Commit Graph

4 Commits

Author SHA1 Message Date
David Anderson b817b8ed7a - admin web: changed protection scheme as follows:
- default: script can be run from command line;
        to run from web you need to be logged in as a particular user.
        (in addition to .htaccess protection).
    - if include $cli_only at start of script:
        can only be run from the command line.
    - if include $skip_auth_ops at start of script:
        can run from web without being logged in
        (this is set ONLY in login_action.php)
- admin web: added $cli_only = true to a bunch of scripts


svn path=/trunk/boinc/; revision=19230
2009-10-02 18:32:40 +00:00
David Anderson 0f9cda3ea3 - admin web: finished the above.
Got rid of auth_ops_cmdline() (not needed).
    auth_ops() is now called in util_ops.inc;
    every script in html/ops/ must include util_ops.inc.

Note: for existing projects, the admin web interface
    will now show "access denied".
    Projects must think about what access control policy they want,
    and specify it in project.inc


svn path=/trunk/boinc/; revision=19053
2009-09-15 18:14:37 +00:00
David Anderson 9baf78fe5f - web: added copyright and license info to PHP files
svn path=/trunk/boinc/; revision=15758
2008-08-05 22:43:14 +00:00
David Anderson 13baee4302 - user web: add "friend" and "notification" features
- user web: code cleanup in Profile area
- GUI RPC: add missing "/" in auth2 RPC

svn path=/trunk/boinc/; revision=14394
2007-12-18 20:28:08 +00:00