vb.org Archive
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   htaccess in place, now how to... ? (https://vborg.vbsupport.ru/showthread.php?t=43209)

TECK 09-05-2002 10:28 PM
htaccess in place, now how to... ?
 
i will have htaccess in place for my admin folder and i want to remove the username/password login box since it will not be needed anymore.

what do i edit? thanks for your help.

g-force2k2 09-05-2002 10:35 PM
i could be wrong TECK but i believe that the code is included in admin/global.php

find this code:

PHP Code:
<?php maketableheader("Please Log in:","login",0,1); ?>
<tr class="firstalt" id="submitrow"><td align="center" nowrap><p>You are either not a valid administrator or have not logged in.</p>
<form action="../admin/index.php" method="post" id="submitrow">
<input type="hidden" name="s" value="<?php echo $session[sessionhash]; ?>">
<input type="hidden" name="action" value="login">
<!-- <input type="hidden" name="explain" value="1"> -->
im not positive though... regards...

g-force2k2

TECK 09-05-2002 10:37 PM
i think is a little more complicated, it involves the cookie checkup and bypass it. :)

g-force2k2 09-05-2002 10:39 PM
whoops TECK i meant admin/global.php :p and for the cookie check and stuff wouldn't that just include any normal login? using the admin/sessions.php? regards

Edit:

Also included in the admin/global.php is this:

PHP Code:
$getperms=$DB_site->query_first("SELECT cancontrolpanel FROM user,usergroup WHERE user.usergroupid=usergroup.usergroupid AND user.userid='$bbuserinfo[userid]'");
if ($getperms[cancontrolpanel]!=1) {
  $bbuserinfo[userid]=0;

which checks to see if the user can access the controlpanel and then if they don't bypass that...

PHP Code:
if ($bbuserinfo[userid]==and $checkpwd) { 
that triggers the login code as listed above... hope that helps :) regards...


g-force2k2

TECK 09-06-2002 12:28 AM
i found out a much easier way, using the mod_auth_mysql module.
there is no more need to modify nothing anymore... :)

Erwin 09-06-2002 12:37 AM
Be careful with that. :) If you happen to accidentally delete your .htaccess file, anyone can access your Admin CP.

TECK 09-06-2002 12:44 AM
not if you use the module. it automatically grabs all your info directly from the database to request the htaccess user perms.
and you dont have to edit nothing in the global file.

Dean C 10-05-2002 06:29 PM
can you share some instructions as to how you went about doing this Teck :D?

- miSt

refertech 10-05-2002 07:32 PM
yes please do. I would love to have my htaccess work off of my database but I dont have a clue as to how to use that module stuff your talking about. :)

Mark

Erwin 10-05-2002 09:27 PM
Isn't the point of .htaccess to add a second layer of security to the admin folder? It should thus be a different username and password, and should be independent from the database, in case the database or your forum password is somehow compromised.


All times are GMT. The time now is 02:59 PM.
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01652 seconds
  • Memory Usage 1,735KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (3)bbcode_php_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)pagenav
  • (1)pagenav_curpage
  • (1)pagenav_pagelink
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (10)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • pagenav_page
  • pagenav_complete
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete