We relaunched the TWiki.org project with an expanded TWiki charter, and we invite you to participate! The TWiki.org Code of Conduct agreement took effect on 27 Oct 2008. We ask existing twiki.org users to opt-in. You need to opt-in to participate in the Blog, Codev, Plugins and TWiki webs. -- PeterThoeny - 27 Oct 2008
You are here: TWiki> Support Web>AccessGroupViewOkButEditKo (07 Aug 2008, TWikiGuest)
Tags:
create new tag
, view all tags

Question

Hello,

Here is the problem:I'am setting up twiki 4.2.1 with LdapContrib? authentification.

Authentication is working great, users and groups are loaded from LDAP.

The problem is that I do need to set up a twiki for a Private working group. I created the WEB and I did set up the accessControl like this * Set DENYWEBVIEW = * Set ALLOWWEBVIEW = ComdirGroup? * Set DENYWEBCHANGE = * Set ALLOWWEBCHANGE = ComdirGroup? * Set DENYWEBRENAME = * Set ALLOWWEBRENAME = ComdirGroup?

Thereis is a ldap group (comdir) associated with the users,

VIEW access control is working great for people in the ComdirGroup? (and does not for people which are not in this group, which is what we want). A session CGI is showing up asking for user/passwd dans authorisation is given accordingly.

The problem is with CHANGE. When I click on Edit, (even if I do have a session opened) I do have a apache popup that shows up asking for a Twiki user and passwd....which don't work.

ComdirGroup? is right now a TwikiGroup? containing Comdir group (but it was (not) working neither with Comdir.)

Any help on this one would be really appreciated,

Regards,

Marie-Laure

Environment

TWiki version: TWikiRelease04x02x01
TWiki plugins: DefaultPlugin, EmptyPlugin, InterwikiPlugin, LdapNgPlugin,Plugins.NewUserPlugin,Plugins.GluePlugin,Plugins.LdapContrib
Server OS: Debian Etch
Web server: Apache/2.2.3 (Debian)
Perl version: 5.008008 (linux)
Client OS: Ubuntu 7.04
Web Browser: Firefox
Categories: Htaccess, Permissions, Authentication, Authorisation

-- TWikiGuest - 06 Aug 2008

Answer

ALERT! If you answer a question - or have a question you asked answered by someone - please remember to edit the page and set the status to answered. The status is in a drop-down list below the edit box.

There was still a bit of mix between application authentification and apache authentification.

With the following lines in the apache config commented out it's OK.

# # require valid-user #

-- TWikiGuest - 07 Aug 2008

sorry, was : 

<FilesMatch "(attach|edit|manage|rename|save|upload|mail|logon|rest|.*auth).*">
       require valid-user
</FilesMatch>

-- TWikiGuest - 07 Aug 2008

 
Change status to:
WebForm
SupportStatus AnsweredQuestions
Edit | Attach | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 07 Aug 2008 - 08:12:13 - TWikiGuest
 
TWIKI.NET
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback