03-15-2008, 11:22 PM
This HowTo describes how to implement a password changer into Roundcube.
How it works
With this mod RC will set the new pasword directly in the ispcp database and call the ispCP-daemon to update the configs.
Requirements
- a working Roundcube (version 0.1.1) which is installed in ispCP's tools-directory (Please do not ask about how to install Roundcube in this thread.)
- ispCP RC4 or later (if you upgraded to RC4 from an older version you have to set the database revision to 1 (mysql -> ispcp -> config) and check for database updates in the GUI (that's because of a bug in the update-script) / mail_addr should not be empty)
I assume that the roundcube-directory and the roundcube-user are both called roundcube.
In /var/www/ispcp/gui/tools/roundcube/program/steps/settings/func.inc before line 198
add this:
In /var/www/ispcp/gui/tools/roundcube/program/steps/settings/save_prefs.inc at the beginning (line 22) add this:
This includes the functions which we need to call the ispCP-daemon.
After approximately line 31
add this:
After approximately line 40
add this:
Now we have to give the roundcube-user access to our mail_users table in the ispcp-database.
He will get only the minimum he needs: SELECT-privileges for mail_addr and UPDATE-privileges for mail_pass and status. You can do this with PMA or with the following SQL statements:
Localization
You can translate the "(empty = unchanged)" string to your default language or remove it - it should be intuitive enough.
Test it!
After a change you will lose your connection to the IMAP server and have to login again.
Post improvements if you know some. I will merge them to a final HowTo in the docu.
How it works
With this mod RC will set the new pasword directly in the ispcp database and call the ispCP-daemon to update the configs.
Requirements
- a working Roundcube (version 0.1.1) which is installed in ispCP's tools-directory (Please do not ask about how to install Roundcube in this thread.)
- ispCP RC4 or later (if you upgraded to RC4 from an older version you have to set the database revision to 1 (mysql -> ispcp -> config) and check for database updates in the GUI (that's because of a bug in the update-script) / mail_addr should not be empty)
I assume that the roundcube-directory and the roundcube-user are both called roundcube.
In /var/www/ispcp/gui/tools/roundcube/program/steps/settings/func.inc before line 198
Code:
$out .= "\n</table>$form_end";Code:
// Password MOD
$field_id = 'rcmfd_password';
$input_password = new passwordfield(array('name' => '_password', 'id' => $field_id, 'size' => 20));
$out .= sprintf("<tr><td class=\"title\"><label for=\"%s\">%s</label></td><td>%s (empty = unchanged)</td></tr>\n",
$field_id,
rep_specialchars_output(rcube_label('password')),
$input_password->show());
// End Password MODCode:
require '../../include/ispcp-functions.php';After approximately line 31
Code:
'preview_pane' => isset($_POST['_preview_pane']) ? TRUE : FALSE,Code:
// Password MOD
'password' => isset($_POST['_password']) ? TRUE : FALSE,
// End Password MODCode:
$a_user_prefs[$p] = $CONFIG[$p];Code:
// Password MOD
if (isset($_POST['_password']) && $_POST['_password']!="")
{
$tmpPass = $_POST['_password'];
$tmpUser = $_SESSION['username'];
mysql_query("UPDATE ispcp.mail_users SET mail_pass='$tmpPass', status='change' WHERE mail_addr='$tmpUser'")
or die(mysql_error());
send_request();
$_SESSION['password'] = encrypt_passwd($_POST['_password']);
}
// End Password MODHe will get only the minimum he needs: SELECT-privileges for mail_addr and UPDATE-privileges for mail_pass and status. You can do this with PMA or with the following SQL statements:
Code:
GRANT SELECT (`mail_addr`), UPDATE (`mail_pass`, `status`) ON `ispcp`.`mail_users` TO 'roundcube'@'localhost';
FLUSH PRIVILEGES;You can translate the "(empty = unchanged)" string to your default language or remove it - it should be intuitive enough.
Test it!
After a change you will lose your connection to the IMAP server and have to login again.
Post improvements if you know some. I will merge them to a final HowTo in the docu.
