[BUGFIX] Add SYS/ipAnonymization to DefaultConfiguration

Resolves: #85060 Related: #84053 Releases: master, 9.2, 8.7, 7.6 Change-Id: I04dba093dc8e423adbf75e2198c31e5c013864cb Reviewed-on: https://review.typo3.org/57029 Tested-by: TYPO3com <no-reply@typo3.com> Reviewed-by: Oliver Hader <oliver.hader@typo3.org> Tested-by: Oliver Hader <oliver.hader@typo3.org>
TYPO3 · May 22, 2018 · 80700b0 · 80700b0
1 parent ff2bb98
commit 80700b0
Showing 1 changed file with 1 addition and 0 deletions.
diff --git a/typo3/sysext/core/Configuration/DefaultConfiguration.php b/typo3/sysext/core/Configuration/DefaultConfiguration.php
@@ -63,6 +63,7 @@
         'recursiveDomainSearch' => false,        // Boolean: If set, the search for domain records will be done recursively by stripping parts of the hostname off until a matching domain record is found.
         'trustedHostsPattern' => 'SERVER_NAME',    // String: Regular expression pattern that matches all allowed hostnames (including their ports) of this TYPO3 installation, or the string "SERVER_NAME" (default). The default value <code>SERVER_NAME</code> checks if the HTTP Host header equals the SERVER_NAME and SERVER_PORT. This is secure in correctly configured hosting environments and does not need further configuration. If you cannot change your hosting environment, you can enter a regular expression here. Examples: <code>.*\.domain\.com</code> matches all hosts that end with <code>.domain.com</code> with all corresponding subdomains. <code>(.*\.domain|.*\.otherdomain)\.com</code> matches all hostnames with subdomains from <code>.domain.com</code> and <code>.otherdomain.com</code>. Be aware that HTTP Host header may also contain a port. If your installation runs on a specific port, you need to explicitly allow this in your pattern, e.g. <code>www\.domain\.com:88</code> allows only <code>www.domain.com:88</code>, <strong>not</strong> <code>www.domain.com</code>. To disable this check completely (not recommended because it is <strong>insecure</strong>) you can use ".*" as pattern.
         'devIPmask' => '127.0.0.1,::1',            // Defines a list of IP addresses which will allow development-output to display. The debug() function will use this as a filter. See the function \TYPO3\CMS\Core\Utility\GeneralUtility::cmpIP() for details on syntax. Setting this to blank value will deny all. Setting to "*" will allow all.
+        'ipAnonymization' => 1,                 // <p>Configures if and how IP addresses stored via TYPO3''s API should be anonymized ("masked") with a zero-numbered replacement.</p><p>Integer (0, 1, 2).</p><dl><dt>0</dt><dd>Disabled - Do not modify IP addresses at all</dd><dt>1</dt><dd>Mask the last byte for IPv4 addresses / Mask the Interface ID for IPv6 addresses (default)</dd><dt>2</dt><dd>Mask the last two bytes for IPv4 addresses / Mask the Interface ID and SLA ID for IPv6 addresses</dd></dl>
         'sqlDebug' => 0,                        // <p>Integer (0, 1, 2). Allows displaying executed SQL queries in the browser (for debugging purposes and development)</p><dl><dt>0</dt><dd>no SQL shown (default)</dd><dt>1</dt><dd>show only failed queries</dd><dt>2</dt><dd>show all queries</dd></dl>
         'enable_DLOG' => false,                    // Boolean: Whether the developer log is enabled. See constant "TYPO3_DLOG"
         'ddmmyy' => 'd-m-y',                    // Format of Date-Month-Year - see PHP-function <a href="http://php.net/date" target="_blank">date()</a>