Over the past couple weeks, @alento and myself have been working on a script to allow non-admins to manage a domain (example: a company running MIAB can give an HR department access to my script to add or remove users, without the need to give them full access to the MIAB instance). It does not use a traditional database, it uses a custom flat-file database that I have designed myself over the years. So the script can be drag and drop, however the config.php should be properly configured for maximum security.
The GitHub page is located here: https://github.com/mitchellurgero/miab_account_management
The setup is simple:
- git clone the repository to a webservers root directory (for Apache / Nginx the default is
- copy config.example.php to config.php. Modify this to your config.
db_locationvariable should not be anywhere inside, or under the webserver’s root. If you are using a default root, a good play is just
/var/www. However anywhere is good as long as the webserver has read/write access.
Some screen shots: