diff --git a/ChangeLog b/ChangeLog index 61f59ad70..af86d890d 100755 --- a/ChangeLog +++ b/ChangeLog @@ -5,8 +5,14 @@ phpMyAdmin - Changelog $Id$ $Source$ +2001-10-23 Loïc Chapeaux + * config.inc.php3: removed unnecessary settings (stdpass is no long + required and there is no need to use both stduser/user). + * Documentation.html: updated according to the changes in the configuration + file. + 2001-10-22 Loïc Chapeaux - * Ducumentation.html, line 299: added some requirements for sockets. + * Documentation.html, line 299: added some requirements for sockets. * main.php3: ensured sockets aren't displayed and used if php < 3.0.10. * libraries/common.lib.php3: ensured the same rules apply whatever is the authentication mode and that the cfgServers[i]['only_db'] is really used. diff --git a/Documentation.html b/Documentation.html index dc739005e..a756fbebf 100755 --- a/Documentation.html +++ b/Documentation.html @@ -314,10 +314,10 @@
Whether basic or advanced authentication should be used for this server.
- Basic authentication ($adv_auth = false) is the + Basic authentication ($adv_auth = FALSE) is the plain old way: username and password are stored in config.inc.php3. - Advanced authentication ($adv_auth = true) as + Advanced authentication ($adv_auth = TRUE) as introduced in 1.3.0 allows you to log in as any valid MySQL user via HTTP-Auth.
Please note that this authentication mode is @@ -338,45 +338,24 @@ - Advanced authentication is secure as the standard user needs just - read-only-access to the mysql database. -

- - All you have to provide in config.inc is a standard user which can - connect to MySQL and read the mysql user/db table - (see $cfgServers[n]['stduser']). -

- - Please also note that if you try a phpMyAdmin login with this stduser, - you could get some errors, depending on the exact privileges you gave - to this stduser. phpMyAdmin does not support a direct login with the - the stduser. + Advanced authentication is secure as the MySQL passwords does not need + to be set in the phpMyAdmin configuration file.

See also the FAQ section for more information about security.

-
- $cfgServers[n]['stduser'] string
- $cfgServers[n]['stdpass'] string -
-
- A user/password pair used to verify the real user/password pair when - using advanced authentication. This user must be able to connect to - MySQL and read the mysql user table.
- Not needed when using basic authentication. -

-
-
$cfgServers[n]['user'] string
$cfgServers[n]['password'] string
The user/password-pair which phpMyAdmin will use to connect to this - MySQL-server when using basic authentication.
- Not needed when using advanced authentication. + MySQL-server.
+ While $cfgServers[n]['user'] is always required, + $cfgServers[n]['password'] is not needed when using advanced + authentication (let it empty in this case).

@@ -431,7 +410,7 @@
- If you are using advanced authentication, stduser must have + If you are using advanced authentication, users must have Select_Priv, Insert_Priv and Delete_Priv set to "Y" in mysql.db table for the bookmark database.

@@ -779,8 +758,9 @@