Problem with admin - anyone can see it Problem with admin - anyone can see it
 

News:

CPG Release 1.6.27
change DB IP storage fields to accommodate IPv6 addresses
remove use of E_STRICT (PHP 8.4 deprecated)
update README to reflect new website
align code with new .com CPG website
correct deprecation in captcha

Main Menu

Problem with admin - anyone can see it

Started by comdawg, February 20, 2007, 05:24:40 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

comdawg

February 20, 2007, 05:24:40 PM
I noticed that if a regular visitor comes to my Coppermine site and doesn't register, if he/she knows the admin file name (which they could if they just downloaded their own CP) they can just go into Admin without logging in.  If they try to save a new config it says they can't, but I don't want them to see those options at all.  Is there a way to make it so if you just type in the path to admin.php it will force you to log in if you aren't?

Joachim Müller

#1
February 21, 2007, 09:47:21 AM
Quote from: comdawg on February 20, 2007, 05:24:40 PM
Is there a way to make it so if you just type in the path to admin.php it will force you to log in if you aren't?
When a non-admin user tries to access the config page (http://yoursite.tld/your_coppermine_folder/admin.php), all he sees is
QuoteYou don't have permission to access this page.
If this is different for your site, then post a link to your coppermine-driven gallery.
Print
Go Up Pages1
User actions