morganestes / memcached-admin

An updated fork of phpMemcacheAdmin.
http://www.morganestes.me/memcached-admin/
0 stars 0 forks source link

Add the possibility to have a read-only phpmemcacheadmin #3

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
Having the ability to flush, add, set and delete directly from phpmemcacheadmin 
is a little bit dangerous. It would be nice - although it brings no security at 
all as it will always be possible to do it through telnet - to be able to mask 
these possibilities in order to avoid an undesired click on "flush all servers" 
by a user.

Original issue reported on code.google.com by colin.pi...@gmail.com on 3 Dec 2010 at 4:45

GoogleCodeExporter commented 9 years ago
Sorry, I wanted to classify it as Enhancement but can't find how to do it !

Original comment by colin.pi...@gmail.com on 3 Dec 2010 at 4:46

GoogleCodeExporter commented 9 years ago
Hello

I can easily add a basic PHP authentication on commands and configuration pages
This will not be very secure, but better than nothing.

Original comment by eli...@free.fr on 6 Dec 2010 at 9:10

GoogleCodeExporter commented 9 years ago
Here is a small patch for phpmemcacheadmin 1.2.0 that add a configuration 
option to activate or not "Admin mode".

In admin mode, write commands and configuration modification are hidden (no 
security here, for example accessing directly configuration.php works only the 
link is removed !). A user can have this features back by adding admin=1 GET 
variable (adding ?admin=1 to the URL)

Original comment by colin.pi...@gmail.com on 6 Apr 2011 at 2:43

Attachments: