I have a dokuwiki server for projects leading. I want to have some pages only for my eyes. How to deny access to some pages for some users? Thanks
Use the Access Control List feature of DokuWiki. See https://www.dokuwiki.org/acl for more info
Related
Is it possible to change the admin url from /sitecore to anything else so that not anyone know the admin access url of site. If yes then how it can be done.
I don't recommend you to change admin url.
You can restrict access to Sitecore Client in different ways.
Please check official Sitecore document about restricting access to the Sitecore client interface.
https://doc.sitecore.net/sitecore_experience_platform/setting_up__maintaining/security_and_administration/access_rights/restrict_access_to_the_client
You should not change that URL. It will be better if you will split your environments into Content Delivery and Content Management.
Content Management should not be accessible for someone outside your company.
Content Delivery does not have /sitecore login page.
It means that if you will use correct architecture for your environment You will no have to change the url of login page.
Restricting access via IIS config is the way to go here, renaming the folder is not advised.
This might be what you're looking for:
https://community.sitecore.net/developers/f/8/t/2965
Add to your redirect in the .config file as mentioned in the link. And remove the old one.
When I access my site that's being managed by Sitecore, it's redirecting me and asking for Sitecore credentials. I have no idea why but obviously the main site should be viewable to public without needing creds.
Thanks.
This could be from your sitecore cookie still in page editor mode, To fix this add this query string to your URL:
?sc_mode=normal
This will update your cookie and no reddirect to login anymore
Assuming that you have a combined CM/CD environment and that this is specific to your computer or other authors' computers, it is likely that Sitecore is picking up on the fact that you were using the Page Editor in a previous session. When you are using Page Editor Sitecore will drop a cookie called website#sc_mode and set it to "edit". If you return to the page with that cookie set it will push you to the Login Page as it things you are attempting to edit that page.
To resolve this try clearing your cookies or using a browser in Incognito mode/Private Browsing.
If this is happening to other users I would suggest following Martijn's advice in the other Answer and checking your site definition.
Check your site definitions in the web.config and/or the sites.config in the /app_config/include/ folder. Most of the times there is some misconfiguration there.
Check the security roles set on your site pages. If for some reason access has been denied to the 'extranet/anonymous' user you won't be able to browse without being authenticated.
I am working on a SharePoint Site 2013, and I have multiple .aspx pages.
Can you please guide me, how can I restrict a specific page to be viewable by few members only.
If its a site page, go to library where it is stored and change item level permission of page, so that it can be viewed by only few members.
If its an application page, in page load event check current logged in user's permission and group and according show him the page or redirect him to access denied page.
Not sure what you don't want them to see but each list object can have it's own permissions so you can stop inheritance on a specific List.. remove everyone leaving only the site owner, and the group you want to have access.
The Page will should.. but it won't show any contents.
I'm writing an application in Django that gives users the ability to embed videos from my site. I'm giving the user iFrame code to embed the videos. I've come to discover that this isn't allowed. The console shows the following error when trying to do so:
Load denied by X-Frame-Options: http://blah.com/embed/110/ does not permit cross-origin framing.
After much research, I've discovered what's going on. My question is: does anyone know how services like Youtube and Vimeo get around this?
There is a special header to allow or disallow showing page inside i-frame - X-Frame-Options
It's used to prevent an attack called clickjacking. You can check the Django's doc about it https://docs.djangoproject.com/en/dev/ref/clickjacking/
Sites that want their content to be shown in i-frame just don't set this header.
I think in your installation of Django this protection is turned on by default. If you wan't to allow embedding your content inside i-frames you can either disable the clickjack protection in your settings for the whole site, or use per view control with django.views.decorators.clickjacking decorators:
xframe_options_exempt
xframe_options_deny
xframe_options_sameorigin
Per view control is a better option.
Recently, I have noticed applications requesting permission for "all" data rather than listing multiple items when I authorize the app (ie - manage_pages, user_photos, etc).
Does anyone know what permission type requests access for all data?
Thanks
There is no permission for all data, you are likely just talking about the first page of the dialog?