How to add a DDoS protection badge
to your WHMCS order pages

Blog

Why Trust Signals Matter on Hosting Order Pages

When a customer is about to enter their payment details for a VPS or dedicated server, they are making a decision based on trust. They want to know that the infrastructure behind the service is real and that their server will be protected if something goes wrong.

Hosting providers invest heavily in DDoS protection, but that investment is invisible to the buyer at checkout. The order form lists specs like CPU cores and RAM, but there is no standard way to communicate "this server is monitored and protected." That gap costs conversions.

Trust badges solve this. If you have ever purchased something online and noticed the SSL lock icon, a payment processor logo, or a "Norton Secured" seal, you have seen the same principle at work. A visible, verifiable security badge on your WHMCS order pages gives customers confidence that your hosting platform takes protection seriously.

The Flowtriq Trust Badge is a small, embeddable widget that displays your active DDoS protection status. When a visitor clicks it, they are taken to a verification page on flowtriq.com that confirms your account is active and your nodes are monitored. It is not a static image. It is a live verification link tied to your Flowtriq account.

Step 1: Enable the Trust Badge in Your Flowtriq Dashboard

Before you can embed the badge in WHMCS, you need to generate your badge code from the Flowtriq dashboard.

1. Log in to your Flowtriq dashboard at app.flowtriq.com.
2. Navigate to Settings > Trust Badge.
3. Toggle the badge to Enabled.
4. Choose your preferred badge style: dark, light, or minimal. The dark variant works best on most WHMCS themes.
5. Copy the embed snippet. It will look like this:

<a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
   target="_blank"
   rel="noopener noreferrer"
   title="DDoS Protection Verified by Flowtriq">
  <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
       alt="Protected by Flowtriq - DDoS Detection &amp; Mitigation"
       width="200"
       height="48"
       loading="lazy" />
</a>

Replace YOUR_BADGE_ID with the actual ID shown in your dashboard. The badge ID is a unique identifier tied to your Flowtriq account.

The badge SVG is served from Flowtriq's CDN and cached aggressively. It adds virtually no load time to your pages.

Step 2: Add the Badge to Your WHMCS Footer

The most common placement is the site-wide footer. This ensures the badge appears on every page, including the order form, client area, and knowledgebase.

In WHMCS, the footer is controlled by the footer.tpl file in your active template directory. The path depends on your template:

/path/to/whmcs/templates/your-theme/footer.tpl

Open footer.tpl in your editor and add the badge snippet just before the closing footer markup. Here is the full Smarty-compatible code:

{* Flowtriq DDoS Protection Trust Badge *}
{* https://flowtriq.com/docs/trust-badge *}
<div style="text-align:center;padding:16px 0 8px;">
  <a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
     target="_blank"
     rel="noopener noreferrer"
     title="DDoS Protection Verified by Flowtriq">
    <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
         alt="Protected by Flowtriq - DDoS Detection & Mitigation"
         width="200"
         height="48"
         loading="lazy" />
  </a>
</div>

Save the file and clear your WHMCS template cache (Setup > General Settings > Other > Template Cache, or delete the templates_c directory contents). The badge will now appear in the footer of every page.

Step 3: Add the Badge to Specific WHMCS Pages

If you prefer targeted placement instead of (or in addition to) the global footer, you can embed the badge directly in specific templates. Here are the most common locations for hosting providers.

Order Form / Product Configuration

The order form is where trust signals have the highest impact. The exact template file depends on which order form template you use. For the standard cart:

{* File: templates/orderforms/standard_cart/configureproduct.tpl *}

{* Add after the product description or near the order summary *}
{* Flowtriq DDoS Protection Badge *}
<div class="text-center" style="margin:20px 0;">
  <a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
     target="_blank"
     rel="noopener noreferrer">
    <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
         alt="Protected by Flowtriq - DDoS Detection & Mitigation"
         width="200"
         height="48"
         loading="lazy" />
  </a>
</div>

Shopping Cart / Checkout

The checkout page is the final step before payment. Adding the badge here reinforces the trust signal at the moment it matters most:

{* File: templates/orderforms/standard_cart/checkout.tpl *}

{* Place near the payment button or order summary sidebar *}
{* Flowtriq DDoS Protection Badge *}
<div class="text-center" style="margin:16px 0;">
  <a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
     target="_blank"
     rel="noopener noreferrer">
    <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
         alt="Protected by Flowtriq - DDoS Detection & Mitigation"
         width="200"
         height="48"
         loading="lazy" />
  </a>
</div>

Client Area Homepage

For existing customers, showing the badge in the client area dashboard reinforces that their services are actively protected:

{* File: templates/your-theme/clientareahome.tpl *}

{* Flowtriq Trust Badge - Client Area *}
<div class="text-center" style="margin:24px 0;">
  <a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
     target="_blank"
     rel="noopener noreferrer">
    <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
         alt="Protected by Flowtriq - DDoS Detection & Mitigation"
         width="200"
         height="48"
         loading="lazy" />
  </a>
</div>

Knowledgebase

If you have knowledgebase articles about your network or DDoS protection, the badge provides a verifiable proof point:

{* File: templates/your-theme/knowledgebase.tpl *}

{* Flowtriq Trust Badge - Knowledgebase *}
<div style="margin:20px 0;">
  <a href="https://flowtriq.com/verify/YOUR_BADGE_ID"
     target="_blank"
     rel="noopener noreferrer">
    <img src="https://flowtriq.com/badge/YOUR_BADGE_ID/dark.svg"
         alt="Protected by Flowtriq - DDoS Detection & Mitigation"
         width="200"
         height="48"
         loading="lazy" />
  </a>
</div>

Step 4: Testing and Verification

After adding the badge to your templates, verify that everything works correctly:

1. Clear your WHMCS template cache. Delete the contents of the templates_c directory or use the admin panel option. WHMCS caches compiled Smarty templates, and your changes will not appear until the cache is cleared.
2. Load the page in an incognito window. This ensures you are seeing the page without any browser cache or session state.
3. Confirm the badge image loads. It should render as a small shield-style graphic with "Protected by Flowtriq" text. If you see a broken image, double-check that your badge ID is correct in the snippet.
4. Click the badge. It should open a new tab pointing to https://flowtriq.com/verify/YOUR_BADGE_ID. This is the public verification page.
5. Check the verification page. It should display your organization name, protection status, and the date your account was verified. If the badge is disabled in your Flowtriq dashboard, this page will show an inactive status.

If you use a CDN or full-page cache in front of WHMCS, remember to purge the cache after making template changes.

What Customers See When They Click the Badge

When a visitor clicks the Flowtriq Trust Badge, they land on a verification page hosted on flowtriq.com. This is not a generic marketing page. It is a live status check tied to your specific account.

The verification page displays:

• Your organization name as registered in Flowtriq.
• Protection status: Active or Inactive, based on whether your account has running agents.
• Number of protected nodes (shown as a range, not an exact count, for security).
• Account verification date, confirming when your Flowtriq account was first activated.
• A brief explanation of what Flowtriq does, so the visitor understands what "DDoS protection" means in practice.

This verification model is important because it is not something a provider can fake. Static badge images can be copied from any website and pasted into a template. The Flowtriq badge links to a live endpoint that confirms the account is real and active. Customers who click through can see that the protection claim is backed by an actual running system.

Badge Style Options

The Trust Badge comes in three variants to match your WHMCS theme:

• dark.svg - Light text on a transparent background. Best for dark WHMCS themes and dark footers.
• light.svg - Dark text on a transparent background. Best for light or white WHMCS themes.
• minimal.svg - A compact icon-only version with a small "Flowtriq" wordmark. Works well in tight spaces like sidebars.

To switch styles, change the filename in the img src URL. For example, to use the light variant:

<img src="https://flowtriq.com/badge/YOUR_BADGE_ID/light.svg" ... />

Get Started

The Trust Badge is available on all Flowtriq plans, including during your free trial. If you are already running Flowtriq on your infrastructure, you can enable the badge and have it live on your WHMCS pages in under five minutes.

If you are not yet using Flowtriq, start a free trial to get DDoS detection running on your nodes and unlock the Trust Badge for your hosting storefront. Setup takes about ten minutes per node, and there is no hardware to install.

The Flowtriq WHMCS module is available on the WHMCS Marketplace. For the full provisioning and billing integration guide, see the WHMCS integration page or read our step-by-step setup guide.

Back to Blog

Related Articles