Magento – Access module files from admin panel

adminadmin-panelextensionsmagento-1.9

I have a Magento store which hosting information are missing. I can login into the admin panel and want to access the module files from there. Can I do this?

Best Answer

No, and for good reason. This would be a huge security risk.

There once was a free file manager extension that you could install via Magento Connect from the admin panel and then edit all the files (if file permissions on the server were not preventing it)

This extension has been used exensively by hackers who now just needed admin access to install any malware on the server. After that became known, the extension has been removed from Connect.

So what should you do instead?

Contact your hoster, identify yourself, and let them send you new login information.

Related Solutions

Magento – 1.9 magento change admin panel from backend

As far as I am aware you do not need to specify the admin path in the database simply in the local.xml.

In the database you should have the general website url under the path web/secure/base_url and web/unsecure/base_url and then under your local.xml you can set the admin frontName. Once these are set you can remove the other items and this should work.

Magento 1.9 – Admin Login Error: Access Denied

In the admin_rule table there should be an entry with record

INSERT INTO `admin_rule` (`rule_id`, `role_id`, `resource_id`, `privileges`, `assert_id`, `role_type`, `permission`) VALUES
(1, 1, 'all', NULL, 0, 'G', 'allow');

For admin_role table

INSERT INTO `admin_role` (`role_id`, `parent_id`, `tree_level`, `sort_order`, `role_type`, `user_id`, `role_name`, `gws_is_all`, `gws_websites`, `gws_store_groups`) VALUES
(1, 0, 1, 1, 'G', 0, 'Administrators', 1, NULL, NULL);

And create one admin user from root file using below script and try to login with that detail and see if that work.

<?php

# Create New admin User programmatically.
require_once('./app/Mage.php');
umask(0);
Mage::app();

try {
    $user = Mage::getModel('admin/user')
            ->setData(array(
                'username' => 'admin1',
                'firstname' => 'Admin',
                'lastname' => 'Admin',
                'email' => 'admin@test.com',
                'password' => 'admin123',
                'is_active' => 1
            ))->save();
}
catch (Exception $e) {
    echo $e->getMessage();
    exit;
}

//Assign Role Id
try {
    $user->setRoleIds(array(1))  //Administrator role id is 1 ,Here you can assign other roles ids
            ->setRoleUserId($user->getUserId())
            ->saveRelations();
}
catch (Exception $e) {
    echo $e->getMessage();
    exit;
}

echo "User created successfully";
?>

Best Answer

So what should you do instead?

Related Solutions

Magento – 1.9 magento change admin panel from backend

Magento 1.9 – Admin Login Error: Access Denied

Related Topic