You are here: Foswiki>Tasks Web>Configure>Item11194 (17 Dec 2011, GeorgeClark)Edit Attach

Item11194: Add to warning for AuthScripts list

Priority: Normal
Current State: Closed
Released In: 1.1.4
Target Release: patch

Applies To: Engine
Component: Configure
Branches:

Reported By: GeorgeClark
Waiting For:
Last Change By: GeorgeClark

Statistics can create a significant server workload. It's probably best to restrict statistics to logged in users.

Add a config checker to warn if statistics script is not restricted.

Also, if LoginManager is not set to TemplateLogin, it is critical that the AuthScripts setting agree with the list of scripts protected in the web server configuration. Add a warning - "Verify that the AuthScripts setting is consistent with the alternative protection mechanism, such as the Apache FilesMatch or LocationMatch setting.

-- GeorgeClark - 21 Oct 2011

It doesn't make sense to warn about a configuration that is not default. Reopening to add statistics to the list of default protected scripts. Also we are missing compareauth so I'll add that here as well. And to continue with task abuse, adding a list of the open scripts as a note under AuthScripts - makes it easier to see what's missing.

-- GeorgeClark - 21 Nov 2011

ItemTemplate edit

Summary	Add to warning for AuthScripts list
ReportedBy	GeorgeClark
Codebase	1.1.3, trunk
SVN Range
AppliesTo	Engine
Component	Configure
Priority	Normal
CurrentState	Closed
WaitingFor
Checkins	distro:c43437cd178a distro:f1aa3b8b527e distro:aa3cf509d14f distro:a7cb05498623 distro:ef62387613a5 distro:982f5aa88707 distro:81901ec7265a distro:26b4f12aae54 distro:bcecefbcdf22 distro:0e1c6605b69b
TargetRelease	patch
ReleasedIn	1.1.4
trunkCheckins	distro:c43437cd178a distro:f1aa3b8b527e distro:982f5aa88707 distro:bcecefbcdf22 distro:0e1c6605b69b
Release01x01Checkins	distro:aa3cf509d14f distro:a7cb05498623 distro:ef62387613a5 distro:81901ec7265a distro:26b4f12aae54