[Moin-user] Re: access control lists

Dean Hiller dean at xsoftware.biz
Mon Jan 31 11:53:49 EST 2005


Really, I can't set the defaults to read, write all and then take permission
away.  I can only add more permissions for certain pages???  hmmm, that is
exactly what I wanted.  I can't think of any other way to achieve defaulting
3 users to have total access, but taking away access every once in a while
when I create a new page.

If I default the system to them not having access, does that mean I have to
add permissions on every page I create so they have access again.  ie. I am
going to be creating more public pages than private ones(95% public/5%
private) and so I wanted to take the other route with taking away
permissions.
thanks,
dean


----- Original Message ----- 
From: "Eric Davis" <endavis at gmail.com>
To: <moin-user at lists.sourceforge.net>
Sent: Monday, January 31, 2005 12:33 PM
Subject: [Moin-user] Re: access control lists


> A little tidbit about ACLs, they use the first match.
>
> acl_rights_before is scanned first for a match, then the actual page
> acls. Therefore, acl_rights_before will match before the actual acls on
> the page.
>
> Given the setup that you have, FastDragon will have admin to all pages
> no matter what, and RaceCar,WingZero,and AngelaHiller will have
> read,write to all pages no matter what you put in the pages regarding
> any of these 4 users.  (In other words, rights in acl_rights_before
> cannot be taken away in acls on the page, but additional rights can be
> given from acls on the page.)
>
> You can't do what you want with the setup you have.
>
> Eric Davis
>
>
>
> Dean Hiller wrote:
>
> >>Still doesn't seem to be working....here are my new settings....
> >>
> >>config file......
> >>    # Enable acl (0 to disable)
> >>    acl_enabled = 1
> >>
> >>    # IMPORTANT: grant yourself admin rights! replace YourName with
> >>    # your user name. See HelpOnAccessControlLists for more help.
> >>    # All acl_right_xxx must use unicode [Unicode]
> >>    acl_rights_before = u"FastDragon:read,write,delete,revert,admin
> >>RaceCar,Wing
> >>Zero,AngelaHiller:read,write"
> >>
> >>page....
> >>#acl FastDragon:read,write,delete,revert,admin All:
> >>WingZero,RaceCar,AngelaHiller:
> >>
> >>When I test this out with RaceCar, he can view this page still.
> >>
> >>What I really want is a locked down wiki so 4 people can
> >>collaborate(FastDragon, RaceCar, WingZero, BigTalk), and they can also
> >
> > have
> >
> >>private pages from each other(except from the one Administrator which is
> >>FastDragon).  It is hard to have my admin with a different name as two
> >
> > users
> >
> >>can't have the same e-mail address, otherwise I would create FastDragon
> >
> > and
> >
> >>WikiAdmin both with my e-mail.
> >>
> >>I probably should create two groups(members and admins), but it looked
> >>complicated in the help.  I might go try again though.  I would then
want
> >
> > to
> >
> >>lock that page so only I can add new members for now(or at least admins
> >>could add new members and no one else)
> >>
> >>thanks for any pointers here.
> >>dean
> >>
>
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
> Tool for open source databases. Create drag-&-drop reports. Save time
> by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
> Download a FREE copy at http://www.intelliview.com/go/osdn_nl
> _______________________________________________
> Moin-user mailing list
> Moin-user at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/moin-user





More information about the Moin-user mailing list