[TYPO3-core] RFC: Feature #13164: CLI processes cannot be executed when adminOnly mode is enabled

Oliver Hader oliver at typo3.org
Tue Jan 26 14:11:29 CET 2010


REMINDER #2

olly


Am 19.01.10 13:46, schrieb Oliver Hader:
> REMINDER #1
> 
> I'd like to stay with the possibility for an admin to define how the
> adminOnly setting shall be handled. Thus, it's also backwards compatible
> to TYPO3 4.3 and earlier versions.
> 
> olly
> 
> 
> Am 13.01.10 15:56, schrieb Oliver Hader:
>> This is an SVN patch request.
>>
>> Type: Feature
>>
>> Bugtracker references:
>> http://bugs.typo3.org/view.php?id=13164
>>
>> Branches: Trunk
>>
>> Problem:
>> CLI processes that require a backend user are not executed when these
>> backend users don't have the admin flag set and
>> $TYPO3_CONF_VARS['BE']['adminOnly'] is enabled.
>>
>> Adding the admin flag to these CLI backend users is dangerous since
>> somebody could abuse these users.
>>
>> Solution:
>> Add a new state for the adminOnly configuration that allows CLI
>> processes to bypass the adminOnly check. Thus, there are the following
>> settings for adminOnly:
>> -1: Lock backend and install tool
>> 0: Default - No lock at all
>> 1: Only admin users can log into the backend
>> 2: Only admin users can log into the backend, but CLI processes using
>> regular backend users are allowed
>>
>> olly
-- 
Oliver Hader
TYPO3 Release Manager 4.3


More information about the TYPO3-team-core mailing list