Skip to main content

Completely Uninstall Wordpress Toolkit including users

Comments

95 comments

  • cPRex Jurassic Moderator
    Hey there! I've been doing some testing with this today and it seems that the first time you access the WordPress Toolkit option in WHM it automatically performs a scan in the background, adding that line to the wp-config.php files. It's important to note that the WPTK software doesn't get automatically installed as part of the cPanel update. You have to activate this after the update in your next WHM login session through the Feature Manager, or manually install it at a later time. This is outlined in our documentation here:
    0
  • mtbwacko
    Yeah, but the problem is I can't check the Select All box to detach all of the installations at once because the "Select All / Mass Manage" feature is only available in the Premium version, so I would have to purchase the premium version, then Select All to unattach all of my client's web sites, just to uninstall the app! Surely you realize how ridiculous this is. So I am forced to detach hundreds of web sites one at at time just to uninstall the app?
    0
  • cPRex Jurassic Moderator
    You wouldn't have to do that manually through the app if it detected many hundreds of Wordpress installations. You could create a script to manually remove the one line from the wp-config.php for all accounts at once, which will effectively do the same thing.
    0
  • mtbwacko
    Yes, I understand I could write a script, but that makes me very nervous if something goes wrong with it and it nukes hundreds of wp-config.php files. I guess I'll figure something else, but let this be a warning to any one who reads this and wants to remove the Wordpress Toolkit after it's been installed. What a pain!
    0
  • cPRex Jurassic Moderator
    I did confirm with the Wordpress Toolkit engineers that any of the "batch update" type functions require the Deluxe version of Wordpress Toolkit. They are going to adjust the interface so that is more obvious in future releases, so there will be a warning in addition to the buttons being non-clickable.
    0
  • timmmmyboy
    Is there an additional command that can be run to not show the toolkit installation request on next login after running rpm -e wp-toolkit-cpanel? We'd like to make sure the servers we manage don't accidentally get it enabled again after we've uninstalled it.
    0
  • cPRex Jurassic Moderator
    Are you referring to the Feature Showcase being displayed in WHM? If so, you can enable/disable the Feature Showcase with the presence of this touch file on the system: touch /var/cpanel/activate/features/disable_feature_showcase
    UPDATE: You can remove Wordpress Toolkit from the Feature Showcase with this command: touch /var/cpanel/activate/features/wordpress_toolkit_install
    It's important to note that WPT does not auto-install on any system. It either needs to happen through the Feature Showcase link, or manually on the command line.
    0
  • timmmmyboy
    Great, thank you! Our main issue is that while yes it is not installed by default, it's pretty easy for someone to think they are *supposed* to click on through and with it being enabled by default and highlighted we anticipate some of our staff may inadvertently enable it. The touch command will help prevent that.
    0
  • kernow
    It's important to note that WPT does not auto-install on any system. It either needs to happen through the Feature Showcase link, or manually on the command line.

    Not so! On our servers running CL 7* we had the choice when logging in to WHM to disable it from the showcase, but on a server running CL6 it auto installed, it wasn't even listed on the WHM 'Feature showcase' login page :( And just like @mtbwacko we also resent the fact that a program would alter all of our user's files without any warning.
    0
  • wintech2003
    we also resent the fact that a program would alter all of our user's files without any warning.

    Yeah, that shouldn't be happening at all - let alone without a warning. The fact that a server admin installed WPT to check it out, doesn't mean their customer data should be altered just because they launched the app.
    0
  • custer
    Hi everyone, I'm the person responsible for WordPress Toolkit on R&D side. Sorry to hear about your troubles with WPT -- let me explain what's going on with the 'WP_AUTO_UPDATE_CORE' constant added to wp-config.php file. I'm going to assume that not everyone here is a WordPress expert, so I hope you'll forgive me if I state something you already know. TLDR version is also available at the bottom, if you're short on time. What is 'WP_AUTO_UPDATE_CORE' constant? The 'WP_AUTO_UPDATE_CORE' constant in wp-config.php file is a standard WordPress constant (see
    0
  • cPRex Jurassic Moderator
    Thanks to @custer for that helpful post. I'd also like to point out that after some additional research, WPT *will* auto-install if you update cPanel and Wordpress Manager is detected, which is something we weren't aware of at the time I posted last week. The best way to keep the software from being installed at all would be to add the RPM to the yum exclude line on the server. Due to the reasons mentions by @custer we are currently not exploring a more automated method to remove that line from the wp-config.php file.
    0
  • ffeingol
    @custer First, I understand that WP_AUTO_UPDATE_CORE is a standard WordPress constant and that you are just setting it to the default value. This is still very problematic. We (like I assume most web hosts) tell our clients that we will never modify anything in their web site unless they open a support request and request a change. This (even if it's in a minor way) breaks that trust. We hosting is 100% a commodity now (with a race to zero) so one of the important things that differentiates us from everyone else is our service and support. If we start to break that trust (even in tiny ways), it hurts our reputation. The good news is that all our servers are on LTS, so we don't even have to think about this until next April (hopefully) so al the issues about how to keep this from installing will be long solved.
    0
  • kernow
    @custer thank you for your reply. Full update, minor update, plugin update etc are all available options of course from within 'Softaculous' which thousands of us already have installed. And please in future, do not alter or edit our clients files without our express permission! It doesn't look good when we have to explain to our clients that although we host their websites, some third party software called "cPanel" has edited them without asking us !!!
    0
  • Josh Cobb
    In the WP Toolkit documentation, it says: Note: Changes you make directly in WordPress are synchronized with WordPress Toolkit once every 24 hours. Is there a cron doing the work here? If so, where has it been created?
    0
  • cPRex Jurassic Moderator
    @Josh Cobb - can you let me know where you're seeing that in the documentation? I'm not seeing that at WordPress Toolkit | cPanel & WHM Documentation when I checked just now.
    0
  • custer
    @ffeingol @kernow You make a very good point about trust as a cornerstone principle, can't argue with that. I've talked to WordPress Toolkit dev team about this particular issue. We are planning to change the way WPT behaves in the next WPT update -- specifically, unless the user explicitly changes the WP core autoupdate setting via WPT, this constant should not be added. As for the existing WP_AUTO_UPDATE_CORE constants already added to wp-config.php files by WPT, the plan is to remove them during the update to the next WPT version. If this constant has a particular comment left by WPT, we'll know it wasn't the user who added it, so we'll remove it. I know you've already uninstalled WPT from your servers, but the product cannot perform any actions if it's not installed. If installing WPT again is unacceptable to you for some reason, let us know -- we'll see if we can create a one-off script outside of WPT that will do the job. Sorry for the inconvenience, and I hope that sometime later down the road you might give WordPress Toolkit another chance.
    0
  • bradlee
    Since the editing of the wp-config.php files.. I tested some manual Wordpress upgrades and they have now switched to the dev/nightly versions. This is a huge issue. There has to be some way for cPanel to support the reversal of this almost malicious (not intended) action.
    0
  • ozfiddler
    So I have just discovered that I also have had this line added to my config files. I never signed up for WP Toolkit and I don't want WP Toolkit. But, more of a worry, I am not even using WordPress on most of my sites. I use ClassicPress. Are you aware of this WP fork? If you look at Softaculous or Installatron you will see that it is available as a separate installation. Why is WP Toolkit messing around with my ClassicPress files?
    0
  • cPRex Jurassic Moderator
    @ozfiddler - I'm looking into this now and hope to have some more details soon.
    0
  • cPRex Jurassic Moderator
    @ozfiddler - we've opened a case with the Wordpress Toolkit development team to get this resolved. You can follow along with that here for updates: WordPress Toolkit Incorrectly Detects ClassicPress as a WordPress Instance
    0
  • ozfiddler
    Great. Thanks for the prompt response @cPRex . I also see there is this article now... WordPress Toolkit Incorrectly Detects ClassicPress as a WordPress Instance
    0
  • cPRex Jurassic Moderator
    Whoops - that was supposed to be the same link I posted earlier, but mine didn't expand properly for some reason. I've fixed that now.
    0
  • Josh Cobb
    @Josh Cobb - can you let me know where you're seeing that in the documentation? I'm not seeing that at
    0
  • Josh Cobb
    Just my two cents, whoever thought it was a smart idea to force WP Toolkit on the latest 92.* update, or worse if it was an oversight, needs to step into the real world of how we run our businesses. With 400+ websites under management and a staging server with hundreds of WP installs and projects in development, having to remove WP Toolkit and all of the associated files and folders in WP Uploads directories is still ongoing after a week. Might just be us thinking this, but WP Toolkit have blown their chances of us ever using their software. Trust and partnerships are the cornerstone of business and they always will be - something WP Toolkit's team need to step into the real world and learn. It's simply unacceptable and arrogant to think you can force your software onto businesses who have run successfully and profitably without it.
    0
  • atlanticadigita
    We want to completely remove WPT from servers that have been upgraded. Is there an option within WHM to be able to completely remove WPT from the server? If so, where is it? Thank you
    0
  • cPRex Jurassic Moderator
    @Josh Cobb - thanks for that clarification. The wp-toolkit-scheduled-tasks service executes tasks from a ScheduledTasks table inside the WPT sqlite database. @atlanticadigita - the best way to remove the software is to uninstall the RPM from the server.
    0
  • kernow
    I see wp-toolkit is now part of a yum mirror check. Run 'yum clean all', then 'yum update' and just under the kernelcare mirror check it lists: wp-toolkit-cpanel wp-toolkit-cpanel/primary_db wp-toolkit-thirdparties wp-toolkit-thirdparties/primary_db
    Its just itching to re-install itself isn't it? !!
    0
  • cPRex Jurassic Moderator
    We do add the repos, but it won't reinstall automatically after you've removed it.
    0
  • kernow
    We do add the repos, but it won't reinstall automatically after you've removed it.

    My comment was tongue in cheek ;)
    0

Please sign in to leave a comment.