Loading...
 

See also Shared Secrets

As of 2014-07-29, this is a tool for developers only. You need to write code for the external system to access the information. See developer documentation at User Encryption. The system is designed so that encryption can later be implemented for data in Tiki (files, tracker items, etc.)

User Encryption


User encryption aims to a provide secure, personal storage of sensitive data, e.g. external usernames and passwords.

About User Encryption

When linking multiple systems together, it is often required to have a username and a password for the target system available, in order to login. The other system can be an external database, a web service, etc.

User Encryption enables secure storage of such external log-in credentials. The decryption key is not stored by Tiki, and it is only available when the user is logged in.

Notes:

  • This is a new an experimental feature in Tiki 13 and has been backported for Tiki 12.2, so it is available (as experimental) in the LTS version
  • Use the Domain Password module to allow the user to specify username and password
  • CryptLib must be integrated by coding to access the domain. CryptLib provides the decrypted domain credentials


See also User Encryption.

Password Domains

Each linked system makes up a "password domain". Multiple users can log in to a domain. A password domain has a name. The name must be unique.

The interface to a linked system, uses the password domain name to look-up a user's credentials for the system.

The module "Domain Password", prompts the user for a password.
The password is encrypted and saved associated with the domain specified in the module.

Configuring Password domains

Configure in the Admin / Security panel.

 Make sure OpenSSL (Tiki18+) / Mcrypt (Tiki pre-18) is available
Before you enable "User Encryption", make sure that the OpenSSL (Tiki18+) / Mcrypt (Tiki pre-18) PHP extension is available. It is required to encrypt the passwords securely.

Click to expand
Click to expand


The names of the password domains must be unique.

Specifying domain credentials

The module "Domain Password" allows users to specify a password (and possibly a username) for a domain. Only defined password domains can be specified.

Image

By default the currently logged in Tiki username will be used. By setting "Use current user" = "n", the user must also specify a username.

The view mode is displayed initially. The user can choose to edit the credentials, if the module configuration allows it.
Image

If the password domain is misconfigured, an error message is displayed.
Image

If the user click edit, the credentials can be edited.
If the current Tiki user is being used, only the password can be edited.
Image

Code integration

See User Encryption @ dev.tiki.org

doc.tiki.org

Get Started

Admin Guide User Guide

Keywords

Keywords serve as "hubs" for navigation within the Tiki documentation. They correspond to development keywords (bug reports and feature requests):

Accessibility (WAI and 508)
Accounting
Articles and Submissions
Backlinks
Banners
Batch
BigBlueButton audio/video/chat/screensharing
Blog
Bookmark
Browser Compatibility
Link Cache
Calendar
Category
Chat
Clean URLs
Comments
Communication Center
Compression (gzip)
Contacts (Address Book)
Contact us
Content Templates
Contribution
Cookie
Copyright
Credit
Custom Home and Group Home Page
Date and Time
Debugger Console
Directory of hyperlinks
Documentation link from Tiki to doc.tiki.org (Help System)
Docs
Draw
Dynamic Content
Dynamic Variable
External Authentication
FAQ
Featured links
File Gallery
Forum
Friendship Network (Community)
Gmap Google maps
Groups
Hotword
HTML Page
i18n (Multilingual, l10n)
Image Gallery
Import-Export
Install
Integrator
Interoperability
Inter-User Messages
InterTiki
Kaltura video management
Karma
Live Support
Login
Logs (system & action)
Look and Feel
Mail-in
Map with Mapserver
Menu
Meta Elements
Mobile Tiki and Voice Tiki
Module
MultiTiki
MyTiki
Newsletter
Notepad
Payment
Performance Speed / Load
Permissions
Platform independence (Linux-Apache, Windows/IIS, Mac, BSD)
Polls
Profiles
Profile Manager
Report
Toolbar
Quiz
Rating
Feeds
Score
Search engine optimization
Search
Search and Replace
Security
Semantic links
Shadowbox
Shadow Layers
Share
Shopping cart
Shoutbox
Slideshow
Smiley
Social Networks
Spam protection (Anti-bot CATPCHA)
Spellcheck
Spreadsheet
Stats
Surveys
Tags
Task
Tell a Friend, alert + Social Bookmarking
TikiTests
Theme CSS & Smarty
Tiki Manager
Trackers
Transitions
User Administration including registration and banning
User Files
User Menu
Watch
WebDAV
Webmail
Web Services
Wiki History, page rename, etc
Wiki Syntax
Wiki structure (book and table of content)
Workspace
WSOD
WYSIWYCA
WYSIWYG
XMLRPC

Tiki Newsletter

Delivered fresh to your email inbox!
Newsletter subscribe icon
Don't miss major announcements and other news!
Contribute to Tiki