diff options
| author | Frédéric Guillot <fred@kanboard.net> | 2019-01-30 21:34:04 -0800 |
|---|---|---|
| committer | Frédéric Guillot <fred@kanboard.net> | 2019-01-30 21:34:04 -0800 |
| commit | 8cf8f9ef078b31473e9edcb4b9a61a80e3152c0c (patch) | |
| tree | 5e5933780300d992bf43c1456ee622f979e915bf /app | |
| parent | a1c437bce825d90011750199fbcc0ca08ada51b3 (diff) | |
Disable by default plugin installer
- There is no code review or any approval process to submit a plugin.
- Anyone can submit a backdoor as plugin.
- This is up to the Kanboard instance owner to validate if a plugin is legit.
Diffstat (limited to 'app')
| -rw-r--r-- | app/constants.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/app/constants.php b/app/constants.php index af26856f..21f911f7 100644 --- a/app/constants.php +++ b/app/constants.php @@ -21,7 +21,7 @@ defined('CACHE_DIR') or define('CACHE_DIR', DATA_DIR.DIRECTORY_SEPARATOR.'cache' // Plugins settings defined('PLUGINS_DIR') or define('PLUGINS_DIR', ROOT_DIR.DIRECTORY_SEPARATOR.'plugins'); defined('PLUGIN_API_URL') or define('PLUGIN_API_URL', 'https://kanboard.org/plugins.json'); -defined('PLUGIN_INSTALLER') or define('PLUGIN_INSTALLER', true); +defined('PLUGIN_INSTALLER') or define('PLUGIN_INSTALLER', false); // Disabled by default for security reason // Enable/disable debug defined('DEBUG') or define('DEBUG', strtolower(getenv('DEBUG')) === 'true'); |