Hello all!
First time poster here :-)
Hope I'm in the right forum for this.
I've recently been asked to look and play around with DNN. So I've installed the "Install Package" of version 05.01.04 (3) and decided to read/view videos.
I stumbled upon something interesting and figured I'd ask anyone of you pros for answers.
Seems like there is a way to "Auto Install" skins and modules using the following URL:
http://www.yourdomaine.com/Install/Install.aspx?mode=InstallResources
In order for this to work, one needs to "drop" modules and/or skins packages inside the appropriate subfolders of the "Install" folder.
Assuming I've connected to my FTP site in the morning, dropped a couple of skins and modules which I plan on installing later on...how can I prevent any internet user to simply type the above URL and "automagically" trigger the installation process of the skins and modules I've uploaded in the morning?
Is there a way to block that URL and simply never make it available? Forcing the HOST to do this manually by logging in ??
I'm fully aware of the existence of the "app_offline.htm" page and of the "AutoUpgrade" flag in the web.config. I believe these are mostly used when you plan on upgrading version or simply do some maintenance task.
Assume the following scenario:
I ask an employee to find me 5 modules and 4 skins packages and send them on the FTP site in the appropriate subfolders of the "Install" folder.
As he's doing this, my site is still up and running and I don't plan on installing these 5 modules and 4 skins today nor do I wish to add a "app_offline.htm" page or change the AutoUpgrade flag to false. What I really plan on doing is installing them let's say...in one week.
At this point, nothing is stopping an internet user to simply try at any point-in-time the following URL:
http://www.yourdomaine.com/Install/Install.aspx?mode=InstallResources
And "automagically" force the installation of my 5 modules and 4 skins. right?
Is there a way to prevent this from happening?
Thanks