Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Passwordless access to cpanel

Discussion in 'General Discussion' started by sllik, Aug 23, 2005.

  1. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    Hi

    I'm trying to integrate a password-less access to cpanel from my billing software. When we create a new account in cpanel, we have the account password stored in our local database so there is no problem creating that password-less link from our billing software to cpanel. But what if the user decides to change the password? Then this system wouldn't work anymore. If I disable the "change password" option then the user won't be able to change his main ftp and email account password (which is not good).

    I thought of adding a mysql query on the changepass.html page that will submit the new password to my database but then there is no way to know if the password was successfully changed or not as the script checks for the password strength. I wanted to fiddle around with the Passwd module that is used to change user's password in cPanel but I can't find it.

    Any ideas? Has anyone ever done this before? Is it even possible? Is there a way to disable the "change password" feature and still allow users to change their main ftp and email account passwords?

    -Thanks
     
    #1 sllik, Aug 23, 2005
  2. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    anything?????
     
    #2 sllik, Aug 23, 2005
  3. webignition

    webignition Well-Known Member

    Joined:
    Jan 22, 2005
    Messages:
    1,880
    Likes Received:
    0
    Trophy Points:
    166
    The best option I can suggest would be to investigate how this works from WHM.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 webignition, Aug 24, 2005
  4. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    what do you mean?
     
    #4 sllik, Aug 24, 2005
  5. webignition

    webignition Well-Known Member

    Joined:
    Jan 22, 2005
    Messages:
    1,880
    Likes Received:
    0
    Trophy Points:
    166
    WHM > List Accounts

    Click in the cPanel icon next to any listed account and, bingo, you're transferred passwordlessly into that account's cPanel,

    However the URL for doing so is:

    https://hostname:2087/xfercpanel/username

    and i can't find any reference to xfercpanel anywhere (i.e. locate xfercpanel finds nothing), so I expect this process is buried somewhere in the cPanel binaries, or elsewhere in some proprietory code.

    Nevertheless if, from your billing software, you have a link with an href of the form https://hostname:2087/xfercpanel/username then you should be OK, so long as you're already logged into WHM using the browser through which you'll be using your billing software . . . assuming that your billing software is a web-based app . . . that's getting you near to what you want.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 webignition, Aug 24, 2005
  6. sllik

    sllik Member

    Joined:
    May 9, 2005
    Messages:
    21
    Likes Received:
    0
    Trophy Points:
    151
    yeah but that's very unsecure. you will allow them to login as a reseller.

    is there a way to edit your primary ftp and email passwords without changing your cpanel password?
     
    #6 sllik, Aug 25, 2005
    Last edited: Aug 25, 2005
  7. richy

    richy Well-Known Member

    Joined:
    Jun 30, 2003
    Messages:
    276
    Likes Received:
    1
    Trophy Points:
    168
    What you could do is put a "Change Password" system in your billing system which updates your database and then calls the WHM API to call the WHM "Change account password" system (which doesn't have the password strength checking).
     
    #7 richy, Aug 25, 2005
(You must log in or sign up to post here.)
Loading...
Similar Threads - Passwordless access cpanel
  1. Elizabeta

    Changes to .htaccess file concerns

    Elizabeta, Apr 18, 2019 at 1:51 AM, in forum: General Discussion
    Replies:
    4
    Views:
    91
    cPanelMichael
    Apr 18, 2019 at 5:19 PM
  2. OETC

    IPv6 blocking, country blocking and access

    OETC, Apr 12, 2019, in forum: Security
    Replies:
    2
    Views:
    220
    cPanelMichael
    Apr 17, 2019 at 2:26 PM
  3. ev2945

    Webdav gives root access when folder is deleted

    ev2945, Apr 10, 2019, in forum: Security
    Replies:
    3
    Views:
    274
    cPanelLauren
    Apr 16, 2019 at 11:02 AM
  4. joaosavioli

    Global .htaccess

    joaosavioli, Apr 3, 2019, in forum: General Discussion
    Replies:
    3
    Views:
    257
    cPanelLauren
    Apr 4, 2019
  5. Michaelit

    SOLVED Access via WHM List Accounts Page

    Michaelit, Mar 29, 2019, in forum: General Discussion
    Replies:
    5
    Views:
    291
    Michaelit
    Apr 1, 2019

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice