Hi TonyM, let me know if you need any help with the setup. The Environment Test is pretty good for identifying issues...
I haven't done anything with executing php from within TiddlyWiki. I'd gather making a http request from javascript to a php script may be more suitable. Probably want to avoid letting the wiki push any kind of php code payload. On Wednesday, September 5, 2018 at 9:05:44 PM UTC-4, TonyM wrote: > > sendwheel, > > Thanks so much for this, I will test it in haste as I have a large online > hosting environment based on PHP which has being unsuitable for hosting my > "private" wikis. I could never get prior php solutions working. > > I will eventually use https and even a CDN for speed. > > I am also committed to integrating TiddlyWiki with other platforms like > WordPress and this is a good method. > > If I may extend the conversation a little, have you done any work with > executing php from within TiddlyWiki - basically calling php installed on > the host for this purpose? It would allow feedback and comments to read > only tiddlywiki users. > > Regards > Tony > > On Thursday, September 6, 2018 at 3:24:10 AM UTC+10, sendwheel wrote: >> >> Created a new plugin to handle saving the wiki to a PHP based server. >> This can replace legacy store.php usage. The plugin is a bit more >> streamlined, updated code base, and adds some security enhancements to the >> process. >> >> It also has a fairly thorough debug test that can be run during setup to >> help squash environment/server problems >> >> >> Project page here: >> https://github.com/sendwheel/tw-receiver >> >> Comments and contributions welcome. >> >> >> >> Security wise offers: >> - Challenge Digest Authentication (enhanced security) >> -- This simple mechanism avoids passing the password in plain text. >> Instead the server is queried for a challenge token and that token is then >> combined with the password to form a new string that is both unique and >> temporary. >> - Data Integrity Signing (enhanced security) >> -- This practice creates a unique signature of the wiki text with the >> secret key. Checking the validity of this signature ensures the integrity >> of the wiki data and helps prevent tampering in transit. >> >> >> (also posted to TiddlyWikiDev) >> Please let me know your thoughts. >> > -- You received this message because you are subscribed to the Google Groups "TiddlyWiki" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/tiddlywiki. To view this discussion on the web visit https://groups.google.com/d/msgid/tiddlywiki/c881faac-d3fe-4ad5-afc5-1a778de3b0a2%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
