[Koha-devel] Auth hack

koha-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Koha-devel] Auth hack

From:	Andrew Arensburger
Subject:	[Koha-devel] Auth hack
Date:	Fri Oct 11 23:28:04 2002
User-agent:	Mutt/1.2.5.1i

        I've added a hack to C4/Auth.pm that allows you to turn off
authentication entirely. Just set the "insecure" systempreference to
the string "yes".
        The effect is that C4::Auth doesn't bother authenticating and
just allows you to do anything you like, without your session ever
timing out, or indeed without requiring a session. I find this
convenient because my installation is in a physically secure location,
and all of my librarians (me) are trusted.
        For obvious reasons, this isn't advertised as a feature. If
this is deemed to be a Bad Thing, just back out the latest update.

        In the longer term, it'd be nice to introduce the notion of
trusted (and untrusted) users and secure (or insecure) workstations.
It shouldn't be too hard to implement user and host groups, and ACLs
for users, hosts, and network ranges.

-- 
Andrew Arensburger                      This message *does* represent the
address@hidden                      views of ooblick.com
   "You see? You see? Your stupid minds! Stupid! Stupid!" -- Plan 9

[Prev in Thread]

Current Thread

[Next in Thread]

[Koha-devel] Auth hack, Andrew Arensburger <=

Prev by Date: Re: [Koha-devel] more questions about Koha
Next by Date: [Koha-devel] another POD error list
Previous by thread: [Koha-devel] more questions about Koha
Next by thread: [Koha-devel] another POD error list
Index(es):
- Date
- Thread