If your extension uses network services to transfer data on the Internet, you need to secure the extension’s connections by encrypting them. To do so, you configure your extension to use SSL/TLS and the correct SSL/TLS ciphers and protocols.

We strongly recommend that your extension gets SSL/TLS settings from Plesk and syncs them with Plesk regularly.

We do not recommend using default or custom SSL/TLS settings for your extension because of the following security risks:

  • Mismatch between your extension’s SSL/TLS settings and those in Plesk.
  • Use of outdated and insecure SSL/TLS ciphers and protocols.

To get Plesk SSL/TLS settings during the extension installation and for periodic sync later, you can use REST API, for example:

curl -k -X POST "" -H "accept: application/json" -H "authorization: Basic bG9naW46cGFzc3dvcmQ=" -H "Content-Type: application/json" -d "{\"params\": [\"--show\"]}"