Jump to content

[Wordpress + Blesta] Easy Integration


PauloV

Recommended Posts

Hello again Blestars :)
 
Article updated to support new Blesta 3.2 with Bootstrap :) (25-04-2014)
 
We see that are many clients that use, or want to use Wordpress and integrate Blesta, but dont know to, here is a few tips on how to :)
 
 
1º- Install Wordpress (If you dont have alredy installed)
 
2º- Go to your wordpress admin an click on Pages->Add New
 
3º- 
- Enter the Title you want ex: "My Blesta"
- Click on "Text" and add the code below (change the URL "http://your-blesta-domain-instalation/" below to fit your blesta domain and folder instalation)  :
 
<div style="width: 500px !important; height: 600px !important; padding: 10px !important">
<iframe style="width: 500px !important; height: 600px !important; padding: 10px !important" frameborder="0" frameborder="0" src="http://your-blesta-domain-instalation/"></iframe>
</div>

- Click on "Publish" and enjoy :)

 
 
If you have a problem, just post your wordpress Blesta Integration, and we can help you changing your template to fit.
 
There are outher alternatives, but it needs more compability and more work, but for now this is the easy way :)
 
 
Regards,
PV
Link to comment
Share on other sites

  • 3 weeks later...

iframes? Yuk lol.

Iframes is the best way to integrate any website or script :)

For exemple Facebook/Twitter/Google Plus etc. uses iframes on almost every plugin you put on your website (if you integrate) :)

If you dont like iframes dont use it :)

This post is only to help people who want to be helped ;)

Regards,

PV

Link to comment
Share on other sites

It wasn't intended as an insult, it was more of a joke. But most developers know that iframes are outdated, don't really offer any real integration, and APIs are a much better way to go for any real kind of integration if you're willing to spend more than 5 minutes on a website.

Link to comment
Share on other sites

It wasn't intended as an insult, it was more of a joke. But most developers know that iframes are outdated, don't really offer any real integration, and APIs are a much better way to go for any real kind of integration if you're willing to spend more than 5 minutes on a website.

Lol I didn't think as an insult :)

Iframes will live forever and as a programmer is a very professional way to integrate some functions :)

We have to ask why big companies like social networks use it? Because its easy for any normal user to implement :)

API takes many coding and hours developing bur in the outher end is more personal.

Link to comment
Share on other sites

Fair enough, each to their own I guess, I just personally find them to be quite an ugly way to create a sense of integration. But as you said, some big players will still use them to make it easy for those with less technical ability.

 

There's always this: http://www.blesta.com/forums/index.php?/topic/1700-blesta-wordpress-bridge/

Link to comment
Share on other sites

Thanks, not looked at his code yet, but isn't that just an iframe too? It looks like one at least.

 

yes its iframe :)

 

If you want to integrate Blesta in Wordpress will be a bit dificult, because you have to:

 

1º- Make commands by API or direct connection to Blesta MySQL Database to get Data

2º- You have to think, what data do you whant, and how secure is Wordpress? (Wordpress with with some modules are very insecure and if an hacker gain acess it will gain acess to Blesta Also if there is direct connection to the Blesta Database or even API)

3º- If there is upgrades in Blesta API or MySQL Database you have to revew all wordpress code integration to correct.

 

thats why, by IFRAME is better (dirty way, but better) :)

 

You can install Wordpress in one server, and Blesta in anouther secured server and if the Wordpress gets hacked, your Blesta billing system will be safe :)

 

 

What you can do with iframes in Wodpress (also joomla or any outhers CMS) is vast, for exemple, you can create plugins, or extensions for Blesta that retrive only parts of Blesta (Login, Menu, Domain Registration, Services, Client Area or part of client area, etc.), than send the response in HTML format and then easily you can put that html code in your wordpress in such a way that it seams 100% integrated:

 

Login Area in the Wordpress "Right Colum"

Client Area Menu on the "TOP"

Services and Invoices in the "Midle"

etc..

 

each Wordpress "Block" can call a specific iframed section of Blesta, and the code is 100% protected in anouther server.

 

If you or any Blesta client wants to integrate iframed sections of Blesta in a Wordpress or Any CMS, just tell me, and I will gladly help :)

 

Regrds,

PV

Link to comment
Share on other sites

I am in a catch-22 with my iFrame setup that I did with Blesta.   My header is quite large and includes my business logo which is 200px x 200px.  Using an iFrame in my content included the Blesta header.  Simple solution would have been at this point to call a different template if in the iFrame, but this is not possible:

 

http://www.blesta.com/forums/index.php?/topic/1730-custom-themetemplate/

 

A couple of years ago, I used a Wordpress plugin which integrated a different billing system we all know about (The major major player in the market owned now by cPanel).  It offered a nice and clean integration and made things smooth.

 

I would do an API integration but for whatever reason, even though it is probably easy as pie, I can't seem to figure out how to "paint" the responses on the screen correctly. ;)

Link to comment
Share on other sites

  • 4 weeks later...
  • 1 month later...

if iframes are used, will it be responsive?

 

 

If your wordpress is responsive, the iframe code as to have an extra line, and the finish code will be:

<div style="width: 500px !important; height: 600px !important; padding: 10px !important;max-width: 100%">
<iframe style="width: 500px !important; height: 600px !important; padding: 10px !important;max-width: 100%" frameborder="0" frameborder="0" src="http://your-blesta-domain-instalation/"></iframe>
</div>
Link to comment
Share on other sites

  • 1 month later...

I tested this iframe with width; 100% and it is OK.

https://wfitg.com/domain-and-hosting/

I do not care for iframes and the debate is on for what is does to SEO and SERP.

Has anyone used Blesta Bridge plugin?

 

 

Great that my tutoria is working great on your wordpress :)

 

Sorry I never tried the "Blesta Bridge Plugin", so I cannot help you :(

Link to comment
Share on other sites

Thanks PauloV and the tutorial was great. But iFrames have been around since the 90's. they are also used in cross framescripting and attacks. An XFS attack exploiting a browser bug can leak events across frames similar to an attack which

uses conventional key-logging software.

This is why most webmasters do not use them unless they are in a model for a video.

Plus, the search engines do not index anything in an Iframe.

What is needed is a real plug in that can do the integration without bypassing any of blesta's built in security.

Link to comment
Share on other sites

Thanks PauloV and the tutorial was great. But iFrames have been around since the 90's. they are also used in cross framescripting and attacks. An XFS attack exploiting a browser bug can leak events across frames similar to an attack which

uses conventional key-logging software.

This is why most webmasters do not use them unless they are in a model for a video.

Plus, the search engines do not index anything in an Iframe.

What is needed is a real plug in that can do the integration without bypassing any of blesta's built in security.

 

 

Facebook uses iFrames for APP's (websites, scripts, etc..) integrations :)

 

 

If you want to make a XFS attack you dont need iframes you can do it with or without iframes, you only need to inject code to the main website, in this case a Wordpress.
 
In iframes, if the Wordpress attack is sucessful only 3 tings that can happen (if Blesta is outsite the virtual host) is:
 
1º- Iframe redirect to anouther website (this can be avoided if you use HTTPS on both Wordpress and Blesta)
2º- keystrokes record to detect what keys are being presses to try to detect any password. (This is very dificult to detect or prevent)
3º- Wordpress with injected bot or spam file or any outher virus/trojan  (This is very dificult to detect or prevent, but there are some tools for cPanel and outher linux distros and painels).
 
In outher method like for exemple, if you implement Blesta by API, if the Wordpress attack is sucessful only 3 tings that can happen (if Blesta is outsite the virtual host) is:
 
1º- Can execute commands directly and successful without any password to Blesta and also can view the api key to authenticate. (HTTPS dont do nothing against this, your are hacked for good)
2º- keystrokes record to detect what keys are being presses to try to detect any password. (This is very dificult to detect or prevent)
3º- Wordpress with injected bot or spam file or any outher virus/trojan  (This is very dificult to detect or prevent, but there are some tools for cPanel and outher linux distros and painels).
 
 
Seeing in this way what do you prefer? :P
 

Why do you need Blesta to be indexed on search engines in this case? :P Blesta dosent need to be in search engines, even for security reasons its better to never be indexed :)

 

P.S- If your wordpress is secure enough, you dont have to worry about XSS attacks :P

 

now what you have to worry is this new type of attack that can take down your wordpress very quicly if you dont update now :)  :

 

http://thehackernews.com/2014/08/millions-of-wordpress-and-drupal.html

 

Regards,

PV

Link to comment
Share on other sites

  • 5 months later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
×
  • Create New...