Reputation: 27
Restrict phpmyadmin access in the application itself
I would like to restrict the phpmyadmin access only to certain IP addresses. I cannot change the server configuration and I'm not in a position right now to change my httpd conf files. Is there a way to accomplish this in application level?
Upvotes: 1
Views: 711
Answers (1)
Reputation: 2520
I've noticed that this is a duplicate of this: How to restrict access to phpmyadmin?
But since my answer hasn't been given there yet here's what I think:
I've found that a way to accomplish this is to get into phpmyadmin's config.inc.php. You can find that in the root directory of the phpmyadmin directory.
$cfg['Servers'][$i]['AllowDeny']['order'] = 'deny,allow';
$cfg['Servers'][$i]['AllowDeny']['rules'] = array(
'deny % from all',
'allow % from 127.0.0.1',
'allow % from ::1',
'allow % from *YOUR_IP_ADDRESS_HERE*',
);
Edit: If you're behind a proxy, which I think most production servers are. You should also set the trusted proxies for HTTP_X_FORWARDED_FOR like so:
$cfg['TrustedProxies'] = array('*PROXY_IP_HERE*' => 'HTTP_X_FORWARDED_FOR',);
Upvotes: 1
Related Questions
- Allow access to phpmyadmin from localhost only
- how to secure phpmyadmin access through .htaccess
- How do I restrict access to specific database user accounts in phpMyAdmin?
- create phpmyadmin user for selected database access only
- How to configure phpMyAdmin for multiple users - each with access to their database only
- WAMP - How to restrict access to phpMyAdmin for a dedicate ip address?
- How to allow phpmyadmin accessible from only ip address?
- phpMyAdmin Block Access to Single Database
- phpmyadmin limit privileges for a specific database
- PHP - Restrict access to admin page for logged on user