Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

How to retrieve list of accounts user owns?

Discussion in 'cPanel Developers' started by dansgalaxy, Sep 4, 2009.

  1. dansgalaxy

    dansgalaxy Well-Known Member

    Joined:
    Jan 29, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    156
    Location:
    Reading, UK
    cPanel Access Level:
    Root Administrator
    Hi,

    Im developing/developed a Process Manager Plugin for cPanel to show a users processes etc, i would like to extend the ability of this so resellers can view and kill their users processes as well as their own.

    To do this i need to somehow get a list of the accounts which the reseller owns... How can i do this?



    Also on a side note does anyone know how to return a process owner from just the PID?

    Thanks.
    Dan
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 dansgalaxy, Sep 4, 2009
  2. gearheadhost

    gearheadhost Member

    Joined:
    Jun 14, 2009
    Messages:
    14
    Likes Received:
    0
    Trophy Points:
    51
    to get the accounts owned by USER do...

    grep USER /etc/trueuserowners | cut -f1 -d :

    if you want to get a domain name and a user name do...

    for n in `grep USER /etc/trueuserowners | cut -f1 -d :`; do echo $n; grep $n /etc/trueuserdomains | cut -f1 -d : ; done

    and for the PID owner

    ps aux | grep PID | grep -v grep | awk {'print $1'}

    replace PID with the PID obviously
     
    #2 gearheadhost, Sep 5, 2009
  3. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,216
    Likes Received:
    10
    Trophy Points:
    313
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    In case anyone who finds this thread in the future is looking for an XML API solution, the listaccts function can return this information for you:

    Code:
    /xml-api/listaccts?searchtype=owner&search=DavidG
    The above URL returns all accounts owned by DavidG on that server.
     
    #3 cPanelDavidG, Sep 8, 2009
  4. dansgalaxy

    dansgalaxy Well-Known Member

    Joined:
    Jan 29, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    156
    Location:
    Reading, UK
    cPanel Access Level:
    Root Administrator
    Ah great, that seems the easiest way :)

    Been a while since i looked at how to use the API..

    What would be the best way to return that in a cPanel Plugin?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 dansgalaxy, Sep 9, 2009
  5. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,216
    Likes Received:
    10
    Trophy Points:
    313
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    The trickiest thing I see here is storing the login credentials (user/hash or user/pass) for the XML API. cPanel plugins run as the cPanel user, which means the cPanel user must have access to all files the plugin references. This essentially opens up privilege escalation possibilities if done improperly.

    I'm not a master of Unix system permissions, but maybe others have recommendations on how to do this securely.
     
    #5 cPanelDavidG, Sep 9, 2009
  6. dansgalaxy

    dansgalaxy Well-Known Member

    Joined:
    Jan 29, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    156
    Location:
    Reading, UK
    cPanel Access Level:
    Root Administrator
    Right ok, :/

    I trying
    $xml = simplexml_load_file("https://root:ROOTPASS@domain.co.uk:2087/xml-api/listaccts?
    searchtype=owner&search=".$user);

    Which seems to be working, although it would be good to have a way so dont have the root info hardcoded into script :/

    Perhaps a good idea could be to have cPanel WHM have a sort of script key, so have an API to allow you to run root scripts etc like this using a key which is managed in WHM, this way dont have to have root info and root can always disable the key for a script if its being misused :/

    (im not talking about the root hash key im thinking a seperate hash key for each script which needs to do something like this.)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #6 dansgalaxy, Sep 10, 2009
(You must log in or sign up to post here.)
Loading...
Similar Threads - retrieve list accounts
  1. Sashwatp

    Could not retrieve mirrorlist error

    Sashwatp, Dec 6, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    191
    Infopro
    Dec 6, 2018
  2. theallan

    upcp failed - needs-restarting-cpanel Could not retrieve mirrorlist

    theallan, Dec 18, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    389
    cPanelMichael
    Dec 18, 2017
  3. Jerald Feller

    SOLVED FTP connects but Failed to retrieve directory listing

    Jerald Feller, Sep 18, 2017, in forum: General Discussion
    Replies:
    9
    Views:
    20,752
    Michael Legg
    Oct 16, 2017
  4. Neha9516

    Retrieve Database from suspended account?

    Neha9516, Jan 2, 2019, in forum: Database Discussion
    Replies:
    2
    Views:
    95
    cPanelLauren
    Jan 4, 2019
  5. screege

    Retrieve backups from google drive

    screege, Oct 25, 2017, in forum: Data Protection
    Replies:
    1
    Views:
    568
    cPanelMichael
    Oct 26, 2017

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice