Remove back end assets from public front end auth pages

[tablatronix]

Remove

• generator
• author
• apple icon
• favicon
• Remove all javascript and other assets not required by login form and reset password pages, exposes versioning and backend dependencies for no reason
• Remove backend hooks. Header / Footer
• Remove invisible elements ( footer/logo )

[tablatronix]

Leaving in assets for now

[tablatronix]

This change removes back end hooks from public auth pages to prevent data leakage and unintended consequences via bad plugin programming.

Now I would like to allow plugins to continue to modify these pages for custom login stuff, but I do not want to switch them to front end hooks as our template system does not support auth pages yet.

Perhaps we should add specific headers for public auth pages.

This includes Index and resetpassword pages.

[tablatronix]

NOTE: These pages were never consistent to begin with, hooks were executed on resetpassword but not login, so now they match to neither execute backend hooks for reasoning that they are not back end pages, even if they are not front end either. They also had css hidden footers and other crap in them.

[tablatronix]

From hameau
The javascript assets have version strings on them.

Will have to obfuscate these or remove them, I do not believe anything indexes assets, but a security scanner could be made to sniff these out and log them.

[tablatronix]

#665