Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Passwordless access to cpanel

Discussion in 'General Discussion' started by sllik, Aug 23, 2005.

  1. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    Hi

    I'm trying to integrate a password-less access to cpanel from my billing software. When we create a new account in cpanel, we have the account password stored in our local database so there is no problem creating that password-less link from our billing software to cpanel. But what if the user decides to change the password? Then this system wouldn't work anymore. If I disable the "change password" option then the user won't be able to change his main ftp and email account password (which is not good).

    I thought of adding a mysql query on the changepass.html page that will submit the new password to my database but then there is no way to know if the password was successfully changed or not as the script checks for the password strength. I wanted to fiddle around with the Passwd module that is used to change user's password in cPanel but I can't find it.

    Any ideas? Has anyone ever done this before? Is it even possible? Is there a way to disable the "change password" feature and still allow users to change their main ftp and email account passwords?

    -Thanks
     
    #1 sllik, Aug 23, 2005
  2. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    anything?????
     
    #2 sllik, Aug 23, 2005
  3. webignition

    webignition Well-Known Member

    Joined:
    Jan 22, 2005
    Messages:
    1,880
    Likes Received:
    0
    Trophy Points:
    166
    The best option I can suggest would be to investigate how this works from WHM.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 webignition, Aug 24, 2005
  4. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    what do you mean?
     
    #4 sllik, Aug 24, 2005
  5. webignition

    webignition Well-Known Member

    Joined:
    Jan 22, 2005
    Messages:
    1,880
    Likes Received:
    0
    Trophy Points:
    166
    WHM > List Accounts

    Click in the cPanel icon next to any listed account and, bingo, you're transferred passwordlessly into that account's cPanel,

    However the URL for doing so is:

    https://hostname:2087/xfercpanel/username

    and i can't find any reference to xfercpanel anywhere (i.e. locate xfercpanel finds nothing), so I expect this process is buried somewhere in the cPanel binaries, or elsewhere in some proprietory code.

    Nevertheless if, from your billing software, you have a link with an href of the form https://hostname:2087/xfercpanel/username then you should be OK, so long as you're already logged into WHM using the browser through which you'll be using your billing software . . . assuming that your billing software is a web-based app . . . that's getting you near to what you want.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 webignition, Aug 24, 2005
  6. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    yeah but that's very unsecure. you will allow them to login as a reseller.

    is there a way to edit your primary ftp and email passwords without changing your cpanel password?
     
    #6 sllik, Aug 25, 2005
    Last edited: Aug 25, 2005
  7. richy

    richy Well-Known Member

    Joined:
    Jun 30, 2003
    Messages:
    276
    Likes Received:
    1
    Trophy Points:
    168
    What you could do is put a "Change Password" system in your billing system which updates your database and then calls the WHM API to call the WHM "Change account password" system (which doesn't have the password strength checking).
     
    #7 richy, Aug 25, 2005
(You must log in or sign up to post here.)
Loading...
Similar Threads - Passwordless access cpanel
  1. Shood

    New Thread Hundreds of failed root access each day

    Shood, Jun 17, 2018 at 3:14 AM, in forum: Security
    Replies:
    2
    Views:
    50
    Shood
    Jun 17, 2018 at 12:41 PM
  2. coursevector

    Recommended Shell Access setting

    coursevector, Jun 15, 2018 at 10:30 AM, in forum: Security
    Replies:
    4
    Views:
    49
    coursevector
    Jun 15, 2018 at 4:31 PM
  3. gold123456

    htaccess redirect assistance

    gold123456, Jun 12, 2018 at 9:13 PM, in forum: General Discussion
    Replies:
    2
    Views:
    69
    cPanelMichael
    Jun 13, 2018 at 9:07 AM
  4. CloudNexus

    cPanel plugin - access account package info?

    CloudNexus, Jun 10, 2018, in forum: cPanel Developers
    Replies:
    3
    Views:
    63
    CloudNexus
    Jun 17, 2018 at 5:13 AM
  5. Robert Wiseman

    chown .htaccess files in public_html?

    Robert Wiseman, Jun 10, 2018, in forum: General Discussion
    Replies:
    2
    Views:
    61
    cPanelLauren
    Jun 11, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice