Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add authentication to the administration area. #4

Open
lewisgoddard opened this issue Dec 26, 2014 · 6 comments
Open

Add authentication to the administration area. #4

lewisgoddard opened this issue Dec 26, 2014 · 6 comments
Labels
Language: PHP 💚 Priority: Low ✨ Type: Enhancement 👍 Status: Confirmed
Milestone
3.2 - Management

Comments

@lewisgoddard
Copy link
Member

lewisgoddard commented Dec 26, 2014
edited
Loading

Provide some basic password security.

Want to back this issue? Post a bounty on it! We accept bounties via Bountysource.
@lewisgoddard
Copy link
Member Author

Maybe not? Lets not give people a false sense of security.

@lewisgoddard lewisgoddard reopened this Sep 15, 2016
@lewisgoddard
Copy link
Member Author

Okay, let's add some basic auth for management.

@lewisgoddard lewisgoddard modified the milestone: v.3.2 - Management Sep 15, 2016
@lewisgoddard lewisgoddard mentioned this issue Sep 16, 2016
Open
3 tasks
@lewisgoddard
Copy link
Member Author

I keep yo-yo-ing on this. Basic auth is awful, but proper auth is complicated. Maybe later.

@lewisgoddard lewisgoddard changed the title Secure admin area Add authentication to the administration area. Jan 22, 2017
@RavenNull
Copy link

This can easily be done with both Apache and Nginx. At least, that's what I did. I see no reason to include this as an enhancement.

@lewisgoddard
Copy link
Member Author

Maybe we could just add a snippet on securing that with rate limiting and call it implemented.

@RavenNull
Copy link

That sounds good to me. Maybe even throw in a mock .htaccess and .htpasswd file for those using Apache.

While you're at it, you could also cover how to use rewrite so instead of https://domain.tld/announce.php you could use https://domain.tld/announce since that's how most other trackers look.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Language: PHP 💚 Priority: Low ✨ Type: Enhancement 👍 Status: Confirmed
Projects
None yet
Milestone
3.2 - Management
Development

No branches or pull requests
2 participants
@lewisgoddard @RavenNull