webarena Posted October 1, 2008 Share Posted October 1, 2008 Hey all, I've tried looking in the forum, but can't find anything like what I want, so hoping you all or Matt might see this and be able to help. We want to be able to pass a URL to the client area of WHMCS so that it will log the user in automatically. Something like https://example.com/clientarea.php?login=blah&password=blahblah What we are trying to do is integrate our existing Plesk control panel along with one of our own in house systems with WHMCS and we only want the user to login once. We already have it so that we can login to Plesk and our internal system with one login but can't seem to figure out how to login to WHMCS automatically. this is really the last sticking point for us to put this into action the way we want, so was hoping someone else might have some knowledge on this. Thanks for any help Brad 0 Quote Link to comment Share on other sites More sharing options...
herpherp Posted October 1, 2008 Share Posted October 1, 2008 http://www.YOURDOMAIN.com/WHMCS/dologin.php?username=EMAIL@ADDRESS.com&password=WX12YR8 0 Quote Link to comment Share on other sites More sharing options...
DataHosts Posted October 1, 2008 Share Posted October 1, 2008 so not recommended to do though... 0 Quote Link to comment Share on other sites More sharing options...
chrismfz Posted October 1, 2008 Share Posted October 1, 2008 Or if you do it, at least do it somethink like that: http[b]S[/b]://www.domain.com/WHMCS/doblah.blahusername=blah... 0 Quote Link to comment Share on other sites More sharing options...
webarena Posted October 6, 2008 Author Share Posted October 6, 2008 Yep, we'll be using https so it will be as secure as it can be. Thanks for the help on that guys. Looking at it, I should have been able to figure that out lol. 0 Quote Link to comment Share on other sites More sharing options...
vanco.net Posted October 16, 2008 Share Posted October 16, 2008 I'm currently having some custom coding done for DirectAdmin that can do this securely. This utilized an API call that WHMCS can use to seamlessly pass a user from DA into WHMCS via a link within the DA panel without having to go through another login. Have you checked with Plesk to see if they provide anything along these lines? 0 Quote Link to comment Share on other sites More sharing options...
Shaun Posted October 16, 2008 Share Posted October 16, 2008 I didn't think that there was an API call to log a user into WHMCS. I was looking at making a Joomla Bridge/Login for my site. But then i realised that you can't pass into the wrapper anyway. 0 Quote Link to comment Share on other sites More sharing options...
vanco.net Posted October 18, 2008 Share Posted October 18, 2008 Well, WHMCS doesn't really have one, but DirectAdmin does. That's why I need the custom code to insert in my WHMCS panel so that it can use the DA API call. For WHMCS alone, you would have to use the link with user/pass in it, which is probably a bad idea as others have said... 0 Quote Link to comment Share on other sites More sharing options...
webarena Posted October 24, 2008 Author Share Posted October 24, 2008 Well, WHMCS doesn't really have one, but DirectAdmin does. That's why I need the custom code to insert in my WHMCS panel so that it can use the DA API call. For WHMCS alone, you would have to use the link with user/pass in it, which is probably a bad idea as others have said... Just so I'm on the same page, are you talking about a custom button/link in WHMCS that a user will click and then it passes them into Plesk? From what I've been able to see, there is actually a place that the user can click on in WHMCS that will log them into Plesk in a new window so that would work well. The issue that we face is that we are trying to combine our Plesk, WHMCS and custom CMS into a single tabbed page so that users can adminster all three sections at once. We are still running into a problem where Plesk hijacks our whole frame, so we may just have to have the users use that link in their client section instead. If I completely missed your point, please let me know 0 Quote Link to comment Share on other sites More sharing options...
Klangaroo Posted October 27, 2008 Share Posted October 27, 2008 just use cURL and send the username and password to the dologin file. Isn't that really obvious/basic? 0 Quote Link to comment Share on other sites More sharing options...
VirtualSims Posted December 10, 2008 Share Posted December 10, 2008 just use cURL and send the username and password to the dologin file. Isn't that really obvious/basic? How would you suggest doing this? 0 Quote Link to comment Share on other sites More sharing options...
joshmarty Posted November 3, 2010 Share Posted November 3, 2010 Hey, I am having the same problem that he has but I have been trying to use the VALIDATELOGIN API.. It's just that I don't know what to do with the passwordhash that I am getting. Can someone help me? 0 Quote Link to comment Share on other sites More sharing options...
laszlof Posted November 3, 2010 Share Posted November 3, 2010 just use cURL and send the username and password to the dologin file. Isn't that really obvious/basic? This wouldn't work. cURL makes requests from the server, not the client. So it would basically try to store the cookies on the server itself. 0 Quote Link to comment Share on other sites More sharing options...
afanen01 Posted January 14, 2011 Share Posted January 14, 2011 Using a password in a URL is insecure, regardless of the fact that you are using HTTPS. 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.