How to disable the "admin" siteaccess

« 
Previous topic
|
Setup & design
|
Next topic
 »
Author Message

william blanc dit jolicoeur

Wednesday 14 May 2008 6:02:17 am

Hi ,

I wonder how to disable admin siteaccess.

On my project, I created a special backoffice siteaccess that uses the admin design.
In the settings/override/site.ini.append.php , at the section [SiteSettings] I defined the SiteList[] with the front and back siteaccess I need.

But the siteaccess "admin" is still reachable. Is there anyway to prevent this ?

Thanks a lot

William

Maxime Thomas

Wednesday 14 May 2008 11:16:20 pm

You can put an IP restriction on the Apache configuration for this URL. It means than only people with the right IP will access the login form and the others will be redirected (or Apache will show an error page).
Else, your website admin login will always be available.

Maxime Thomas
maxime.thomas@wascou.org | www.wascou.org | http://twitter.com/wascou

Company Blog : http://www.wascou.org/eng/Company/Blog
Technical Blog : http://share.ez.no/blogs/maxime-thomas

Piotrek Karaƛ

Wednesday 14 May 2008 11:25:06 pm

William,

It will be good to keep the database connection details in the siteaccess-dedicated site.ini files and not in the global override. This way, the admin siteaccess which you don't use will not be able to connect and become useless.

Good luck,
Piotrek

--
Company: mediaSELF Sp. z o.o., http://www.mediaself.pl
eZ references: http://ez.no/partners/worldwide_partners/mediaself
eZ certified developer: http://ez.no/certification/verify/272585
eZ blog: http://ez.ryba.eu

william blanc dit jolicoeur

Thursday 15 May 2008 1:47:31 am

Thanks for your advices!

Shall I understand that the "admin" siteaccess is part of the ez Kernel and can't be "hidden" from people without any apache rules ?

william blanc dit jolicoeur

Thursday 15 May 2008 2:06:16 am

Sorry, I just realized that the admin siteaccess was loaded because it was in the AvailableSiteAccessList[] in the original site.ini.

I thought it was overrided by the site.ini.append.php in settings/override but there was no initial AvailableSiteAccessList[] in order to empty that array.
Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.

eZ debug

Timing: Jan 31 2025 05:32:03
Script start
Timing: Jan 31 2025 05:32:03
Module start 'layout'
Timing: Jan 31 2025 05:32:03
Module start 'content'
Timing: Jan 31 2025 05:32:03
Module end 'content'
Timing: Jan 31 2025 05:32:03
Script end

Main resources:

Total runtime0.0169 sec
Peak memory usage2,048.0000 KB
Database Queries3

Timing points:

CheckpointStart (sec)Duration (sec)Memory at start (KB)Memory used (KB)
Script start 0.00000.0053 588.2500151.2266
Module start 'layout' 0.00530.0028 739.476636.6641
Module start 'content' 0.00810.0070 776.140694.1406
Module end 'content' 0.01500.0018 870.281337.9922
Script end 0.0168  908.2734 

Time accumulators:

 Accumulator Duration (sec) Duration (%) Count Average (sec)
Ini load
Load cache0.002715.7779140.0002
Check MTime0.00116.5000140.0001
Mysql Total
Database connection0.00074.131510.0007
Mysqli_queries0.002917.411030.0010
Looping result0.00000.166610.0000
Template Total0.00127.410.0012
Template load0.00106.032810.0010
Template processing0.00021.297210.0002
Override
Cache load0.00063.753210.0006
General
dbfile0.001910.975980.0002
String conversion0.00000.042340.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

UsageRequested templateTemplateTemplate loadedEditOverride
1print_pagelayout.tpl<No override>extension/community/design/community/templates/print_pagelayout.tplEdit templateOverride template
 Number of times templates used: 1
 Number of unique templates used: 1

Time used to render debug report: 0.0001 secs