Create New Item
×
Item Type
File
Folder
Item Name
×
Search file in folder and subfolders...
File Manager
/
wp-content
/
plugins
/
really-simple-ssl
/
lets-encrypt
/
integrations
/
cpanel
Advanced Search
Upload
New Item
Settings
Back
Back Up
Advanced Editor
Save
<?php defined('ABSPATH') or die; require_once rsssl_le_path . 'integrations/cpanel/functions.php'; class rsssl_cPanel { public $host; private $username; private $password; public $ssl_installation_url; public function __construct() { $username = rsssl_get_value('cpanel_username'); $password = RSSSL_LE()->letsencrypt_handler->decode(rsssl_get_value('cpanel_password')); $host = rsssl_get_value('cpanel_host'); $this->host = str_replace(array('http://', 'https://', ':2083', ':'), '', $host); $this->username = $username; $this->password = $password; $this->ssl_installation_url = 'https://' . $this->host . ":2083/frontend/paper_lantern/ssl/install.html"; } public function credentials_available() { if (!empty($this->host) && !empty($this->password) && !empty($this->username)) { return true; } return false; } public function installSSL($domains) { $response = false; if (is_array($domains) && count($domains) > 0) { foreach ($domains as $domain) { $response_item = $this->installSSLPerDomain($domain); if (!$response) { $response = $response_item; } if ($response->status !== 'success') { $response = $response_item; } } } if (!$response) { $response = new RSSSL_RESPONSE('error', 'stop', __("No valid list of domains.", "really-simple-ssl")); } if ($response->status === 'success') { update_option('rsssl_le_certificate_installed_by_rsssl', 'cpanel:default'); } return $response; } public function installSSLPerDomain($domain) { $shell_addon_active = defined('rsssl_shell_path'); $key_file = get_option('rsssl_private_key_path'); $cert_file = get_option('rsssl_certificate_path'); $cabundle_file = get_option('rsssl_intermediate_path'); $request_uri = 'https://' . $this->host . ':2083/execute/SSL/install_ssl'; $payload = ['domain' => $domain, 'cert' => file_get_contents($cert_file), 'key' => file_get_contents($key_file), 'cabundle' => file_get_contents($cabundle_file)]; $response = $this->connectUapi($request_uri, $payload); if (empty($response)) { error_log('Not able to login'); update_option('rsssl_installation_error', 'cpanel:default'); $status = 'warning'; $action = $shell_addon_active ? 'skip' : 'continue'; $message = rsssl_get_manual_instructions_text($this->ssl_installation_url); } else { if ($response->status) { delete_option('rsssl_installation_error'); error_log('SSL successfully installed on ' . $domain . ' successfully.'); $status = 'success'; $action = 'continue'; $message = sprintf(__("SSL successfully installed on %s", "really-simple-ssl"), $domain); } else { update_option('rsssl_installation_error', 'cpanel:default'); error_log($response->errors[0]); $status = 'error'; $action = $shell_addon_active ? 'skip' : 'continue'; $message = __("Errors were reported during installation", "really-simple-ssl") . '<br> ' . $response->errors[0]; } } return new RSSSL_RESPONSE($status, $action, $message); } public function enableAutoSSL($domains) { $domains = implode(',', $domains); $request_uri = 'https://' . $this->host . ':2083/execute/SSL/remove_autossl_excluded_domains'; $payload = ['domains' => $domains]; $response = $this->connectUapi($request_uri, $payload); if (empty($response)) { update_option('rsssl_installation_error', 'cpanel:autossl'); error_log('The install_ssl cURL call did not return valid JSON'); $status = 'error'; $action = 'skip'; $message = rsssl_get_manual_instructions_text($this->ssl_installation_url); } else { if ($response->status) { delete_option('rsssl_installation_error'); error_log('Congrats! SSL installed on ' . $domains . ' successfully.'); $status = 'success'; $action = 'finalize'; $message = __("SSL successfully installed on {$domains}", "really-simple-ssl"); } else { update_option('rsssl_installation_error', 'cpanel:autossl'); error_log('The auto SSL cURL call returned valid JSON, but reported errors:'); error_log($response->errors[0]); $status = 'error'; $action = 'skip'; $message = __("Errors were reported during installation.", "really-simple-ssl") . '<br> ' . $response->errors[0]; } } return new RSSSL_RESPONSE($status, $action, $message); } public function connectUapi($request_uri, $payload = null) { $ch = curl_init($request_uri); curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_BASIC); curl_setopt($ch, CURLOPT_USERPWD, $this->username . ':' . $this->password); curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_BUFFERSIZE, 131072); if (null !== $payload) { curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $payload); } curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $curl_response = curl_exec($ch); error_log(print_r($curl_response, true)); curl_close($ch); return json_decode($curl_response); } public function set_txt_record($domain, $value) { $args = ['domain' => $domain, 'name' => '_acme-challenge', 'type' => 'TXT', 'txtdata' => $value, 'ttl' => '600', 'class' => 'IN', 'cpanel_jsonapi_user' => $this->username, 'cpanel_jsonapi_module' => 'ZoneEdit', 'cpanel_jsonapi_func' => 'add_zone_record', 'cpanel_jsonapi_apiversion' => '2']; $args = http_build_query($args, '', '&'); $url = 'https://' . $this->host . ':2083/json-api/cpanel'; $authstr = 'Authorization: Basic ' . base64_encode($this->username . ':' . $this->password) . "\r\n"; $curl = curl_init(); curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1); curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 0); curl_setopt($curl, CURLOPT_URL, $url); curl_setopt($curl, CURLOPT_BUFFERSIZE, 131072); $header[0] = $authstr . "Content-Type: application/x-www-form-urlencoded\r\n" . 'Content-Length: ' . \strlen($args) . "\r\n" . "\r\n" . $args; curl_setopt($curl, CURLOPT_HTTPHEADER, $header); curl_setopt($curl, CURLOPT_POST, 1); $response = curl_exec($curl); curl_close($curl); if (false === $response) { return new RSSSL_RESPONSE('error', 'stop', __("Unable to connect to cPanel", "really-simple-ssl") . ' ' . curl_error($curl)); } if (true === stristr($response, '<html>')) { return new RSSSL_RESPONSE('error', 'stop', __("Login credentials incorrect", "really-simple-ssl")); } $response_array = json_decode($response, true); if (isset($response_array['cpanelresult']['data'][0]['result']['status'])) { if ($response_array['cpanelresult']['data'][0]['result']['status']) { $status = 'success'; $action = 'continue'; $message = __("Successfully added TXT record.", "really-simple-ssl"); } else { $status = 'warning'; $action = 'continue'; $message = __("Could not automatically add TXT record. Please proceed manually, following the steps below.", "really-simple-ssl"); if (isset($response_array['cpanelresult']['data'][0]['result']['statusmsg'])) { $message .= '<br>' . $response_array['cpanelresult']['data'][0]['result']['statusmsg']; } } return new RSSSL_RESPONSE($status, $action, $message); } $event_result = (bool) $response_array['cpanelresult']['event']['result']; $preevent_result = isset($response_array['cpanelresult']['preevent']) ? (bool) $response_array['cpanelresult']['preevent']['result'] : true; $postevent_result = isset($response_array['cpanelresult']['postevent']) ? (bool) $response_array['cpanelresult']['postevent']['result'] : true; if ($event_result && $preevent_result && $postevent_result) { $status = 'success'; $action = 'continue'; $message = __("Successfully added TXT record.", "really-simple-ssl"); } else { error_log(print_r($response_array, true)); $status = 'warning'; $action = 'continue'; $message = __("Could not automatically add TXT record. Please proceed manually, following the steps below.", "really-simple-ssl"); } return new RSSSL_RESPONSE($status, $action, $message); } }