[GH-ISSUE #598] $use_auth=false as a read only user/session #428

New issue

Closed

opened 2026-03-02 15:58:42 +03:00 by kerem · 2 comments

kerem commented

2026-03-02 15:58:42 +03:00

Owner

Originally created by @17500mph on GitHub (Jul 15, 2021).
Original GitHub issue: https://github.com/prasathmani/tinyfilemanager/issues/598

If I understand what's going on properly,

$use_auth=true: Use the embedded user table. Put the user you want to be read only in the read only array, otherwise anyone in the user table has full (admin) access.

$use_auth=false: Skip the embedded user table, the session is full (admin) access. It's the same as being signed in as an admin.

I would like to get one step further. $use_auth=false means sign in is optional, the session is as if FM_READONLY is default. But signing in as a user in the table would just be whatever that user is. Admin or Read Only based on the array for read only users.

..and I don't even want to display the text/link to the login option. Just keep a local bookmark etc. But that's easy to do on ones own. Just whack the <a href .. or put another config condition on it.

$show_login_link= .. true/false.

Otherwise what it looks like I'd need to do is make a version that is read only and then run a different instance with $use_auth=true so there can be admin functionality and otherwise the default is to browse.

None the less, absolutely, thank you for this. I donated nicely a couple few weeks earlier in appreciation. It's really close to my end goal functionality wise. :)

Originally created by @17500mph on GitHub (Jul 15, 2021). Original GitHub issue: https://github.com/prasathmani/tinyfilemanager/issues/598 If I understand what's going on properly, $use_auth=true: Use the embedded user table. Put the user you want to be read only in the read only array, otherwise anyone in the user table has full (admin) access. $use_auth=false: Skip the embedded user table, the session is full (admin) access. It's the same as being signed in as an admin. I would like to get one step further. $use_auth=false means sign in is optional, the session is as if FM_READONLY is default. But signing in as a user in the table would just be whatever that user is. Admin or Read Only based on the array for read only users. ..and I don't even want to display the text/link to the login option. Just keep a local bookmark etc. But that's easy to do on ones own. Just whack the <a href .. or put another config condition on it. $show_login_link= .. true/false. Otherwise what it looks like I'd need to do is make a version that is read only and then run a different instance with $use_auth=true so there can be admin functionality and otherwise the default is to browse. None the less, absolutely, thank you for this. I donated nicely a couple few weeks earlier in appreciation. It's really close to my end goal functionality wise. :) --- I

kerem closed this issue

2026-03-02 15:58:42 +03:00

kerem commented

2026-03-02 15:58:43 +03:00

Author

Owner

@17500mph commented on GitHub (Jul 15, 2021):

Looking further, this may be referenced in two other issues, and be taken care of with:
#63, #158, #582

// Allow guest user when using auth
$auth_allow_guest = true;

..except that I can't find any reference in the posted release at all, with $auth_allow_guest referenced anywhere in the code.

@17500mph commented on GitHub (Jul 15, 2021): Looking further, this may be referenced in two other issues, and be taken care of with: #63, #158, #582 // Allow guest user when using auth $auth_allow_guest = true; ..except that I can't find any reference in the posted release at all, with $auth_allow_guest referenced anywhere in the code.

kerem commented

2026-03-02 15:58:43 +03:00

Author

Owner

@17500mph commented on GitHub (Jul 16, 2021):

Such a bonehead. Still figuring out git this git that php this and whatever else.

pull #583 is this functionality.

@17500mph commented on GitHub (Jul 16, 2021): Such a bonehead. Still figuring out git this git that php this and whatever else. pull #583 is this functionality.