You must have administrator permissions before you can access the PCA.
You cannot have administrator permissions without first being a system user.
You cannot access the PCA without logging in first.
Access to the PCA is protected by a double connection for security reasons.
If you bypass this security, you open your board to easy hacking (the hacker would not need to know your username or password)
It is possible, in certain circumstances, to appear as if you were a different user. This does not always require administrator credentials. In other words, in certain circumstances, someone may be able to log in on your behalf without knowing your password. After you log in, phpBB sets a cookie that tracks your session. If a hacker somehow gains access to this cookie, it will appear as you.
The PCA is considered important and therefore requires access protection.
If, despite everything, you want to remove this protection.
Open adm/index.php
Find
Code: Select all
// Have they authenticated (again) as an admin for this session?
if (!isset($user->data['session_admin']) || !$user->data['session_admin'])
{
login_box('', $user->lang['LOGIN_ADMIN_CONFIRM'], $user->lang['LOGIN_ADMIN_SUCCESS'], true, false);
}Code: Select all
// Have they authenticated (again) as an admin for this session?
//if (!isset($user->data['session_admin']) || !$user->data['session_admin'])
//{
// login_box('', $user->lang['LOGIN_ADMIN_CONFIRM'], $user->lang['LOGIN_ADMIN_SUCCESS'], true, false);
//}The next time you log in to the forum you will no longer be asked for a password to access the PCA