Hey wowzow, I wrote my own login snippet that interacts with WHMCS’s own API. When a user’s email and password is sent via Ajax the inputs are checked using cURL. The password is encrypted in the WHMCS database but there’s a hash at the end of each password. I was able to check this hash against the raw input sent by the user, plus I added some salt and validated it against each other.
Once this is confirmed a successful login message is then sent back using JSON, this successful message is received and another small request to access the user’s menu is made and displayed to you.
You can test using
email -
[email protected]
pass - test1234
After everything has been validated I add the user to modx session. Since everything is sent to a snippet in modx, values taken through cURL are easily added to the session. There’s no need to add the users to the modx user list or user groups.... pages can still be made private as well for signed in user only.
Even though I have chosen not to bother adding every user to modx, it is easily done.
Also, if you go to the cloud vps page you will see that they are sold out just now... if you were to fill in your details in the overlay, you are added to a database. Once the service is available again, you will be emailed. I might create a notify button for logged in users so they don’t have to add their email again. You are sent a confirmation of the notification request, I’ll add a hash link that can be clicked in the email to have your email removed I guess.