championc Posted June 19, 2023 Share Posted June 19, 2023 (edited) Hi all, I found a post from 2016 with the following code, which no longer works. What changes would be made to allow it to work with the current code ? Original thread - <?php if (!defined("WHMCS")) die("This file cannot be accessed directly"); function hook_ForceEveryoneToLogin($vars) { $clientID = intval($_SESSION['uid']); $adminID = intval($_SESSION['adminid']); if ($adminID===0){ if (!in_array($vars['filename'], array("login","dologin","clientarea","pwreset", "register")) && $clientID===0){ header("Location: login.php"); exit; } } } add_hook("ClientAreaPage", 1, "hook_ForceEveryoneToLogin"); Edited June 19, 2023 by championc 1 Quote Link to comment Share on other sites More sharing options...
DennisHermannsen Posted June 19, 2023 Share Posted June 19, 2023 You can use this: <?php use WHMCS\Authentication\CurrentUser; use WHMCS\Config\Setting; add_hook('ClientAreaPage', 1, function ($vars) { $user = new CurrentUser; $templateFile = $vars['templatefile']; if(!$user->isAuthenticatedUser and !in_array($templateFile, ['login', 'dologin', 'pwreset', 'register', 'clientarea'])) { $systemURL = Setting::where('setting', 'SystemURL')->first(); $systemURL = $systemURL->value; if(!str_ends_with($systemURL, '/')){ $systemURL = $systemURL.'/'; } header("Location: {$systemURL}login.php"); exit(); } }); 1 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted June 21, 2023 Share Posted June 21, 2023 I'm so happy to have run across this post as I've been looking without success for exactly this kind of hook. While the redirect to the login page works great, it is having difficulty redirecting properly when a client actually logs in. Too many redirects or improper redirect. Does anyone know where that might be occurring in the above code? Thank you to the OP and to Dennis! 0 Quote Link to comment Share on other sites More sharing options...
DennisHermannsen Posted June 22, 2023 Share Posted June 22, 2023 It seems I was too quick when writing that script. Try this instead. It also allows admins to browse the client area. <?php use WHMCS\Authentication\CurrentUser; use WHMCS\Config\Setting; add_hook('ClientAreaPage', 1, function ($vars) { $user = new CurrentUser; $templateFile = $vars['templatefile']; if(!$user->isAuthenticatedUser() and !$user->isAuthenticatedAdmin() and !in_array($templateFile, ['login', 'dologin', 'pwreset', 'register', 'clientarea'])) { $systemURL = Setting::where('setting', 'SystemURL')->first(); $systemURL = $systemURL->value; if(!str_ends_with($systemURL, '/')){ $systemURL = $systemURL.'/'; } header("Location: {$systemURL}login.php"); exit(); } }); 1 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted June 22, 2023 Share Posted June 22, 2023 It works! You're a hero! 🙂 Thank you! 0 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted July 6, 2023 Share Posted July 6, 2023 Just as an FYI, the pwreset exclusion was not working. It needs to be changed to password-reset-container. 🙂 0 Quote Link to comment Share on other sites More sharing options...
championc Posted July 6, 2023 Author Share Posted July 6, 2023 Can you provide the necessary complete code ? 0 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted July 7, 2023 Share Posted July 7, 2023 Sure - the code provided originally by DennisHermannsen is just altered slightly in the templateFile array. <?php use WHMCS\Authentication\CurrentUser; use WHMCS\Config\Setting; add_hook('ClientAreaPage', 1, function ($vars) { $user = new CurrentUser; $templateFile = $vars['templatefile']; if(!$user->isAuthenticatedUser() and !$user->isAuthenticatedAdmin() and !in_array($templateFile, ['login', 'dologin', 'password-reset-container', 'register', 'clientarea'])) { $systemURL = Setting::where('setting', 'SystemURL')->first(); $systemURL = $systemURL->value; if(!str_ends_with($systemURL, '/')){ $systemURL = $systemURL.'/'; } header("Location: {$systemURL}login.php"); exit(); } }); 0 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted July 24, 2023 Share Posted July 24, 2023 I'm going to add another item to the array and repost this - fyi, it's the invitation for new users. It is possible that there will be more things that come up that need to be excluded in the array, but I'm not sure what those might be. Anyway, here' s the updated code: <?php use WHMCS\Authentication\CurrentUser; use WHMCS\Config\Setting; add_hook('ClientAreaPage', 1, function ($vars) { $user = new CurrentUser; $templateFile = $vars['templatefile']; if(!$user->isAuthenticatedUser() and !$user->isAuthenticatedAdmin() and !in_array($templateFile, ['login', 'dologin', 'password-reset-container', 'register', 'clientarea', 'user-invite-accept'])) { $systemURL = Setting::where('setting', 'SystemURL')->first(); $systemURL = $systemURL->value; if(!str_ends_with($systemURL, '/')){ $systemURL = $systemURL.'/'; } header("Location: {$systemURL}login.php"); exit(); } }); 0 Quote Link to comment Share on other sites More sharing options...
DennisHermannsen Posted July 24, 2023 Share Posted July 24, 2023 The hook (along with the latest addition) has been added to this repository: https://github.com/DennisSkov/WHMCS-Hooks-and-Modules 1 Quote Link to comment Share on other sites More sharing options...
MBayDesign Posted July 24, 2023 Share Posted July 24, 2023 Thanks for that Dennis! 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.