Topic on Extension talk:PluggableAuth

Summary by Cindy.cicalese

Missing "$wgGroupPermissions['*']['read'] = false;"

S0ring (talkcontribs)
Cindy.cicalese (talkcontribs)

Image authorization does indeed work with PluggableAuth. The authentication checks are done outside img_auth.php.

S0ring (talkcontribs)

Thank you for your quick reply. I am struggle with the img_auth.php script to make it working. I followed the article, I renamed the images directory, I moved it outside the DocumentRoot and I turned the php_admin_flag engine off. The images/files are now available under https://wiki.yourwiki.org/w/img_auth.php/01/01/Example.png ., but they are reachable without login, I expected to get a 403.

Cindy.cicalese (talkcontribs)

More information about your configuration would be helpful. For example, do you have your wiki set to require login to read?


$wgGroupPermissions['*']['read'] = false;


Login will only be enforced for image authorization if the content in your wiki is not readable without login.


S0ring (talkcontribs)

Wow, exactly this settings was guilt, now the access to images/files is denied without login as expected. Thank you a lot!

Cindy.cicalese (talkcontribs)

Great! You're welcome!