Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
en:2.0:konfigurationsdatei_config.php [2020/10/03 17:12] fasseen:2.0:konfigurationsdatei_config.php [2024/02/11 08:21] (current) fasse
Line 54: Line 54:
 Any user, whether logged out or logged in, will have a unique session ID. This ID is passed on every page request. If a foreign person is now scanning the traffic between the computer and the server and gets access to this ID, he could assign with this session ID as current user. He therefore would has all the rights in the system that owns the original user. To prevent this abuse, Admidio compares additionally on every page request, the associated IP address to this session. If the IP address changes in between, so Admidio recognizes this as an invalid connection and closes the corresponding session. Any user, whether logged out or logged in, will have a unique session ID. This ID is passed on every page request. If a foreign person is now scanning the traffic between the computer and the server and gets access to this ID, he could assign with this session ID as current user. He therefore would has all the rights in the system that owns the original user. To prevent this abuse, Admidio compares additionally on every page request, the associated IP address to this session. If the IP address changes in between, so Admidio recognizes this as an invalid connection and closes the corresponding session.
  
-This setting is always enabled and does not need to be explicitly set in config.php. +This setting is deactivated by default, as it can cause problems for usersFor example, some users intentionally use services that regularly change the IP address. It can also happen that some providers deliberately change the IP address after certain period of time.
-Are there, however, some users having problems or some users are using deliberately Services that change the IP address on regular basis, so the test can be disabled.+
  
-Possible values: ''**0**'' (disabled) or ''**1**'' (enabled)\\ +Possible values: ''​true'',​ ''​false''\\ 
 Required version: ''**from 3.1**'' Required version: ''**from 3.1**''
  
Line 63: Line 62:
 Admidio supports in addition to MySQL also PostgreSQL databases. This variable specifies which database engine is to be used. Admidio supports in addition to MySQL also PostgreSQL databases. This variable specifies which database engine is to be used.
  
-Possible values: ''**mysql**'' or ''**postgresql**''\\ +Possible values: ''**mysql**'' or ''**pgsql**''\\ 
 Required version: ''**from 2.3**'' Required version: ''**from 2.3**''
  
Line 76: Line 75:
   * Uncompressed Javascript and CSS files are linked   * Uncompressed Javascript and CSS files are linked
  
-Possible values: ''**0**'' (disabled) or ''**1**'' (enabled)\\ +Possible values: ''​true'',​ ''​false''\\ 
 Required version: ''**from 2.0**'' Required version: ''**from 2.0**''
  
Line 82: Line 81:
 This parameter is only ** ** intended for test systems and allows a [[en:entwickler: testumgebung_einrichten#upload_test_data|test data import]]. In a production environment, this can lead to a complete loss of data. This parameter is only ** ** intended for test systems and allows a [[en:entwickler: testumgebung_einrichten#upload_test_data|test data import]]. In a production environment, this can lead to a complete loss of data.
  
-Possible values: ''**0**'' (disabled) or ''**1**'' (enabled)\\ +Possible values: ''​true'',​ ''​false''\\ 
 Required version: ''**from 3.0**'' Required version: ''**from 3.0**''
  
Line 88: Line 87:
 This flag ensures that a database update can only be carried out on a new Admidio version, if an administrator has given his credentials in the update script. This function is always active in the default and can be disabled in the config.php via this parameter. For security reasons, we recommend that this feature should always be enabled. In a test systems it is useful to disable the function. This flag ensures that a database update can only be carried out on a new Admidio version, if an administrator has given his credentials in the update script. This function is always active in the default and can be disabled in the config.php via this parameter. For security reasons, we recommend that this feature should always be enabled. In a test systems it is useful to disable the function.
  
-Possible values: ''**0**'' (disabled) or ''**1**'' (enabled)\\ +Possible values: ''​true'',​ ''​false''\\ 
 Required version: ''**from 3.0**'' Required version: ''**from 3.0**''
  
 ==== $gSetCookieForDomain ==== ==== $gSetCookieForDomain ====
-This flag ensures that the cookie is valid for the entire domain where Admidio is installed. If Admidio is installed in the folder http://www.meine-domain.org/admidio, for security reasons the default cookie is only available for scripts located in the folder www.my-domain.org/admidio or below. Scripts at www.meine-domain.org or www.my-domain.org/test can not read the cookie. If you want to use a script to log in to Admidio in another folder, you must activate this flag.+This flag ensures that the cookie is valid for the entire domain where Admidio is installed. If Admidio is installed in the folder ''www.meine-domain.org/admidio'', for security reasons the default cookie is only available for scripts located in the folder ''www.my-domain.org/admidio'' or below. Scripts at ''www.meine-domain.org'' or ''www.my-domain.org/test'' can not read the cookie. If you want to use a script to log in to Admidio in another folder, you must activate this flag.
  
-Possible values: ''**0**'' (disabled) or ''**1**'' (enabled)\\ +Possible values: ''​true'',​ ''​false''\\ 
 Required version: ''**from 3.2.11**'' Required version: ''**from 3.2.11**''
  
  
 ==== $gPasswordHashAlgorithm ==== ==== $gPasswordHashAlgorithm ====
-Optionally, the encryption algorithm for the user passwords can be stored here. This should always point to '' DEFAULT ''. Then the best algorithm, supported by all current PHP installations, is taken. ''SHA512'' is not automatically available on all servers, so this option should only be selected if it is ensured that the Admidio version will always run on a server that supports this encryption.+Optionally, the encryption algorithm for the user passwords can be stored here. This should always point to '' DEFAULT ''. Then the best algorithm, supported by all current PHP installations, is taken. ''SHA512'' is not automatically available on all servers, so this option should only be selected if it is ensured that the Admidio version will always run on a server that supports this encryption. The encodings ''ARGON2ID'' and ''ARGON2I'' are only available from Admidio 4
  
-Possible values: ''​DEFAULT'',​ ''​BCRYPT'',​ ''​SHA512''​\\ ​+Possible values: ''​DEFAULT'',​ ''​BCRYPT'',​ ''​SHA512'', ''ARGON2ID'', ''ARGON2I''​\\ ​
 Required version: ''​**from 3.2**'' Required version: ''​**from 3.2**''
  
 ==== $gForceHTTPS ==== ==== $gForceHTTPS ====
-Optionallya forwarding of HTTP calls to HTTPS calls can be set by Admidio. The default setting is ''false''.+Admidio automatically recognizes whether communication is encrypted with https or not. In rare casesthis recognition does not work. In this case, you can tell Admidio that the connection should always be encrypted. Set this parameter to ''true''. The default setting is ''false'' if not set.
  
 Possible values: ''​true'',​ ''​false''​\\ ​ Possible values: ''​true'',​ ''​false''​\\ ​
  • en/2.0/konfigurationsdatei_config.php.1601737923.txt.gz
  • Last modified: 2020/10/03 17:12
  • by fasse