Mercurial > p > roundup > code
comparison doc/upgrading.txt @ 6684:9ca5cbffa0c4
Switch off using blank passwords for login
There is now a config.ini setting [web] login_empty_passwords to
enable logins for users without a password set. By default it's off
and every user must have a password.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Mon, 23 May 2022 17:31:50 -0400 |
| parents | 120b0bb05b6e |
| children | f1f2d59dab8b |
comparison
equal
deleted
inserted
replaced
| 6683:12c5ddf865b1 | 6684:9ca5cbffa0c4 |
|---|---|
| 66 | 66 |
| 67 The increase in indexed word length also affects whoosh and xapian | 67 The increase in indexed word length also affects whoosh and xapian |
| 68 backends. You may want to run ``roundup-admin -i tracker_home | 68 backends. You may want to run ``roundup-admin -i tracker_home |
| 69 reindex`` if you want to index or search for longer words in your full | 69 reindex`` if you want to index or search for longer words in your full |
| 70 text searches. Re-indexing make take some time. | 70 text searches. Re-indexing make take some time. |
| 71 | |
| 72 Check new login_empty_passwords setting | |
| 73 --------------------------------------- | |
| 74 | |
| 75 In this version of Roundup, users with a blank password are not | |
| 76 allowed to login. Blank passwords have been allowed since 2002, but | |
| 77 2022 is a different time. If you have a use case that requires a user | |
| 78 to login without a password, set the ``login_empty_passwords`` setting | |
| 79 in the ``web`` section of ``config.ini`` to ``yes``. | |
| 71 | 80 |
| 72 Check compression settings (optional) | 81 Check compression settings (optional) |
| 73 ------------------------------------- | 82 ------------------------------------- |
| 74 | 83 |
| 75 Read the `administration guide`_ section on `Configuring Compression`_. | 84 Read the `administration guide`_ section on `Configuring Compression`_. |