The following warnings occurred:
Warning [2] Undefined array key "threadviews_countguests" - Line: 745 - File: showthread.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/showthread.php 745 errorHandler->error_callback
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 861 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 861 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 861 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/inc/class_parser.php 584 errorHandler->error_callback
/inc/class_parser.php 228 postParser->parse_mycode
/inc/functions_post.php 830 postParser->parse_message
/showthread.php 1121 build_postbit
Warning [2] Undefined property: MyLanguage::$thread_modes - Line: 46 - File: showthread.php(1650) : eval()'d code PHP 8.1.31 (Linux)
File Line Function
/inc/class_error.php 153 errorHandler->error
/showthread.php(1650) : eval()'d code 46 errorHandler->error_callback
/showthread.php 1650 eval



GetSimple Support Forum GetSimple Installation & Setup v
How to secure /admin folder with .htaccess?

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
How to secure /admin folder with .htaccess?
jorre Offline
Junior Member
**
Posts: 7
Threads: 1
Joined: Jan 2010
#1
2010-02-26, 21:06:52
Hi,

first of all, the new GetSimple version rocks!
But I'm concerned about security and I would love to secure the /admin folder with a simple .htaccess file, so that users cannot access the backend login form without first typing in a username and password

when I place my .htaccess file in the root folder of getsimple , that works, but of course that's blocking off any access to the website. When placing the file only in the /admin folder, it's not working anymore, it just gives a "cannot find this page" error.

I guess the reason for this is quite obvious: all URL's are routed through the /index.php file and the backend is not accessed directely by going to the /admin folder.

Is that correct? Is there a way to solve this and still only secure the /admin folder with .htaccess (AuthUserFile)

Thanks a lot!
Find
Reply
internet54 Offline
Senior Member
****
Posts: 339
Threads: 27
Joined: Nov 2009
#2
2010-02-27, 02:00:51
.htaccess and .htpasswd file combinations work just fine in any folder.

Try this
http://tools.dynamicdrive.com/password/
Clients always want to be able to change the content of their pages, but they are unwilling to do so.

Have you ever coded in your underwear before?
Website Find
Reply
jorre Offline
Junior Member
**
Posts: 7
Threads: 1
Joined: Jan 2010
#3
2010-03-01, 02:53:40 (This post was last modified: 2010-03-01, 04:40:53 by Patrick.)
Yep, they work fine in www.site.com/ but not when I secure www.site.com/admin

When I do so and surf to www.site.com/admin getsimple throws a "cannot find page" error.
It all works fine without the .htaccess files though...


Have you tried this in the /admin folder?
Find
Reply
internet54 Offline
Senior Member
****
Posts: 339
Threads: 27
Joined: Nov 2009
#4
2010-03-01, 06:33:22
Are you putting the passworded htaccess file in the admin directory and not the root directory?
Clients always want to be able to change the content of their pages, but they are unwilling to do so.

Have you ever coded in your underwear before?
Website Find
Reply
jorre Offline
Junior Member
**
Posts: 7
Threads: 1
Joined: Jan 2010
#5
2010-03-01, 20:22:58
I'm using my hosting panel (directadmin) to protect the folder. It's putting the htpasswd file outside of the admin folder, where it stored all htpasswd files.

Again, they work fine on any other directory I've tried so far, just not on the /admin dir of getsimple
Find
Reply
internet54 Offline
Senior Member
****
Posts: 339
Threads: 27
Joined: Nov 2009
#6
2010-03-02, 04:10:11
I use DirectAdmin...

- Click files at the top.
- Goto your main folder.
- Next to the folder admin click protect.
- Type in the name of the area, the username, and password.
- Click the Enable Protection box and click save.

That works every time.
Clients always want to be able to change the content of their pages, but they are unwilling to do so.

Have you ever coded in your underwear before?
Website Find
Reply
jorre Offline
Junior Member
**
Posts: 7
Threads: 1
Joined: Jan 2010
#7
2010-03-03, 02:04:07
internet54 Wrote:I use DirectAdmin...

- Click files at the top.
- Goto your main folder.
- Next to the folder admin click protect.
- Type in the name of the area, the username, and password.
- Click the Enable Protection box and click save.

That works every time.


Yup, it does. Have you tried it on the /admin folder as well?
If it works with you, I'll have to look for another solution
Find
Reply




Users browsing this thread: 2 Guest(s)