[Moin-user] Recommended Authorisation scheme
Nir Soffer
nirs at freeshell.org
Wed Feb 8 05:40:03 EST 2006
On 8 Feb, 2006, at 14:38, Mohacsi Janos wrote:
> - 2 admins who has every rights
Put them into acl_rights_before
> - few trusted editor (EditorGroup)
Put the EditorsGroup into acl_rights_before
> - lots of anonymous reader
Works as is
> - no registration is allowed
Will be hard to disabled without creating your own UserPreferences
macro and userform action. But it is not really needed. Let the users
to register so they can use the user preferences they like, it does not
cost you anything.
You can use acl to make registered user have the same rights of
anonymous users, so registration is just a user convenience.
>
> Authentication should work with either via HTTP Basic Authentication
> or cookie authentication. If I use HTTP Basic Authentication then how
> can I enable access to anonymous users? If I use cookie authentication
> how can prevent self registration?
You don't really care about self registration.
Best Regards,
Nir Soffer
More information about the Moin-user
mailing list