Fullscreen
[Show/Hide Right Column]

Print
Tiki Reference Guide  »  Security  »  General Security

General Security tab

Overview
Use this tab to configure the general, site-wide security settings.

To Access
From the Security Admin page, click the General Security tab.

7.x
Admin: Security, General tab
General Security tab

Field Description Default
Smarty Security If enabled, PHP coding will not be allowed in Smarty TPL templates. Enabled
HTML Purifier If enabled, Tiki will attempt to "sanitize" all generated pages and produce standards-compliant pages.
Output Should be HTML Purified
Allow HTML in link text... If enabled, you can include HTML coding in menu links Disabled
Require confirmation if CSRF detected
Protect against CSRF with a ticket

6.x
Tab name
Tab name

Field Description Default
Smarty Security If enabled, PHP coding will not be allowed in Smarty TPL templates. Enabled
HTML Purifier If enabled, Tiki will attempt to "sanitize" all generated pages and produce standards-compliant pages.
Output Should be HTML Purified
Allow HTML in link text... If enabled, you can include HTML coding in menu links Disabled
Require confirmation if CSRF detected
Protect against CSRF with a ticket





New in Tiki9:
A new preference has been added (trust_input) to allow (or disallow) the tiki_p_trust_input permission in a tiki-wide sense to increase security. It defaults to n for safety.

Contributors to this page: xavi67881 points  , Rick22958 points  and system .
Page last modified on Friday 23 March, 2012 13:29:22 UTC by xavi67881 points .
The content on this page is licensed under the terms of the Creative Commons Attribution-ShareAlike License.

SourceHistorySlideshowComments

Site Language

Reference Guide

Keywords

These keywords serve as "hubs" for navigation within the Tiki documentation. They correspond to development keywords (bug reports and feature requests):



Tiki Newsletter

Delivered fresh to your email inbox!
Newsletter subscribe icon
Don't miss major announcements and other news!
Contribute to Tiki