Menu
▾
▴
#460 BadUsers Config and Auth
Hi,
it would be fine to configure bad-users. Example:
Hosting for many databases using PhpMyAdmin. I would
like to disable root and some other usernames from
login. I've done a little patch in an older version,
but it would be fine to have it on the official version :
added to config.inc.php:
$cfg["badusers"]=array(
"root",
"xyz"
);
added to libraries/auth/cookie.auth.lib.php in
function PMA_auth_check():
foreach ($cfg["badusers"] as $tmpuser) {
if ($pma_username==$tmpuser) { //XXTH NO ROOT
HERE ;)
return FALSE;
}
}
( I think in_array also would work )
Since I only use cookie auth I've only added it there,
but it would be no problem to add it at the other Auth
type(s).
Thank you for reading ;)
th
Logged In: YES
user_id=137482
Also globals $cfg is needed in function PMA_auth_check() to
get it work.
Logged In: YES
user_id=210714
Already implemented in
$cfg['Servers'][$i]['AllowDeny']['rules'].
Logged In: YES
user_id=137482
Hi lem9,
i only found a host authentication order but not a user
blacklist :(
config lines with comment:
$cfg['Servers'][$i]['AllowDeny']['order'] // Host
authentication order, leave blank to not use
= '';
$cfg['Servers'][$i]['AllowDeny']['rules'] // Host
authentication rules, leave blank for defaults
= array();
Logged In: YES
user_id=210714
FAQ 4.6.