literarynote | PmWiki / SecurityVariables

< Path Variables | Variables | Upload Variables >

$AuthUserFunctions: (Present only when the in-built AuthUser username/password functionality is used). An array of different authentication mechanisms to be used for user authentication. Array keys are a tag for the mechanism; values are a function callback that will be called with the properties $pagename, $id, $password, and $pwlist. Oh... could someone else make this make sense, please?!
$DefaultPasswords: Specifies default passwords for user admin or actions (edit, read, upload). See PasswordsAdmin#settingsitewidepasswords.
$EnablePostAttrClearSession: A switch to control whether or not changing a page's attributes causes any existing passwords to be forgotten. The default is that changing attributes forgets any passwords entered; this can be changed by setting $EnablePostAttrClearSession to zero.
$EnableSessionPasswords: Control whether passwords are saved as part of the session. If set to zero, then session passwords are never saved (although any AuthUser authentications are still remembered).
$SessionEncode: Function to use to encode sensitive information in sessions. Set this to NULL if you want to not use any encoding. (See also $SessionDecode below.)
$SessionDecode: Function to reverse the decoding given by $SessionEncode above. Set this to NULL if sensitive session values are not encoded.
$HandleAuth: This sets the required authentication Level that is necessary to perform an action(이 설정은 액션을 수행할때 필요한 인증수준을 설정한다). When using the following example in your config.php you need to be authenticated as editor in order to view the page history(가령, 페이지변경 내역을 보기 위해서는 편집자(혹은 관리자)의 인증을 받아야 할 때, config.php파일에 아래와 같이설정해 준다):

        $HandleAuth['diff'] = 'edit';

$PageAttributes: Set the string shown on the attributes page when entering a password for an action.
$AuthLDAPBindDN: For sites using AuthUser with LDAP authentication, this specifies the distinguished name (DN) to be used to bind to the LDAP server to check identity.
$AuthLDAPBindPassword: For AuthUser with LDAP authentication, this specifies the password used for binding (in conjunction with $AuthLDAPBindDN above).
$EnablePublishAttr: Adds a new "publish" authorization level to distinguish editing of drafts from publishing - See $EnableDrafts.