Hello,
at the moment the login and the output of opt-out is realized via the index.php. Why?
The problem is that we want to filter the requests for login and opt-out for security reasons. The login should only be available after login in a seperate security-system which authenticates via sms and filters the ip.
So, the problem is that mod_proxy can not filter query_strings but can forward post-requests normally.
But the request for opt-out is done via paramters:
module=CoreAdminHome&action=optOut&language=en
So i have to use mod_rewrite which can filter query_strings but cannot forward the post-request as it should. These are the rewrite rules:
RewriteEngine On
RewriteCond %{REQUEST_URI} ^/index.php$
RewriteCond %{QUERY_STRING} ^module=CoreAdminHome&action=optOut&language=de$
RewriteRule ^(.*)$ http://HOST:PORT/index.php?module=CoreAdminHome&action=optOut&language=de [P]
RewriteCond %{REQUEST_URI} ^/index.php$
RewriteCond %{QUERY_STRING} ^module=CoreAdminHome&action=optOut&language=en$
RewriteRule ^(.*)$ http://HOST:PORT/index.php?module=CoreAdminHome&action=optOut&language=en [P]
So, the problem is that we can see the opt-out, but cannot use is.
I think it would be nice if the output of the opt-out is realized with an own url or via piwik.php.
Because the piwik.php should be available from everywhere without an filter e.g. ip-filter.
Thank a lot.