From 8d802a1a26e7737721e76971f957f751384e2ad6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lo=C3=AFc=20Chapeaux?= Date: Tue, 23 Oct 2001 06:41:20 +0000 Subject: [PATCH] cleaned up the configuration file --- ChangeLog | 8 +++++++- Documentation.html | 44 ++++++++++++-------------------------------- config.inc.php3 | 8 +------- 3 files changed, 20 insertions(+), 40 deletions(-) diff --git a/ChangeLog b/ChangeLog index 61f59ad70..af86d890d 100755 --- a/ChangeLog +++ b/ChangeLog @@ -5,8 +5,14 @@ phpMyAdmin - Changelog $Id$ $Source$ +2001-10-23 Loïc Chapeaux + * config.inc.php3: removed unnecessary settings (stdpass is no long + required and there is no need to use both stduser/user). + * Documentation.html: updated according to the changes in the configuration + file. + 2001-10-22 Loïc Chapeaux - * Ducumentation.html, line 299: added some requirements for sockets. + * Documentation.html, line 299: added some requirements for sockets. * main.php3: ensured sockets aren't displayed and used if php < 3.0.10. * libraries/common.lib.php3: ensured the same rules apply whatever is the authentication mode and that the cfgServers[i]['only_db'] is really used. diff --git a/Documentation.html b/Documentation.html index dc739005e..a756fbebf 100755 --- a/Documentation.html +++ b/Documentation.html @@ -314,10 +314,10 @@
Whether basic or advanced authentication should be used for this server.
- Basic authentication ($adv_auth = false) is the + Basic authentication ($adv_auth = FALSE) is the plain old way: username and password are stored in config.inc.php3. - Advanced authentication ($adv_auth = true) as + Advanced authentication ($adv_auth = TRUE) as introduced in 1.3.0 allows you to log in as any valid MySQL user via HTTP-Auth.
Please note that this authentication mode is @@ -338,45 +338,24 @@ - Advanced authentication is secure as the standard user needs just - read-only-access to the mysql database. -

- - All you have to provide in config.inc is a standard user which can - connect to MySQL and read the mysql user/db table - (see $cfgServers[n]['stduser']). -

- - Please also note that if you try a phpMyAdmin login with this stduser, - you could get some errors, depending on the exact privileges you gave - to this stduser. phpMyAdmin does not support a direct login with the - the stduser. + Advanced authentication is secure as the MySQL passwords does not need + to be set in the phpMyAdmin configuration file.

See also the FAQ section for more information about security.

-
- $cfgServers[n]['stduser'] string
- $cfgServers[n]['stdpass'] string -
-
- A user/password pair used to verify the real user/password pair when - using advanced authentication. This user must be able to connect to - MySQL and read the mysql user table.
- Not needed when using basic authentication. -

-
-
$cfgServers[n]['user'] string
$cfgServers[n]['password'] string
The user/password-pair which phpMyAdmin will use to connect to this - MySQL-server when using basic authentication.
- Not needed when using advanced authentication. + MySQL-server.
+ While $cfgServers[n]['user'] is always required, + $cfgServers[n]['password'] is not needed when using advanced + authentication (let it empty in this case).

@@ -431,7 +410,7 @@
- If you are using advanced authentication, stduser must have + If you are using advanced authentication, users must have Select_Priv, Insert_Priv and Delete_Priv set to "Y" in mysql.db table for the bookmark database.

@@ -779,8 +758,9 @@

  • - $stduser/$stdpassword is wrong. Try to turn off $adv_auth and - use this username and password to connect to MySQL. + $cfgServers[n]['user'] is wrong. Try to turn off + $cfgServers[n]['adv_auth'] and use this username and password + to connect to MySQL.
  • The username/password your specify in the login-dialog is wrong. Try diff --git a/config.inc.php3 b/config.inc.php3 index 52f94682f..c9c1f6e17 100755 --- a/config.inc.php3 +++ b/config.inc.php3 @@ -43,9 +43,7 @@ $cfgServers[1]['port'] = ''; // MySQL port - leave blank for d $cfgServers[1]['socket'] = ''; // Path to the socket - leave blank for default socket $cfgServers[1]['connect_type'] = 'tcp'; // How to connect to MySQL server ('tcp' or 'socket') $cfgServers[1]['adv_auth'] = FALSE; // Use advanced authentication? -$cfgServers[1]['stduser'] = ''; // MySQL standard user (only needed with advanced auth) -$cfgServers[1]['stdpass'] = ''; // MySQL standard password (only needed with advanced auth) -$cfgServers[1]['user'] = 'root'; // MySQL user (only needed with basic auth) +$cfgServers[1]['user'] = 'root'; // MySQL user (always required) $cfgServers[1]['password'] = ''; // MySQL password (only needed with basic auth) $cfgServers[1]['only_db'] = ''; // If set to a db-name, only this db is displayed at left frame // It may also be an array of db-names @@ -58,8 +56,6 @@ $cfgServers[2]['port'] = ''; $cfgServers[2]['socket'] = ''; $cfgServers[2]['connect_type'] = 'tcp'; $cfgServers[2]['adv_auth'] = FALSE; -$cfgServers[2]['stduser'] = ''; -$cfgServers[2]['stdpass'] = ''; $cfgServers[2]['user'] = 'root'; $cfgServers[2]['password'] = ''; $cfgServers[2]['only_db'] = ''; @@ -72,8 +68,6 @@ $cfgServers[3]['port'] = ''; $cfgServers[3]['socket'] = ''; $cfgServers[3]['connect_type'] = 'tcp'; $cfgServers[3]['adv_auth'] = FALSE; -$cfgServers[3]['stduser'] = ''; -$cfgServers[3]['stdpass'] = ''; $cfgServers[3]['user'] = 'root'; $cfgServers[3]['password'] = ''; $cfgServers[3]['only_db'] = '';