Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-1596

cPanel: Add single sign-on support to clients and staff

        Details

        • Type: New Feature
        • Status: Closed
        • Priority: Major
        • Resolution: Fixed
        • Affects Version/s: 3.4.0
        • Fix Version/s: Sponsored, 4.6.0-b1
        • Component/s: Modules
        • Labels:
          None

          Description

          Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

          Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

          Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details. (create a new task)

          As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

          Should be added to expand area and new module management tab so it's accessible from management.

            Issue Links

            is duplicated by

            Improvement - An improvement or enhancement to an existing feature or task. CORE-2376 cPanel: Update cPanel client login link to use single sign on authentication method

            • Major - Major loss of function.
            • Closed

              Activity

              Ascending order - Click to sort in descending order
              admin Paul Phillips created issue -
              tyson Tyson Phillips (Inactive) made changes -
              Field Original Value New Value
              Link This issue is duplicated by CORE-2376 [ CORE-2376 ]
              Hide
              Permalink
              admin Paul Phillips added a comment -

              See also https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication+-+Single+Sign+On

              Show
              admin Paul Phillips added a comment - See also https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication+-+Single+Sign+On
              admin Paul Phillips made changes -
              Fix Version/s Sponsored [ 11113 ]
              tyson Tyson Phillips (Inactive) made changes -
              Story Points 5
              tyson Tyson Phillips (Inactive) made changes -
              Rank Ranked higher
              tyson Tyson Phillips (Inactive) made changes -
              Rank Ranked lower
              admin Paul Phillips made changes -
              Description Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

              Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

              Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

              As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.               		Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

              Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

              Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

              As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

              Should be added to expand area and new module management tab so it's accessible from management.
              Hide
              Permalink
              admin Paul Phillips added a comment -

              The SSO session shouldn't be executed until they click the link (Don't initiate on page-load) so that we aren't making unnecessary API calls or slowing things down.

              Show
              admin Paul Phillips added a comment - The SSO session shouldn't be executed until they click the link (Don't initiate on page-load) so that we aren't making unnecessary API calls or slowing things down.
              tyson Tyson Phillips (Inactive) made changes -
              Sprint 4.6.0 Sprint 3 [ 79 ]
              tyson Tyson Phillips (Inactive) made changes -
              Rank Ranked higher
              tyson Tyson Phillips (Inactive) made changes -
              Fix Version/s 4.6.0-b1 [ 11117 ]
              tyson Tyson Phillips (Inactive) made changes -
              Sprint 4.6.0 Sprint 3 [ 79 ] 4.6.0 Sprint 3, 4.6.0 Sprint 4 [ 79, 80 ]
              tyson Tyson Phillips (Inactive) made changes -
              Rank Ranked higher
              Automated transition triggered when Tyson Phillips (Inactive) created a branch in Stash -
              Status Open [ 1 ] In Progress [ 3 ]
              tyson Tyson Phillips (Inactive) made changes -
              Remaining Estimate 0 minutes [ 0 ]
              Time Spent 51 minutes [ 3060 ]
              Worklog Id 12058 [ 12058 ]
              tyson Tyson Phillips (Inactive) made changes -
              Sprint 4.6.0 Sprint 3, 4.6.0 Sprint 4 [ 79, 80 ] 4.6.0 Sprint 3, 4.6.0 Sprint 4, 4.6.0 Sprint 5 [ 79, 80, 83 ]
              tyson Tyson Phillips (Inactive) made changes -
              Rank Ranked higher
              Automated transition triggered when Tyson Phillips (Inactive) created pull request #17 in Stash -
              Status In Progress [ 3 ] In Review [ 5 ]
              Resolution Fixed [ 1 ]
              tyson Tyson Phillips (Inactive) made changes -
              Description Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

              Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

              Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details.

              As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

              Should be added to expand area and new module management tab so it's accessible from management.               		Please see https://documentation.cpanel.net/display/SDK/Guide+to+API+Authentication#GuidetoAPIAuthentication-singlesignon

              Currently clients can click their cPanel service in the client area to expand it and get a "Log in" link. This link works so long as their username and password has not been changed in cPanel.

              Instead, it should use the single sign on feature of cPanel to create their session, which makes the password irrelevant. We should even consider removing the password field from the drop down details. (create a new task)

              As a staff member, from the clients profile page, this works identically. Instead the "Log in" link here should also make use of the single sign on feature.

              Should be added to expand area -and new module management tab so it's accessible from management-.
              tyson Tyson Phillips (Inactive) made changes -
              Time Spent 51 minutes [ 3060 ] 2 hours, 22 minutes [ 8520 ]
              Worklog Id 12062 [ 12062 ]
              jonathan Jonathan Reissmueller made changes -
              Time Spent 2 hours, 22 minutes [ 8520 ] 2 hours, 32 minutes [ 9120 ]
              Worklog Id 12074 [ 12074 ]
              Automated transition triggered when Tyson Phillips (Inactive) merged pull request #17 in Stash -
              Status In Review [ 5 ] Closed [ 6 ]

                People

                • Assignee:
                  tyson Tyson Phillips (Inactive)
                  Reporter:
                  admin Paul Phillips
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:
                    Fix Release Date:
                    28/May/19

                    Time Tracking

                    Estimated:
                    Original Estimate - Not Specified
                    Not Specified
                    Remaining:
                    Remaining Estimate - 0 minutes
                    0m
                    Logged:
                    Time Spent - 2 hours, 32 minutes
                    2h 32m

                      Agile