Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Tracking API: Allow setTokenAuth() to be an admin token, not only the Super User #2302

Closed
mattab opened this issue Apr 12, 2011 · 1 comment
Closed

Tracking API: Allow setTokenAuth() to be an admin token, not only the Super User #2302

mattab opened this issue Apr 12, 2011 · 1 comment
Labels
Enhancement For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc.
Milestone
1.3

Comments

@mattab
Copy link
Member

mattab commented Apr 12, 2011

Super User token is very secret. The Tracking API should allow for more flexibility and allow any "admin" token for the site being tracked.

For performance, we don't want to query the DB on each Tracking API request. So we can cache in the Tracker cache files the list of all allowed admin token_auth and check against this list.
@mattab
Copy link
Member Author

mattab commented Apr 12, 2011

(In [4417]) Fixes #2302 Now, setTokenAuth on the Tracking API can accept the Super User token_auth or any 'admin' user token_auth (the token are cached in the tracker cache file, which is now flushed when users or permissions are changed)

@mattab mattab added this to the Piwik 1.3 milestone Jul 8, 2014
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Enhancement For new feature suggestions that enhance Matomo's capabilities or add a new report, new API etc.
Projects
None yet
Milestone
1.3
Development

No branches or pull requests
1 participant
@mattab