Disallow anonymous access
All anonymous user requests are redirected to the login page. There is no need to revoke all permissions manually. Can be used in combination with the AccountManagerPlugin.
By default static resources from plugins are allowed, ie URLs such as
/chrome/something are not blocked.
If you want to block everything except
/chrome/common (standard Trac styles) and
/chrome/site (environment customizations), then add the following block to your
[noanonymous] paranoid = true
See also PermRedirectPlugin for conditional user redirects.
If you have any issues, create a new ticket.
Download the zipped source from here.
Unpack or checkout the downloaded source files into the
plugins/ directory of your Trac project environment.
Enable the noanonymous plugin in your
[components] noanonymous.* = enabled
Open your Trac project site as anonymous and all you can access is the login page, regardless of anonymous user permissions.
- 10369 by techtonik on 2011-06-23 15:44:20
#8868 - redirect to original page after login
- 9696 by techtonik on 2010-12-17 18:35:09
write comment fully
- 9695 by techtonik on 2010-12-17 18:05:51
relax filtering to allow static resources from third-party plugins
added paranoid option for conservative behavior