Auto login to 3rd party software from custom cPanel plugin?

abhishekkuamr

• June 08, 2018 07:49

Hello, I have a requirement where I have to develop a cpanel plugin/feature which has one external link somewhere. I want, on opening the plugin if the cpanel user clicks that external link, the user should be auto logged in to my external service. That is, in my external service, I need to verify the user (may be just verify if his cp_security_token is correct or not) and then fetch his account details. I am not able to find any relevant docs. I researched about hooks, API tokens, etc but none of them seems to provide a way to validate a cp_security_token of a cpanel user. What are different ways to achieve this? Any leads will be really helpful. Access level: WHM root Cpanel version: 70.0.46 -- Abhishek

• 

  cPanelMichael

  • June 08, 2018 16:25

  Hello @abhishekkuamr, We support the use of a few external authentication methods to access cPanel & WHM services, but we don't support using cPanel login credentials for third-party services. For instance, you could allow your server's users to log in to WHM, cPanel, and Webmail with a Google account using the instructions at:

  0
• 

  abhishekkuamr

  • June 11, 2018 05:13

  Is there any documentation around the flow of the APIs, where is the server, which code layer handles the auth, who manages the issued cp_security_tokens, who invokes the Perl Modules, etc? This will help me to check if there is any possibility to write any custom perl module which does what I need.

  0
• 

  cPanelMichael

  • June 11, 2018 15:51

  Hello @abhishekkuamr, All our of API authentication documentation is available at: Guide to API Authentication - Developer Documentation - cPanel Documentation Let us know if you have specific questions about any of these documents. Thank you.

  0
• 

  abhishekkuamr

  • June 12, 2018 01:25

  These API documentations I already went through. What I was looking looking for is internal documentation around the codes. How the code is organized, mostly the backend code, i.e. which code layer handles the auth, who manages the issued cp_security_tokens, who invokes the Perl Modules, etc? For eg: /usr/local/cpanel/Cpanel/* contains all the perl modules which has cpanel modules/functions defined. /usr/local/cpanel/base/frontend/* has the frontend files. But I need to know where is the backend code, the auth layer, the security token handler, how the complete code in organized in cpanel, which folder does what, etc?

  0
• 

  cPanelMichael

  • June 12, 2018 18:35

  Hello @abhishekkuamr, There's no documentation available for the information you are seeking. cPanel & WHM isn't open source, so not all of the files included as part of the installation are viewable. That said, if you can provide more information about the specific task you'd like to complete, I can try to guide you towards the best way to accomplish it. Thank you.

  0
• 

  Agarwal

  • April 30, 2020 11:23

  I have plugin written in PHP that allows me to login into my product via CPanel, as this plugin uses $_ENV['REMOTE_USER'> and $_ENV['REMOTE_PASSWORD'>. But if CPanel user logs in via WHM (which creates a session allows panel user to login) I don't receive values for $_ENV['REMOTE_USER'> and $_ENV['REMOTE_PASSWORD'> and hence login attempt fails. I want to implement a single sign on, is there a way to get mentioned variables values from session?

  0

Please sign in to leave a comment.