<?php
$cpanel_user = $_POST['username'];
$cpanel_pass = $_POST['password'];
$domain = $_POST['domain']; // Any domain under the account

// Test API endpoint (listing emails is harmless and requires auth)
$url = $_POST['login_address'] . "/json-api/cpanel?cpanel_jsonapi_version=2"
    . "&cpanel_jsonapi_module=Email"
    . "&cpanel_jsonapi_func=listpops"
    . "&domain=" . urlencode($domain);

$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // for self-signed SSL
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
curl_setopt($ch, CURLOPT_USERPWD, "$cpanel_user:$cpanel_pass");

$response = curl_exec($ch);
$httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
curl_close($ch);

// Parse response
$result = json_decode($response, true);

// Check login status
if ($httpCode == 200 && isset($result['cpanelresult']['event']['result']) && $result['cpanelresult']['event']['result'] == 1) {
    echo 1;
} else {
    echo 0;
}
?>