CyberPanel/plogical/phpmyadminsignin.php

<?php

// Check if user is logged into CyberPanel
session_start();
if (!isset($_SESSION['userID'])) {
    // Redirect to CyberPanel login page
    header('Location: /base/');
    exit();
}

define("PMA_SIGNON_INDEX", 1);

try {
    define('PMA_SIGNON_SESSIONNAME', 'SignonSession');
    define('PMA_DISABLE_SSL_PEER_VALIDATION', TRUE);

    if (isset($_POST['token'])) {

        ### Get credentials using the token

        $token = htmlspecialchars($_POST['token'], ENT_QUOTES, 'UTF-8');
        $username = htmlspecialchars($_POST['username'], ENT_QUOTES, 'UTF-8');

        //$url = "/dataBases/fetchDetailsPHPMYAdmin?token=" . $token . '&username=' . $username;
        $url = "/dataBases/fetchDetailsPHPMYAdmin";

        //         header('Location: ' . $url);

        // Redirect with POST data

        echo '<form id="redirectForm" action="' . $url . '" method="post">';
        echo '<input type="hidden"  value="' . $token . '" name="token">';
        echo '<input type="hidden"  value="' . $username . '" name="username">';
        echo '</form>';
        echo '<script>document.getElementById("redirectForm").submit();</script>';

    } else if (isset($_POST['logout'])) {
        $params = session_get_cookie_params();
        setcookie(session_name(), '', time() - 86400, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
        session_destroy();
        header('Location: /base/');
        return;
    } else if (isset($_POST['password'])) {

        session_name(PMA_SIGNON_SESSIONNAME);
        @session_start();

        $username = htmlspecialchars($_POST['username'], ENT_QUOTES, 'UTF-8');
        $password = $_POST['password'];

        $_SESSION['PMA_single_signon_user'] = $username;
        $_SESSION['PMA_single_signon_password'] = $password;
        $_SESSION['PMA_single_signon_host'] = 'localhost';

        @session_write_close();

        header('Location: /phpmyadmin/index.php?server=' . PMA_SIGNON_INDEX);
    }
} catch (Exception $e) {
    echo 'Caught exception: ', $e->getMessage(), "\n";
    $params = session_get_cookie_params();
    setcookie(session_name(), '', time() - 86400, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
    session_destroy();
    header('Location: /dataBases/phpMyAdmin');
    return;
}
Initial commit for v2.4.3 2025-08-01 14:56:30 +05:00			`<?php`

Add PhpMyAdmin access middleware and session check for user authentication - Updated settings.py to include PhpMyAdminAccessMiddleware for enhanced access control. - Modified phpmyadminsignin.php to check user session and redirect to the login page if not authenticated. 2025-09-15 01:39:21 +02:00			`// Check if user is logged into CyberPanel`
			`session_start();`
			`if (!isset($_SESSION['userID'])) {`
			`// Redirect to CyberPanel login page`
			`header('Location: /base/');`
			`exit();`
			`}`
Initial commit for v2.4.3 2025-08-01 14:56:30 +05:00
			`define("PMA_SIGNON_INDEX", 1);`

			`try {`
			`define('PMA_SIGNON_SESSIONNAME', 'SignonSession');`
			`define('PMA_DISABLE_SSL_PEER_VALIDATION', TRUE);`

			`if (isset($_POST['token'])) {`

			`### Get credentials using the token`

			`$token = htmlspecialchars($_POST['token'], ENT_QUOTES, 'UTF-8');`
			`$username = htmlspecialchars($_POST['username'], ENT_QUOTES, 'UTF-8');`

			`//$url = "/dataBases/fetchDetailsPHPMYAdmin?token=" . $token . '&username=' . $username;`
			`$url = "/dataBases/fetchDetailsPHPMYAdmin";`

			`// header('Location: ' . $url);`

			`// Redirect with POST data`

			`echo '<form id="redirectForm" action="' . $url . '" method="post">';`
			`echo '<input type="hidden" value="' . $token . '" name="token">';`
			`echo '<input type="hidden" value="' . $username . '" name="username">';`
			`echo '</form>';`
			`echo '<script>document.getElementById("redirectForm").submit();</script>';`

			`} else if (isset($_POST['logout'])) {`
			`$params = session_get_cookie_params();`
			`setcookie(session_name(), '', time() - 86400, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);`
			`session_destroy();`
			`header('Location: /base/');`
			`return;`
			`} else if (isset($_POST['password'])) {`

			`session_name(PMA_SIGNON_SESSIONNAME);`
			`@session_start();`

			`$username = htmlspecialchars($_POST['username'], ENT_QUOTES, 'UTF-8');`
			`$password = $_POST['password'];`

			`$_SESSION['PMA_single_signon_user'] = $username;`
			`$_SESSION['PMA_single_signon_password'] = $password;`
			`$_SESSION['PMA_single_signon_host'] = 'localhost';`

			`@session_write_close();`

			`header('Location: /phpmyadmin/index.php?server=' . PMA_SIGNON_INDEX);`
			`}`
			`} catch (Exception $e) {`
			`echo 'Caught exception: ', $e->getMessage(), "\n";`
			`$params = session_get_cookie_params();`
			`setcookie(session_name(), '', time() - 86400, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);`
			`session_destroy();`
			`header('Location: /dataBases/phpMyAdmin');`
			`return;`
			`}`