Difference between revisions of "Configure wiki security"
From Organic Design wiki
(locking files down) |
(→Locking file) |
||
| Line 1: | Line 1: | ||
{{Procedure}} | {{Procedure}} | ||
| − | == | + | == Protecting files == |
MediaWiki has a script called ''img_auth.php'' which is used to allow files to be protected. Requests to the image files are made via the ''img_auth.php'' script instead of into the image file structure, and the files are stored outside of web-accessible space. More information about the configuration can be found at [[MW:Manual:Image Authorization]]. | MediaWiki has a script called ''img_auth.php'' which is used to allow files to be protected. Requests to the image files are made via the ''img_auth.php'' script instead of into the image file structure, and the files are stored outside of web-accessible space. More information about the configuration can be found at [[MW:Manual:Image Authorization]]. | ||
Revision as of 20:08, 2 March 2012
|
Configure wiki security Organic Design procedure |
Protecting files
MediaWiki has a script called img_auth.php which is used to allow files to be protected. Requests to the image files are made via the img_auth.php script instead of into the image file structure, and the files are stored outside of web-accessible space. More information about the configuration can be found at MW:Manual:Image Authorization.
The setup is quite simple and just involves setting $wgUploadDirectory to the internal absolute location of the images, and $wgUploadPath to the external location of the img_auth.php script.
Unfortunately this method seems to have a problem with Friendly URL's, I had to patch the img_auth.php script so that the title part of the PATH_INFO would be extracted properly.
