[TYPO3-project-4-3] Making RSA Auth default login method?
Martin Kutschker
masi-no at spam-typo3.org
Tue May 5 14:18:27 CEST 2009
Dmitry Dulepov schrieb:
> Hi!
>
> Michael Stucki wrote:
>> What I would like is to have RSA enabled by default but if there is no
>> openssl functionality, have TYPO3 fall back to the old default. At the
>> same time, it should indicate this with a warning in the admin backend
>> (yellow warning box).
>
> The fallback can be implemented but it will need a change in the login form (introducing priorities to hooks in the login form). Please, check also my answer to Steffen a minute ago where I describe it in details.
>
> The yellow box currently warns if the PHP extension is not installed and the command line binary is used. It will also warn about other potential RSA problems.
Let's do it the other way round with two approaches:
* The 1-2-3 wizard enables RSA automatically if openssl is present. This
will work out of the box for many of the new installations.
* Show a yellow information box when openssl is present but RSA is not
enabled. Provide a link to enable it with a single click. This will
convert many of the old installations.
This has only one disadvantage: it will bother all the site admins,
whi have already installed some other means of authentication. Maybe the
warning should be suppressed if another auth service is found or the BE
is forced to run in SSL mode.
Masi
More information about the TYPO3-project-4-3
mailing list