kryppienation wrote:no one knows how to make this work just by putting in the username and password?
Sure, many xampp users know how to do that. Maybe half a day is not enough time to reply on your question. Not everybody is every half an hour online in this board. So be patient if you want to get help.
kryppienation wrote:I never had this problem with previous versions of xampp i could always access my information from anywhere by only using a username and password.
Because many users use XAMPP not only as test environment but production environment (We recommend not to do this until you know exactly what you have to change zu harden and secure XAMPP!!!) without any security-changes, the xampp developers decided to bring a minimal security in the default configuration. This is the new XAMPP security concept! Every sensitive and critical xampp page can only be accessed by localhost. For the most users that is enough, because a xampp test environment is commonly installed on their own computer.
What you have to do:
- Code: Select all
#
# New XAMPP security concept
#
<LocationMatch "^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info))">
Order deny,allow
Deny from all
Allow from ::1 127.0.0.0/8 \
fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 \
fe80::/10 169.254.0.0/16
ErrorDocument 403 /error/HTTP_XAMPP_FORBIDDEN.html.var
</LocationMatch>
The LocationMatch line defines which parts of xampp use the new security concept. You see "phpmyadmin" in this list, and the whole "xampp" folder (XAMPP Administration Panel).
If you have a static IP, the easiest to do is to add your IP to the "Allow from" Rule. Thats enough to allow you access like localhost.
If this is not the case and you just want to access phpmyadmin from outside:
- Create a new password for the mysql user root (use the xamppsecurity.php script for that. Otherwise you had to change the phpmyadmin configuration to tell phpmyadmin the password and authorisation-type)
- remove phpmyadmin from the LocationMatch Rule
- create a new Directory Allow/Deny Block for phpmyadmin in httpd.conf (can't explain specific, because that depends on your own needs)
If not you had to change a little more:
- remove the parts from the list which you want to access from outside
- create a .htaccess password protection (AuthType basic) on the xampp Folder