
Username:&input type=text name=email&&br&
Password:&input type=password name=password&&br&
Quota:&input type=text name=quota&
&input type=submit name=submit&
&?
}
?&
Hey, guys!
Does that pasword change line ACTUALLY work? For some reason it doesn't work for me - it executes with no problems but the password isn't changed.
Adding new accounts works, so I'm pretty sure I didn;t mess up the script.
I even tried to put all those parameters in the browser and call them directly as a url address. CPanel reports &password for [email protected] changed successfuly& but in reality it doesn't change. It changes when I POST the form from the CPanel only.
The problem with POST is that I can't have my scripts executed from the same place where CPanel is and I guess that's why it fails.
Help!
Does that pasword change line ACTUALLY work? For some reason it doesn't work for me - it executes with no problems but the password isn't changed.
Adding new accounts works, so I'm pretty sure I didn;t mess up the script.
I even tried to put all those parameters in the browser and call them directly as a url address. CPanel reports &password for [email protected] changed successfuly& but in reality it doesn't change. It changes when I POST the form from the CPanel only.
The problem with POST is that I can't have my scripts executed from the same place where CPanel is and I guess that's why it fails.
Help!
can any 1 do a bit where it will email them if sucess full at there current email address and have a bit where if its fails you send it to a failed bit and if it works then it says so