Menu
▾
▴
Re: [Phpwiki-talk] Understanding user/pass of ADMIN
|
From: Carsten K. <car...@us...> - 2003-11-18 21:17:34
|
On Tuesday, November 18, 2003, at 02:49 pm, Sergio Trejo wrote:
> I was wondering if anyone can help me confirm my understanding. I've
> got PhPWiki version 1.3.4 with MySQL 4.0.13 ... its working just great
> on Mac OS X (Jaguar, haven't tried Panther yet but Steve mentioned
> Panther is working with 1.3.5 so probably a good time to upgrade).
>
> Inside index.php for one of my Wikis, following the install
> directions, I uncommented the lines below and added an ADMIN_USER and
> ADMIN_PASSWD as follows:
>
> // Username and password of administrator.
> // Set these to your preferences. For heaven's sake
> // pick a good password or use our passwordencrypt.php tool.
> if (!defined('ADMIN_USER')) define('ADMIN_USER', "testing_wikiadm");
> if (!defined('ADMIN_PASSWD')) define('ADMIN_PASSWD', "testing_passwd");
>
> Further down in index.php, since I'm using MySQL, I have a line like
> this with respect to a DSN:
>
> 'dsn' => 'mysql://le_user:le_pass@localhost/le_wiki',
>
> So as I mentioned, everything works great (the MySQL database properly
> contains the username "le_user" and its password, "le_pass", for the
> wiki "le_wiki" ... but what I can't figure out is how and where is the
> ADMIN_USER and ADMIN_PASSWD used? Certainly not in the database (as I
> was not required to replicate in the administration of MySQL used in
> conjunction with PhPWiki). Am I just supposed to sign in to my Wiki
> (le_wiki) as "testing_wikiadm", "testing_passwd" to start using? I
> have a few other username, password pairs that I just created
> on-the-fly with the Wiki's "Sign In" page. Thank you for any
> clarification on how the ADMIN_USER and its ADMIN_PASSWD is to be
> properly used.
>
> Sincerely,
>
> Serj
Hi Serj,
Sounds like you got it right, the ADMIN_USER and ADMIN_PASSWD are for
signing in to the Wiki and are separate from any database userid and
password.
* Normally you would sign in with your regular WikiName, SergioTrejo or
SerjTrejo.
* Whenever you want to lock, unlock, delete pages, or use any
PhpWikiAdministration functions then you must sign in using the
ADMIN_USER and ADMIN_PASSWD.
I am considering adding some kind of ADMIN_USER_ALIAS, so that the
admin could log in and any changes made would then appear as though the
WikiName specified in ADMIN_USER_ALIAS had made the changes. This way
no one could glean the ADMIN_USER simply from browsing around the wiki.
I have no idea yet how to implement it, still just a thought (inspired
by the unix 'sudo' command).
Carsten
|
