Customer Passwords Setup - Change it back or give us an option to have it as in v3

[WebzPro]

Many good things went into v4 but this change will cause nothing but trouble for us.

Client Passwords. Build in an option to have it as in v3.

1. You can no longer view client passwords as as full admin. This in is a must. We can no longer cross reference passwords between billing and cPanel passwords. Clients get confused, they often try to use on or the other by mistake.

2. If you send client reminder details it now changes the password in billing for the client and again you can not cross reference.

3 Changing password would be fine if the password was not tied to something else. If you use a domain mod like ReSellerClub so the client password and log in password at the registrar keeps the password the same with the change it does not update the current password at the registrar.

These are the main reasons for needing the option back. I am sure someone will bring up security but the fact is you cannot view the clients current credit card information.

[mojowill]

whilst i see the reasoning behind this i too would like this to be an optional extra feature, most of my cilents are terrible and need constant reminders, as I have a good relationship I know all my clients by name so am happy to give them their passwords. BRING BACK THE PASSWORDS!

[othellotech]

we absolutely have to have the "old-style" password system back, as WHMCS is simply one of nine inter-related systems, all of which share the user "data", so having WHMCS just change their pwd woudl seriously f-up more important systems ...

[disenioweb]

we absolutely have to have the "old-style" password system back

AGREE!!!

[Troy]

Glad I haven't upgrade yet. I agree with this request.

[jozeph]

Must systems use md5 hash as password and WHMCS have used this with success. This is a security issue and a very interestant feature implemented.

If you need to sync passwords between registrar and whmcs, I just suggest create this possibility in passwordreminder and password changes syncing both passwords.

You can still logging into user area using the Login as feature in summary and I really prefer to stay with md5 hash for MANY and MANY security roles.

I just would like to suggest other related features, like:

1- when user request a password reminder, they will set a 'force password change in next login'.

md5 hash password is very useful to integrate with many other applications over the Internet that use the same method for passwords.

I just can't see any reason to rollback this. We just need request some other features to increment this one.

[chickendippers]

While it's not crucial for us. I think WHMCS should give its clients the choice, certainly full admins should be able to see the password. After all we can see their hosting password.

[jozeph]

Password is ever a password. Would you like to know that admins from your bank or your credit card bank have access to your password?

I just prefer to know that NOBODY can see it and I would like to say to all my customers: nobody can see your password (including me). We can only change your password, but can see the current that you set.

While it's not crucial for us. I think WHMCS should give its clients the choice, certainly full admins should be able to see the password. After all we can see their hosting password.

[scurrell]

we absolutely have to have the "old-style" password system back, as WHMCS is simply one of nine inter-related systems, all of which share the user "data", so having WHMCS just change their pwd woudl seriously f-up more important systems ...

While it's not crucial for us. I think WHMCS should give its clients the choice, certainly full admins should be able to see the password. After all we can see their hosting password.

Agree whole-heartedly.

Password is ever a password. Would you like to know that admins from your bank or your credit card bank have access to your password?

Our clients expect us to know everything, including their password!

[TonsOfStores]

Our clients expect us to know everything, including their password!

Same here.

I had an actionhook to set the cPanel password to the same as the client password in 3.8. I just upgraded to 4 and have not had a chance to try this yet. It better work!

[graphtech]

we want the passwords back

[Matt]

Hi,

It's clear there's some demand for this back but until an option is added in 4.1, it would be possible to use the ClientSignup & ClientChangePassword action hooks to save the plain text version of what a user enters for their password into a custom field or custom remote table if you require it.

Matt

[MikeDVB]

It's hard to please everybody Matt but I do agree it would be nice to have the *option* to display plain-text passwords , perhaps have an option on the administrator settings to be able to view client passwords or not.

[HostOrca]

It's hard to please everybody Matt but I do agree it would be nice to have the *option* to display plain-text passwords , perhaps have an option on the administrator settings to be able to view client passwords or not.

I would not want to see my clients passwords, in my opinion all passwords should be encrypted! I do not see any reason for needing to see clients passwords, if they forget their password, then they should, or you should, reset the password.

If you need to sync the password with other applications, then write a script that when a password is created/reset in whmcs, it is then updated in the other apps.

If this is implemented then it definitely should be an option!!

[charliez]

Please bring the passwords back, we manage most of our clients accounts, they do not know almost anything about hosting or internet... we are their IT/Internet department...