Because you have to change the apache htaccess/security methods. Geesh. I need to stay out of these threads. This whole topic is out of control because PBX in a flash does it different with different versions and users are always going to be eternally confused with this issue regardless of the solutions. The area to change things IS the right area because it's the area in apache where one changes the security. He wants to open up the recording interface. Are the normal routines working for him? No. So basically he has to go back and figure it out himself by deleting security. How else would you recommend it Bill. Because I see no solution from you? I just see you talking about security....
These threads are an ongoing cycle for any person who has dealt with this. What do I tell the user? Edit pbx.conf? ari.conf? edit the .htaccess file? which one? Like I said it's changed through versions of pbx in a flash and I hold no ill-will towards them for that and I'm not saying anyone has done anything wrong. But what do you expect to to? and in regards to the unauthenticated access, there are plenty of FreePBX distro systems out there without all of these extra apache digest authentication methods. I digress. Ward can do it however he likes and whatever way(s) makes his users feel more comfortable and I am fine with that. I don't have a problem.
The problem with this thread and as MANY other threads have said before is delete or edit the .htaccess files or pbx.conf or ari.conf so I am sort of confused on why security is coming up here against me but in other threads it's ok to mention these .conf files and edit them freely or delete them..............
I'll just be staying away from this topic from now on mainly because I don't know what the hell I'm talking about in regards to what version uses what trick for what digest method. Not because of any ill-will.
End point: Why isn't there a real solution. Why is it hacky. Why can't PBX in a flash users hit a button someone to turn this stuff off. Why can't it be fixed by PBX in a flash? Those are my unanswered questions.
How can you tell? Unintelligible English and two unexplained screen shots are all I see. One of those screen shots appears to open the whole web server to unauthenticated access.