[Moin-user] access control lists

Dean Hiller dean at xsoftware.biz
Mon Jan 31 07:52:33 EST 2005


Still doesn't seem to be working....here are my new settings....

config file......
    # Enable acl (0 to disable)
    acl_enabled = 1

    # IMPORTANT: grant yourself admin rights! replace YourName with
    # your user name. See HelpOnAccessControlLists for more help.
    # All acl_right_xxx must use unicode [Unicode]
    acl_rights_before = u"FastDragon:read,write,delete,revert,admin
RaceCar,Wing
Zero,AngelaHiller:read,write"

page....
#acl FastDragon:read,write,delete,revert,admin All:
WingZero,RaceCar,AngelaHiller:

When I test this out with RaceCar, he can view this page still.

What I really want is a locked down wiki so 4 people can
collaborate(FastDragon, RaceCar, WingZero, BigTalk), and they can also have
private pages from each other(except from the one Administrator which is
FastDragon).  It is hard to have my admin with a different name as two users
can't have the same e-mail address, otherwise I would create FastDragon and
WikiAdmin both with my e-mail.

I probably should create two groups(members and admins), but it looked
complicated in the help.  I might go try again though.  I would then want to
lock that page so only I can add new members for now(or at least admins
could add new members and no one else)

thanks for any pointers here.
dean

----- Original Message ----- 
From: "Nir Soffer" <nirs at freeshell.org>
To: <moin-user at lists.sourceforge.net>
Sent: Monday, January 31, 2005 5:45 AM
Subject: Re: [Moin-user] access control lists


> On Sun, 2005-01-30 at 20:25 -0800,
> moin-user-request at lists.sourceforge.net wrote:
> > I have these settings in the configuration....
> >
> >     # Enable acl (0 to disable)
> >     acl_enabled =3D 1
> >
> >     acl_rights_default =3D u"All:read =
> > RaceCar,WingZero:read,write,delete,revert"
> >
> >     acl_rights_before =3D u"FastDragon:read,write,delete,revert,admin
> > =
> > RaceCar,WingZero:read,write"
> >
> > Then I have this page that I don't want anyone but FastDragon to be
> > able =
> > to view, and at the top of the page, I have....
> >
> > #acl FastDragon:read,write,delete,revert,admin
> >
> > but this doesn't prevent RaceCar and WingZero from reading this page =
> > which I wanted to be totally private.  How do I do this?
>
> The acl is wrong. The correct setup will be:
>
> acl_rights_before = u"FastDragon:read,write,delete,revert,admin"
>
> This will let you do anything with any page - because acl use the first
> match.
>
> Do not define acl_rights_defaults, use the default setup.
>
> And on the page:
> #acl FastDragon:read,write,delete,revert,admin All:
>
> This will let FastDragon to do anything and deny all others.
>
> Do you really want FastDragon to admin this page? dragons might change
> the acl and loose their privacy. If that dragon page must be private,
> don't give the admin right:
> #acl FastDragon:read,write,delete,revert All:
>
> -- 
> Best Regards,
>
> Nir Soffer.
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> Tool for open source databases. Create drag-&-drop reports. Save time
> by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> _______________________________________________
> Moin-user mailing list
> Moin-user at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/moin-user





More information about the Moin-user mailing list