Many hyperlinks are disabled.
Use anonymous login
to enable hyperlinks.
Overview
| Comment: | Improved documentation for the "localauth" setting. |
|---|---|
| Downloads: | Tarball | ZIP archive |
| Timelines: | family | ancestors | descendants | both | trunk |
| Files: | files | file ages | folders |
| SHA3-256: |
883c2ea218b590735895c77657929e2a |
| User & Date: | drh 2018-12-03 02:44:31.684 |
Context
|
2018-12-04
| ||
| 23:00 | The new blockquote tinting feature of the default skin now works in the forum post editor screen as well, not just in the forum post display screen. check-in: 19bb3b88fa user: wyoung tags: trunk | |
|
2018-12-03
| ||
| 12:08 | Merge trunk check-in: e88c1ff4cc user: jan.nijtmans tags: openssl-1.1 | |
| 02:44 | Improved documentation for the "localauth" setting. check-in: 883c2ea218 user: drh tags: trunk | |
|
2018-12-01
| ||
| 13:00 | Incorporate the official release of SQLite version 3.26.0 check-in: e0a6ff0adb user: drh tags: trunk | |
Changes
Changes to src/db.c.
| ︙ | ︙ | |||
3200 3201 3202 3203 3204 3205 3206 | /* ** SETTING: keep-glob width=40 versionable block-text ** The value is a comma or newline-separated list of GLOB ** patterns specifying files that the "clean" command will keep. */ /* ** SETTING: localauth boolean default=off | | | | > > | > > > > > > > > > > > > > > > > > > > > > > > > > | 3200 3201 3202 3203 3204 3205 3206 3207 3208 3209 3210 3211 3212 3213 3214 3215 3216 3217 3218 3219 3220 3221 3222 3223 3224 3225 3226 3227 3228 3229 3230 3231 3232 3233 3234 3235 3236 3237 3238 3239 3240 3241 3242 3243 3244 |
/*
** SETTING: keep-glob width=40 versionable block-text
** The value is a comma or newline-separated list of GLOB
** patterns specifying files that the "clean" command will keep.
*/
/*
** SETTING: localauth boolean default=off
** If enabled, require that HTTP connections from the loopback
** address (127.0.0.1) be authenticated by password. If false,
** some HTTP requests might be granted full "Setup" user
** privileges without having to present login credentials.
** This mechanism allows the "fossil ui" command to provide
** full access to the repository without requiring the user to
** log in first.
**
** In order for full "Setup" privilege to be granted without a
** login, the following conditions must be met:
**
** (1) This setting ("localauth") must be off
** (2) The HTTP request arrive over the loopback TCP/IP
** address (127.0.01) or else via SSH.
** (3) The request must be HTTP, not HTTPS. (This
** restriction is designed to help prevent accidentally
** providing "Setup" privileges to requests arriving
** over a reverse proxy.)
** (4) The command that launched the fossil server must be
** one of the following:
** (a) "fossil ui"
** (b) "fossil server" with the --localauth option
** (c) "fossil http" with the --localauth option
** (d) CGI with the "localauth" setting in the cgi script.
**
** For maximum security, set "localauth" to 1. However, because
** of the other restrictions (2) through (4), it should be safe
** to leave "localauth" set to 0 in most installations, and
** especially on cloned repositories on workstations. Leaving
** "localauth" at 0 makes the "fossil ui" command more convenient
** to use.
*/
/*
** SETTING: main-branch width=40 default=trunk
** The value is the primary branch for the project.
*/
/*
** SETTING: manifest width=5 versionable
|
| ︙ | ︙ |