View source for Admin Panel

  //Also available in// ((/Doc/Deutsch/AdminPanel Deutsch)), ((/Doc/Español/AdminPanel Español)), ((/Doc/Français/AdminPanel Français)), ((/Doc/Русский/AdminPanel Русский)), ((/Doc/简体中文/管理面板 简体中文))

{{toc numerate=1}}

===Configuration===

====Create a Recovery-Password====

  1. to login define the ##recovery_password## in the **config/config.php** file first
    1. Call the ##""{{admin_recovery}}""## action as Admin and generate the password hash for your recovery_password
    1. Add the password hash: ##'recovery_password' => 'add hash here',##
  1. Don't forget to delete the _cache/config/**config.php** afterwards. (manually or via the ##admincache## action)
  1. Call yourwiki/admin.php
  1. Enter your recovery password

=====Example==
Add action ##~{{admin_recovery}}##
file:/wackowiki_r55_en_configure_admin_panel_access_1.png

Create password hash
file:/wackowiki_en_configure_admin_panel_access_2.png

Edit ##config/config.php##
file:/wackowiki_r6_en_configure_admin_panel_access_3.png

Clear config cache with ##""{{admincache}}""## action
file:/action_admincache_en.png

====Modi====

There are two Modi (**config/constants.php**)
  1. %%const RECOVERY_MODE					= 1;%%
    * to restore or repair the database, no database access is required, only a subset of modules are available
    * ensure that the database you provided in the config file is already created
  2. %%const RECOVERY_MODE					= 0;%%
    * you must already be logged in as member of the Admin group to access the Panel (default)

===Login===

  1. Login as Admin in the Wiki
  1. Call ##~https://wiki.example.com/admin.php## (without mode_rewrite ##/?page=admin.php##)
  1. Enter the recovery password you've previously created.

file:/ap_login_en.png

file:/ap_upload_settings_en.png
Review the Preferences sections to make sure that the default settings values are acceptable to you; change what is not appropriate for you.

One of the wisest security principles says that what is unused should be disabled. So the first questions is: Are you really going to use it? Do you need it to be enabled?

===Protect your Admin panel===
Follow this security policy to protect your site from hackers and security breaches.

  1. Choose a secure password
  2. Limit Login Attempts
  2. Require HTTPS/TLS for all pages with logins
  3. Don't use your Admin panel password for anything else
  4. Use a custom admin path
  5. Restrict admin access to only approved IP addresses

====Admin Panel Lock====
<[The site is temporarily unavailable due to system maintenance. Please try again later.]>
If your Admin panel gets locked reset **config/lock_ap** from ##1## to ##0##.
The lock occurs when the password has been repeatedly entered incorrectly and is a measure to mitigate attempts to gain unauthorized access.

**config/lock_ap**
%%0%%

====Site Lock====
In addition, you may receive this message if you have locked your site and forgot to unlock it again in the Admin panel.
To unlock your site reset **config/lock** from ##1## to ##0##.

**config/lock**
%%0%%