DokuWiki

It's better when it's simple

User Tools

Site Tools

Trace: abortlogin
plugin:abortlogin

This is an old revision of the document!

Table of Contents

abortlogin Plugin

Compatible with DokuWiki

hrun,detritus,"Elenor Of Tsort"

plugin Restricts login access to designated IP addresses

Last updated on
2015-12-20
Provides
Action
Repository
Source

This extension has not been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues.

Similar to ipban

Tagged with login

By Myron Turner

Installation

Install the plugin using the Plugin Manager and the download URL above, which points to latest version of the plugin. Refer to Plugins on how to install plugins manually.

Usage

This plugin works entirely through settings in the Configuration Manager. You enter a list of IP addresses which are allowed to login to the wiki. All other IP addresses are blocked from logging in. It is useful only in a restricted environment or where there are relatively few users who are allowed login privileges. A restricted environment would, for instance, be a LAN or an office which has its own domain.

Caution

Ideally the admin should have access to the server with permission to make changes to local.php, where blocked IP's can, if needed, be removed, to prevent the admin's being locked out. See configuration_and_settings for more information about this topic.

Configuration and Settings

OptionDescription
allowed Comma separated list of allowed ip addresses
test Comma separated list of ip addresses to test; testing limited to admins only
log Keep a log of failed login attempts
  1. allowed: Any IP address included in this list will be allowed access to the login form. If an IP address is not included in this list, access will be denied and a 403 error message will be displayed instead of the login form.
  2. test: IP addresses included in this list will be tested against the allowed list. The results of these tests will be printed to the screen as Dokuwiki notifications when an adminstrator is logged in. To remove these notifications, the list must be removed.
  3. log: If set to true, a log of all rejected IP addresses will be kept in:
    data/meta/abortlogin/aborted_ip.log

The list of allowed IP addresses need not be complete addresses. For instance, if on your internal LAN, you have multiple users with IPs beginning with 192.168.1, you can include the following in your allowed list: 192.168.1.. All IPs on your LAN will be able to login. Please note the period after the 1. Without it, IPs with numbers like 192.168.123 could be allowed login privileges. Be sure to test your own IP against the allowed list before logging out the first time, so that you don't accidentally lock yourself out. If that happens, you can disable the plugin by placing an empty file named disabled. in the plugin's directory.

If you choose to log failed login attempts, it's a good practice to delete the log periodically, since thousands of ip addresses can potentially be logged.

Discussion

Thank you - great plugin

plugin/abortlogin.1481897239.txt.gz · Last modified: 2016-12-16 15:07 by turnermm
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki

Global DokuWiki Links