Nexodus Posted June 13 Share Posted June 13 I'm looking for ideas on how to synchronize a client's WHMCS password to an external system during the account creation process. Upon account creation in WHMCS there doesn't appear to be a way to 'get' the user's password to send to the external third party platform. We've tried the DecryptPassword, but now understand client's passwords are one-way-hashed, not encrypted. Is there any way to get that password before it is hashed in order to 'send' it to the third party platform? Maybe writing it to an additional field in the database, then clearing it out once it has pulled it through the API? I'm out of my depth and would appreciate any direction and will provide additional information for clarity as required. Thanks! 0 Quote Link to comment Share on other sites More sharing options...
WhmTools Posted June 27 Share Posted June 27 Why do you want to send plain password to some other system? I guess it' not a good practise. 0 Quote Link to comment Share on other sites More sharing options...
Nexodus Posted June 27 Author Share Posted June 27 Respectfully, I need to synchronize passwords across multiple platforms. I'm currently looking into the OAuth functionality and SSO. With legacy systems that don't support those models it becomes necessary (and I agree, not optimal) to get the password in an unsecured and vulnerable state to share for synchronization. Is there a way to allow an API to access the hash algorithm through the API? Many thanks. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.