Menu
▾
▴
Re: [PHPiCalendar-DEV] Real admin page
|
From: Nicolas C. <nic...@gm...> - 2005-11-30 11:29:17
|
On 11/30/05, Wesley Miaw <we...@we...> wrote: > The advantage of having the variables only defined in config.inc.php > is security. I personally would not want to expose certain things on > the admin page. And I don't think the current situation is too > difficult for regular admins to grasp. Right now, config.inc.php can > be read-only and it can hide things like the blacklisted calendars or > user accounts. We're opening up a whole can of worms if we decide to > make this something that can be modified from a web page. > > Certainly, the idea is nice. But I think things are less complicated > and more secure the current way, and there is very little advantage > to putting together a web-based admin page. config.inc.php is too > straight-forward and simple as it stands for me to believe it can > really benefit from a better UI. > > Anyway, that's my 2 cents. You're right. The login/pass are the only secret information contained in this file, aren't they ? What are their practical uses ? Entering the 'admin' page and publishing (I'm not sure, they're really useful in it), what else ? By the way, thanks all for your cents, thats the major point of a discussio= n. ;) Nicolas. -- I'm a poor and lonesome Yaourt... (Air connu) |
