#22 Force sign-in

[Anonymous]

This patch will add a configuration option to force
users to sign-in before doing anything. Users will not
even get to browse without signing in.

This new option is disabled by default. To enable it,
edit index.php and change
define('FORCE_LOGIN', false);
to
define('FORCE_LOGIN', true);
in the security section.

[Nobody/Anonymous]

Logged In: NO

Nice.. Fatal error in the sourceforge pages. The file did
not get attached. The patch is here instead:

diff -ru phpwiki.orig/index.php phpwiki/index.php
--- phpwiki.orig/index.php Thu Jan 3 06:10:33 2002
+++ phpwiki/index.php Thu Jan 3 16:16:27 2002
@@ -82,6 +82,10 @@
define('ACCESS_LOG', '/tmp/wiki_access_log');

+// If FORCE_LOGIN is true, users are required to login
before they
+// can do anything.
+define('FORCE_LOGIN', false);
+
// If ALLOW_BOGO_LOGIN is true, users are allowed to login
// (with any/no password) using any userid which: 1) is not
// the ADMIN_USER, 2) is a valid WikiWord (matches
$WikiNameRegexp.)
diff -ru phpwiki.orig/lib/main.php phpwiki/lib/main.php
--- phpwiki.orig/lib/main.php Fri Dec 28 10:53:15 2001
+++ phpwiki/lib/main.php Thu Jan 3 16:18:34 2002
@@ -43,7 +43,7 @@
case 'login':
return 'LOGIN';
default:
- if (is_safe_action($action))
+ if (! FORCE_LOGIN && is_safe_action($action))
return 'ANON_OK';
else
return 'REQUIRE_AUTH';