Manual:AdminSettings.php

From Linux Web Expert

Revision as of 11:48, 15 September 2023 by imported>Mainframe98 (Reverted edits by 2806:2F0:A500:FA45:7180:C47A:4042:F51C (talk) to last version by Clump)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Details

The requirement for AdminSettings.php (along with supporting file AdminSettings.sample) was rudimentarily removed in MediaWiki 1.16. Prior to MediaWiki 1.16, AdminSettings.php was used to store database authentication credentials for maintenance scripts and to control the availability of profileinfo.php . It has finally been removed completely in MediaWiki 1.23.

Upgrading

If upgrading from a pre-1.16 version of MediaWiki to version 1.16 or later, the variables set in AdminSettings.php file can be safely removed. AdminSettings.php is no longer needed. If it still exists, it will be loaded by maintenance scripts to retain backward compatibility.

Prior to 1.16

Manually create AdminSettings.php in the root directory of the MediaWiki installation. Typically, this is done by renaming AdminSettings.sample to AdminSettings.php and then editing AdminSettings.php appropriately.

AdminSettings.php should set three variables:

Example

<?php
/* Database authentication credentials */
$wgDBadminuser      = 'wikiadmin';
$wgDBadminpassword  = 'adminpass';

/* Whether to enable the profileinfo.php script. */
$wgEnableProfileInfo = false;
?>

Security

AdminSettings.php contains sensitive information (account names and passwords) that can help an attacker compromise your database management system. Ensure that you've taken the relevant preventative measures listed in Manual:Security and Manual:Securing database passwords .

PostgreSQL-specific issues

If using PostgreSQL with your MediaWiki installation, the authentication credentials used for $wgDBadminuser and $wgDBadminpassword should be the same as the credentials used for $wgDBuser and $wgDBpassword . This is necessary to ensure that the owner for new tables is set correctly.