• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Inviting everyone to the UX test of a new security feature in the WP Toolkit
    For WordPress site owners, threats posed by hackers are ever-present. Because of this, we are developing a new security feature for the WP Toolkit. If the topic of WordPress website security is relevant to you, we would be grateful if you could share your experience and help us test the usability of this feature. We invite you to join us for a 1-hour online session via Google Meet. Select a convenient meeting time with our friendly UX staff here.

Forwarded to devs allow_insecure_sites=false locked SSL options in customer level

nethubonline

nethubonline

Regular Pleskian
User name: nethubonline

TITLE

allow_insecure_sites=false locked SSL options in customer level

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

Plesk Obsidian Version 18.0.28 Update #2

PROBLEM DESCRIPTION

Service plan with "-manage_phosting true -allow_insecure_sites false" locks the SSL options in customer level, customer cannot disable the SSL by themselves. I found this problem did not exist in Plesk 17.8 .

STEPS TO REPRODUCE

plesk bin service_plan -c "Plan_A" -manage_phosting true -allow_insecure_sites false
plesk bin customer --create test-a.com -name test-a.com -passwd "abc1234@XYZ"
plesk bin subscription --create test-a.com -owner test-a.com -service-plan "Plan_A" -login test-a -passwd "abc1234@XYZ" -ip 1.2.3.4

plesk bin service_plan -c "Plan_B" -manage_phosting true -allow_insecure_sites true
plesk bin customer --create test-b.com -name test-b.com -passwd "abc1234@XYZ"
plesk bin subscription --create test-b.com -owner test-b.com -service-plan "Plan_B" -login test-b -passwd "abc1234@XYZ" -ip 1.2.3.4
Click to expand...

ACTUAL RESULT

Login as customer "test-a.com" > Hosting Settings > SSL/TLS support & SEO redirect are locked

test-a.jpg



Login as customer "test-b.com" > Hosting Settings > SSL/TLS support & SEO redirect are NOT locked

test-b.jpg

EXPECTED RESULT

SSL/TLS support and SEO redirect are not locked


test-b.jpg



ANY ADDITIONAL INFORMATION

According to Plesk doc, allow_insecure_sites is for web hosting scripting, which should not affects SSL.

"Allows or prohibits overriding server-wide security policy on web hosting scripting options, if the policy is set up."
service_plan: Hosting Plans

YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Confirm bug
 
Last edited:
Thank you for the report. The issue was confirmed and submitted as PPPM-12160
 
You must log in or register to reply here.

Similar threads

nethubonline
Issue allow_insecure_sites=false locked SSL options in customer level
Replies
2
Views
640
nethubonline
nethubonline
nethubonline
Issue php = off in site_isolation_settings.ini not working
Replies
2
Views
823
IgorG
IgorG
G
Issue Plesk Migrator: Subscribers, Service Plans and Customers not properly transferred
Replies
12
Views
1K
Peter Debik
P
A
Resolved 503 Error on submission of API call, still works though...
Replies
16
Views
3K
ajtaylordev
A
nethubonline
Forwarded to devs add auto forward via CLI got "ERR [panel] ADD"
Replies
1
Views
624
IgorG
IgorG
Back
Top