Apr 15th, 2010, 1:00 PM
Hi,
Until someone more knowledgeable comes along, I'd say that this isn't something to be concerned about.
I think the code quoted is simply checking if an FT session exists which as you read the documentation you'll see is a core thing to the whole process.
Martin
Until someone more knowledgeable comes along, I'd say that this isn't something to be concerned about.
I think the code quoted is simply checking if an FT session exists which as you read the documentation you'll see is a core thing to the whole process.
Martin
(Apr 13th, 2010, 8:56 AM)marcat Wrote: I am setting up FT for our production environment and need to know what the following setting is for? We want our installation to be as secure as possible and this setting makes me feel a bit uneasy...
/**
* This setting should be enabled PRIOR to including this file in any external script (e.g. the API)
* that doesn't require the person to be logged into Form Tools. This lets you leverage the Form Tools
* functionality in the outside world without already being logged into Form Tools.
*/
$g_check_ft_sessions = (isset($g_check_ft_sessions)) ? $g_check_ft_sessions : true;
Should I set this to false to keep the "outside world" away?