Skip to main content

This site requires you to update your browser. Your browsing experience maybe affected by not having the most up to date version.

We've moved the forum!

Please use forum.silverstripe.org for any new questions (announcement).
The forum archive will stick around, but will be read only.

You can also use our Slack channel or StackOverflow to ask for help.
Check out our community overview for more options to contribute.

General Questions /

General questions about getting started with SilverStripe that don't fit in any of the categories above.

Moderators: martimiz, Sean, Ed, biapar, Willr, Ingo, swaiba

Prevent accidental dev/build on production


Go to End


3 Posts   975 Views

Avatar
justin_t_brown

Community Member, 22 Posts

26 February 2016 at 9:46am

Are there any recommendations to prevent accidental dev/builds from happening on a production site? We run dev/build so frequently on our dev and staging sites that I'm extremely nervous one of us may absent-mindedly do the same on production without intending to.

Thanks!
~justin

Avatar
Kirk

Community Member, 67 Posts

26 February 2016 at 5:01pm

On a production site you should only be able to run a dev/build if the user is logged in as a admin.
If your production site allows a dev/build to be run by anyone then you probably still have it set as a dev site, which is not good and means your site could be at risk from a security point of view for example anyone will have access to run a dev tasks as well as other scenarios.
More info on the environment types can be found below.

https://docs.silverstripe.org/en/3.2/developer_guides/debugging/environment_types/

If your site is setup correctly and is in production mode you can setup the user permissions from the security tab in admin.

https://docs.silverstripe.org/en/3.2/developer_guides/security/

Avatar
justin_t_brown

Community Member, 22 Posts

2 March 2016 at 8:28am

@Kirk, thank you, this is helpful. I hadn't thought of using user permissions to protect against running dev/build accidentally. I'm going to move everyone off of the admin account, and use it solely for actual admin tasks.