Hi all I am about to lock down a client Koha site so that users *MUST* be logged in to access any page. In Koha/2.2.9 this was straightforward: vi `grep -rl "authnotrequired => 1" /usr/local/koha/` and change each "authnotrequired => 1" to "authnotrequired => 0" It appears that things are not to simple in K3. There appears to be error handling and other scripts where this flag must remain as "authnotrequired => 1", e.g. 400.pl, abort.pl. I am in the process of writing a simple shell script to make this change globally to an installed instance of K3, but would like to avoid changing this flag where it should be left alone. Can anyone come up with a list of the perl scripts in the two cgi-bin directories where this flag MUST remain set to one? thanks rickw -- ________________________________________________________________ Rick Welykochy || Praxis Services || Internet Driving Instructor When the power of love overcomes the love of power, the world will know peace. -- Jimi Hendrix
On Wed, Nov 12, 2008 at 7:19 PM, Rick Welykochy <rick@praxis.com.au> wrote:
Hi all
I am about to lock down a client Koha site so that users *MUST* be logged in to access any page. In Koha/2.2.9 this was straightforward:
vi `grep -rl "authnotrequired => 1" /usr/local/koha/`
and change each "authnotrequired => 1" to "authnotrequired => 0"
It appears that things are not to simple in K3. There appears to be error handling and other scripts where this flag must remain as "authnotrequired => 1", e.g. 400.pl, abort.pl.
I am in the process of writing a simple shell script to make this change globally to an installed instance of K3, but would like to avoid changing this flag where it should be left alone.
Can anyone come up with a list of the perl scripts in the two cgi-bin directories where this flag MUST remain set to one?
thanks rickw
-- ________________________________________________________________ Rick Welykochy || Praxis Services || Internet Driving Instructor
When the power of love overcomes the love of power, the world will know peace. -- Jimi Hendrix _______________________________________________ Koha-devel mailing list Koha-devel@lists.koha.org http://lists.koha.org/mailman/listinfo/koha-devel
As far as I know, the staff side already has this requirement; are you referring to the OPAC? -- Jesse Weaver Software Developer, LibLime
Jesse Weaver wrote:
As far as I know, the staff side already has this requirement; are you referring to the OPAC?
There are many scripts on the staff side that have the flag enabled, i.e. login not required. grep -rl "authnotrequired => 1" /usr/share/koha/intra*/* will show which ones. So, I need to know which scripts in Koha *must* have No Login Allowed. cheers rickw -- _________________________________ Rick Welykochy || Praxis Services Tis the dream of each programmer before his life is done, To write three lines of APL and make the damn thing run.
On Thu, Nov 13, 2008 at 4:51 PM, Rick Welykochy <rick@praxis.com.au> wrote:
Jesse Weaver wrote:
As far as I know, the staff side already has this requirement; are you
referring to the OPAC?
There are many scripts on the staff side that have the flag enabled, i.e. login not required.
grep -rl "authnotrequired => 1" /usr/share/koha/intra*/*
will show which ones.
So, I need to know which scripts in Koha *must* have No Login Allowed.
cheers rickw
-- _________________________________ Rick Welykochy || Praxis Services
Tis the dream of each programmer before his life is done, To write three lines of APL and make the damn thing run.
Hmm. Here's what that search turns up for me: acqui/newordersuggestion.pl catalogue/cardview.pl cataloguing/z3950_search.pl cataloguing/value_builder/labs_theses.pl cataloguing/value_builder/unimarc_field_4XX.pl errors/400.pl errors/401.pl errors/402.pl errors/403.pl errors/404.pl errors/500.pl labels/label-create-profile.pl labels/label-edit-template.pl labels/label-templates.pl labels/label-profiles.pl labels/label-create-template.pl labels/label-edit-layout.pl labels/label-edit-profile.pl offline_circ/process_koc.pl reports/stats.screen.pl serials/serial-issues.pl suggestion/acceptorreject.pl As far as I know the only pages that should have authnotrequired => 1 are the error pages; does that sound right to everyone? -- Jesse Weaver Software Developer, LibLime
Hi, On Fri, Nov 14, 2008 at 11:25 AM, Jesse Weaver <jesse.weaver@liblime.com> wrote:
As far as I know the only pages that should have authnotrequired => 1 are the error pages; does that sound right to everyone?
Yes. Regards, Galen -- Galen Charlton VP, Research & Development, LibLime galen.charlton@liblime.com p: 1-888-564-2457 x709 skype: gmcharlt
participants (3)
-
Galen Charlton -
Jesse Weaver -
Rick Welykochy