Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-1596

cPanel: Add single sign-on support to clients and staff

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.4.0
    • Fix Version/s: Sponsored, 4.6.0-b1
    • Component/s: Modules
    • Labels:
      None

      Description

      Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

      Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

      Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details. (create a new task)

      As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

      Should be added to expand area and new module management tab so it's accessible from management.

        Issue Links

          Activity

          admin Paul Phillips created issue -
          tyson Tyson Phillips (Inactive) made changes -
          Field Original Value New Value
          Link This issue is duplicated by CORE-2376 [ CORE-2376 ]
          Show
          admin Paul Phillips added a comment - See also https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication+-+Single+Sign+On
          admin Paul Phillips made changes -
          Fix Version/s Sponsored [ 11113 ]
          tyson Tyson Phillips (Inactive) made changes -
          Story Points 5
          tyson Tyson Phillips (Inactive) made changes -
          Rank Ranked higher
          tyson Tyson Phillips (Inactive) made changes -
          Rank Ranked lower
          admin Paul Phillips made changes -
          Description Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

          Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

          Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

          As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.
          Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

          Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

          Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

          As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

          Should be added to expand area and new module management tab so it's accessible from management.
          Hide
          admin Paul Phillips added a comment -

          The SSO session shouldn't be executed until they click the link (Don't initiate on page-load) so that we aren't making unnecessary API calls or slowing things down.

          Show
          admin Paul Phillips added a comment - The SSO session shouldn't be executed until they click the link (Don't initiate on page-load) so that we aren't making unnecessary API calls or slowing things down.
          tyson Tyson Phillips (Inactive) made changes -
          Sprint 4.6.0 Sprint 3 [ 79 ]
          tyson Tyson Phillips (Inactive) made changes -
          Rank Ranked higher
          tyson Tyson Phillips (Inactive) made changes -
          Fix Version/s 4.6.0-b1 [ 11117 ]
          tyson Tyson Phillips (Inactive) made changes -
          Sprint 4.6.0 Sprint 3 [ 79 ] 4.6.0 Sprint 3, 4.6.0 Sprint 4 [ 79, 80 ]
          tyson Tyson Phillips (Inactive) made changes -
          Rank Ranked higher
          Automated transition triggered when Tyson Phillips (Inactive) created a branch in Stash -
          Status Open [ 1 ] In Progress [ 3 ]
          tyson Tyson Phillips (Inactive) made changes -
          Remaining Estimate 0 minutes [ 0 ]
          Time Spent 51 minutes [ 3060 ]
          Worklog Id 12058 [ 12058 ]
          tyson Tyson Phillips (Inactive) made changes -
          Sprint 4.6.0 Sprint 3, 4.6.0 Sprint 4 [ 79, 80 ] 4.6.0 Sprint 3, 4.6.0 Sprint 4, 4.6.0 Sprint 5 [ 79, 80, 83 ]
          tyson Tyson Phillips (Inactive) made changes -
          Rank Ranked higher
          Automated transition triggered when Tyson Phillips (Inactive) created pull request #17 in Stash -
          Status In Progress [ 3 ] In Review [ 5 ]
          Resolution Fixed [ 1 ]
          tyson Tyson Phillips (Inactive) made changes -
          Description Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

          Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

          Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

          As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

          Should be added to expand area and new module management tab so it's accessible from management.
          Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

          Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

          Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details. (create a new task)

          As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

          Should be added to expand area -and new module management tab so it's accessible from management-.
          tyson Tyson Phillips (Inactive) made changes -
          Time Spent 51 minutes [ 3060 ] 2 hours, 22 minutes [ 8520 ]
          Worklog Id 12062 [ 12062 ]
          jonathan Jonathan Reissmueller made changes -
          Time Spent 2 hours, 22 minutes [ 8520 ] 2 hours, 32 minutes [ 9120 ]
          Worklog Id 12074 [ 12074 ]
          Automated transition triggered when Tyson Phillips (Inactive) merged pull request #17 in Stash -
          Status In Review [ 5 ] Closed [ 6 ]

            People

            • Assignee:
              tyson Tyson Phillips (Inactive)
              Reporter:
              admin Paul Phillips
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Fix Release Date:
                28/May/19

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 2 hours, 32 minutes
                2h 32m

                  Agile