[Moin-user] Wiki server ignoring ACLs *followup*

Chris Freemesser cfreemesser at mail.cvs.rochester.edu
Wed Mar 9 15:46:08 EST 2016


Just a follow-up on my e-mail from yesterday about this weird ACL problem I'm 
experiencing.  I did some testing today to get a better understanding of what's 
going on.

=======
For the purposes of explaining all this:

WikiAdministrator is the admin/superuser for the wiki.

WikiGroup is the list of users with full admin rights to the wiki.

WikiUser is a user account that's a member of WikiGroup.
=======

If I add WikiAdministrator to the "acl_rights_before" line in the config file, 
the rights are recognized by the wiki pages.

If I add WikiAdministrator AND WikiGroup to the "acl_rights_before" line in the 
config file, the rights for each are recognized by the wiki pages.

So, the "acl_rights_before" line appears to work correctly.

If I add *anything* or *anybody* to the "acl_rights_default" line in the config 
file, *none* of the rights are recognized by the wiki pages.

So, the "acl_rights_default" line doesn't work at all.

For the next test, I added WikiAdministrator to the "acl_rights_before" line, 
and commented out the "acl_rights_default" line.

I then add an #acl line on a wiki page.  If I set the line to "All:" or 
"All:read", both settings function as intended.

If I add WikiUser to the #acl line, any rights I give that user (read, write, 
etc.) function as intended.

However, if I change the #acl line to only include WikiGroup, any rights 
assigned to WikiGroup are ignored.

So, the rights assigned via the #acl line work only for ALL or a USER, not for 
a GROUP.

Any thoughts as to why this may be happening?

Thanks,

Chris


_____________________________________________
Chris Freemesser, Systems Administrator
University of Rochester
Department of Brain and Cognitive Sciences
The Center for Visual Science
Meliora Hall, Room 255
Phone:  (585)275-0786
_____________________________________________




More information about the Moin-user mailing list