From 43ee2ec42f09da0748a1835c6d6d06e04e178de8 Mon Sep 17 00:00:00 2001 From: Evan Prodromou Date: Mon, 14 Dec 2009 18:09:30 -0500 Subject: [PATCH 1/2] default for login command is disabled --- lib/default.php | 2 ++ 1 file changed, 2 insertions(+) diff --git a/lib/default.php b/lib/default.php index ebb6f8d016..42d4623b1e 100644 --- a/lib/default.php +++ b/lib/default.php @@ -229,4 +229,6 @@ $default = array('namespace' => 1), // 1 = geonames, 2 = Yahoo Where on Earth 'omb' => array('timeout' => 5), // HTTP request timeout in seconds when contacting remote hosts for OMB updates + 'logincommand' => + array('disabled' => true), ); From 1aae7f382ffb7d709417ecc560e37535d64e6a4d Mon Sep 17 00:00:00 2001 From: Evan Prodromou Date: Mon, 14 Dec 2009 18:09:45 -0500 Subject: [PATCH 2/2] document logincommand/disabled in README --- README | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/README b/README index 51a8e91cc5..3e712af8c0 100644 --- a/README +++ b/README @@ -1407,6 +1407,21 @@ contentlimit: max length of the plain-text content of a message. Default is null, meaning to use the site-wide text limit. 0 means no limit. +logincommand +------------ + +Configuration options for the login command. + +disabled: whether to enable this command. If enabled, users who send + the text 'login' to the site through any channel will + receive a link to login to the site automatically in return. + Possibly useful for users who primarily use an XMPP or SMS + interface and can't be bothered to remember their site + password. Note that the security implications of this are + pretty serious and have not been thoroughly tested. You + should enable it only after you've convinced yourself that + it is safe. Default is 'false'. + Plugins =======