Is your feature request related to a problem? Please describe.
My license watcher page is made available to a few of our groups to monitor license usage, but I don't want them to have access to the server and feature admin pages.
Describe the solution you'd like
Ultimately a stronger user management solution using the database or something like LDAP would be preferred, but a simple login page with a single user using php session cookies is working for my situation
Describe alternatives you've considered
I've considered server-based restrictions, but I just need to keep a few pages protected.
Additional context
What I have done (and I'm not a programmer, so this is a hacked together solution and I'm sure it can be more elegant) is to add this to the top of the features_admin.php and servers_admin.php files:
session_start();
//echo isset($_SESSION['login']); // testing
if(!isset($_SESSION['login'])) {
header('LOCATION:admin_auth.php');
}
And I've added this file to handle the logins:
admin_auth.php.txt
It works for a simple restriction on these two pages, but a stronger solution would be very useful instead of this.
Is your feature request related to a problem? Please describe.
My license watcher page is made available to a few of our groups to monitor license usage, but I don't want them to have access to the server and feature admin pages.
Describe the solution you'd like
Ultimately a stronger user management solution using the database or something like LDAP would be preferred, but a simple login page with a single user using php session cookies is working for my situation
Describe alternatives you've considered
I've considered server-based restrictions, but I just need to keep a few pages protected.
Additional context
What I have done (and I'm not a programmer, so this is a hacked together solution and I'm sure it can be more elegant) is to add this to the top of the features_admin.php and servers_admin.php files:
session_start();
//echo isset($_SESSION['login']); // testing
if(!isset($_SESSION['login'])) {
header('LOCATION:admin_auth.php');
}
And I've added this file to handle the logins:
admin_auth.php.txt
It works for a simple restriction on these two pages, but a stronger solution would be very useful instead of this.