Difference between revisions of "Configure wiki security"
From Organic Design wiki
(→Locking file) |
m (→Protecting files) |
||
| Line 11: | Line 11: | ||
// Codebase hack - title not extracted properly for ArticlePath = "/$1" | // Codebase hack - title not extracted properly for ArticlePath = "/$1" | ||
| − | $path = | + | $path = preg_replace( '|^.+/img_auth.php|', '', $path );</php>}} |
Revision as of 20:09, 2 March 2012
|
Configure wiki security Organic Design procedure |
Protecting files
MediaWiki has a script called img_auth.php which is used to allow files to be protected. Requests to the image files are made via the img_auth.php script instead of into the image file structure, and the files are stored outside of web-accessible space. More information about the configuration can be found at MW:Manual:Image Authorization.
The setup is quite simple and just involves setting $wgUploadDirectory to the internal absolute location of the images, and $wgUploadPath to the external location of the img_auth.php script.
Unfortunately this method seems to have a problem with Friendly URL's, I had to patch the img_auth.php script so that the title part of the PATH_INFO would be extracted properly.
