Tags:
create new tag
view all tags

SID-00535: Site-level Access preferences not all propagating

Status: Answered Answered TWiki version: 4.3.2 Perl version: 5.10.1
Category: CategoryAccessControl Server OS: AIX Last update: 16 years ago

Hi I'm trying to set as many Site-level preferences as possible in TWikiPreferences, however, I'm finding that permissions are not propagating. TWikiGuest can still view the Main site. I'm doing this because it says in TWikiPreferences:

"Settings in TWikiPreferences will override settings in this topic, and should be used for defining custom settings and variables."

Basically I'm trying to deny to all, and I will set privleges on each Sites as needed. Note, I'm trying to do this without enabling "require valid-user" in apache since I get a double prompt if I turn it on (and the Template login is nicer) Double Prompt issue: HaveToAuthenticateTwice

It seems like other settings like the ATTACHFILESIZELIMIT, WEBLOGOIMG, SKIN propagate without issue.

Below are some of the settings(commented out here) I'm trying to set here:

  • #Set ALLOWWEBVIEW = TWikiAdminGroup
  • #Set ALLOWWEBCHANGE = TWikiAdminGroup
  • #Set ALLOWWEBRENAME= TWikiAdminGroup

  • #Set ALLOWTOPICVIEW = TWikiAdminGroup
  • #Set ALLOWTOPICCHANGE = TWikiAdminGroup
  • #Set ALLOWTOPICRENAME = TWikiAdminGroup

Alternatively I tried this but it didn't work either

  • #Set DENYTOPICVIEW = TWikiGuest
  • #Set DENYWEBVIEW = TWikiGuest
  • #Set DENYWEBCHANGE = TWikiGuest
  • #Set DENYWEBRENAME = TWikiGuest

Any idea what is going on?

Thanks

-- GregNeugebauer - 2009-09-18

Discussion and Answer

Access control setting evaluation is documented at TWiki.TWikiAccessControl#EvaluatingAllowDeny. Unlike other settings, you can't set access control on site level. This is an unfortunate spec change compared earlier implementations. For now you need to set access control settings per web with ALLOWWEB* settings in the WebPreferences.

-- PeterThoeny - 2009-09-18

Thanks, I've made a note on top of my TWikiPreferences that these particular settings don't propagate.

-- GregNeugebauer - 2009-09-21

      Change status to:
ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.
SupportForm
Status Answered
Title Site-level Access preferences not all propagating
SupportCategory CategoryAccessControl
TWiki version 4.3.2
Server OS AIX
Web server HTTPServer (Apache)
Perl version 5.10.1
Edit | Attach | Watch | Print version | History: r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r3 - 2009-09-21 - GregNeugebauer
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.