[Mapbender-dev] Public access to Mapbender
astrid.emde at wheregroup.com
Tue Jun 2 03:52:56 EDT 2009
Christoph Baudson schrieb:
> In the past I have experienced a lot of trouble with demo applications
> that are made public via a user like "demo" and a similar password.
> The most annoying problem is, that the account can be disabled by
> trying to log in several times with a wrong password. How about this
> workaround: if the login_count is set to -1 by the owner, the
> login_count would never be incremented in the first place, thus never
> disabling the account. This would be a quick fix.
I favorite this quite easy solution.
> A more generic solution could include a new column in mb_user, with a
> "public" flag. If this flag was set, you could log in no matter what
> password you supplied (I think it's counter-intuitive to have a
> password for a public user). Maybe Mapbender should be delivered with
> a default public user, to encourage the usage.
> A less significant problem is, that you do not know if there are any
> "public" users in a Mapbender installation. You always have to try
> "demo", "guest", "gast", "anonymous" etc. if there is no
> documentation. Maybe the Mapbender server should have this as an API
> function, or we could include it in the portal site.
> We should think of a solution, as most installations offer this kind
> of public access.
This does not sound as a good solution for me. The administrators of
mapbender should decide by themself whether they want to offer a public
user or not.
Best regards astrid
More information about the Mapbender_dev