There are limitations with the current git deployment system, including:

1. You cannot edit files in-site and push them back to a repo. You must make all changes elsewhere and push them in. This can be limiting.
2. You cannot see what has changed in the deployment directory. If we could "git status" we could easily find scripts that hackers installed. Currently this can be done by setting --git-dir and --work-tree options to git, but that is painful.

There is an extension for managing user ssh keys. However it does not work as "click and use", because I have to manually edit the /etc/ssh/sshd_config file (to turn off password authetication and other).

So, the ability to manipulate with serverwide sshd configuration through UI is what I need.

That can be implemented in scope of extension "SSH Key Manager".

Helicon Ape is a great tools for the support of .htaccess with IIS. I was really surprised, that Plesk does not support it yet.

We like to move from WSP to Plesk, but we need support For Helicon Ape.

Plesk should allow to edit .htaccess from the UI.

we want Extensions which automatically update msql or mariadb to the latest version

Git extension: option to delete branches that are not more in the remote repository (or everything and with the next pull get only the ones from remote).

Here are some possible solutions, I assume:
https://stackoverflow.com/questions/7726949/remove-tracking-branches-no-longer-on-remote

After some time there are so many branches on the dropdown that it really gets annoying to search for the desired one and removing and adding the repository does not really feel right.

Here is a command, in case someone finds this idea before it was implemented:

https://talk.plesk.com/threads/git-extension-doesnt-remove-deleted-branches.351838/#post-861524

(not sure if there is already a feature request open for this)

A domain in Plesk has 100+ domain aliases.
Currently, when securing this domain and all its aliases with a Let's Encrypt certificate, procedure fails due to a Let's Encrypt rate limit of 100 names per certificate.

Use case:

Domain in Plesk is a multisite.
One installation is facilitating a lot of websites, running from the same core-CMS.
All the sites on this multisite need to point to the same installation and the domain alias is the only solution to do so.
It is these domain aliases that should be secured with a Let's Encrypt certificate.

We would to like a plugin to view who is the latest person with access to plesk or ftp that you have changed or modified files and keep a record of who has modified it, the date and time.

Currently, Google Authenticator 2FA applies only to the Plesk Web Interface.

By default, Plesk spamtrain removes spam messages older than 30 days from spam folders. When Plesk Email Securty installed, it is not removing outdated spam data from users' mailboxes.

install mailscanner and mailwatch, its free and works with postfix, great way to manage SPAM cpanel has it why not Plesk

We are waiting for this feature in Plesk: https://plesk.uservoice.com/forums/184549-feature-suggestions/suggestions/18772873

We've to apply manually the commands described in here, which is not the desired user experience: https://support.plesk.com/hc/en-us/articles/360006103313

Said that, I'm creating this request because it would be a great step if Plesk would also allow Git users with SSH Key authentication. There isn't any workaround available, which is quite frustrating that after 2 years Plesk didn't implement it.

In Plesk Premium EMail it is not possible to send or receive mails on the address of the public mail folder's name.

It should be possible to send mails from the public mail folder and mails received in it should be visible for other mail-users as in Microsoft Exchange.

There's no backup/recovery option implemented. Users can lose/change mobile phones. Google Authenticator don't
have any standard procedure to recover.

If it is not possible,

add a big fat note warning that users should take a screenshot and print out the page (and store it at a safe place)

The current version delivered with the extensions are quite old. Ruby 2.4.4 is nearly a year old (28.3.2018) !

Please provide the current stable versions, see https://www.ruby-lang.org/de/downloads/ :
- 2.6.1
- 2.5.3
- 2.4.5

Please add this to php.ini, we can use our pdo driver for ms access:
extension=pdofirebird
extension=pdomysql
extension=pdooci
extension=pdoodbc
extension=pdopgsql
extension=pdosqlite

The domain validation for letsencrpypt for wildcard domains uses a TXT-record (acme-challenge.<YOURDOMAIN>).
This record is set by plesk on the local dns server, but it is not synchronized to our (the official) nameservers for a domain which is using the domainconnect extension. So the validation will fail, or the customer have to set this record manually every few months, when a revalidation is required.

Can domainconnect be improved to synchronize this record?

By default Docker container is available from the outside and Plesk users sometimes are unaware of it. Sometimes Docker container is used only locally.
Suggestion is to add a warning about this or add a check box to close remote access on creation.

There needs to be a way to force the Composer extension to rescan folders for a given (sub)domain. Currently, once you've done the initial scan there seems to be no straightforward way of forcing the extension to recognise the fact that you've subsequently either added additional composer.json instances, respectively removed existing ones.

(See e.g. https://talk.plesk.com/threads/php-composer-missing.354083/ )