Tags:
create new tag
view all tags

SID-00694: Adding access control template to bottom of every page

Status: Answered Answered TWiki version: 4.3.2 Perl version: PCRE Library Version 6.6 06-Feb-2006
Category: CategoryAccessControl Server OS: Centos 5.4 Last update: 15 years ago

Hi Team, I want my users control their own topic's acces restrictions by themselves.

Is it possible to add Set.... lines bottom of every created page. So the users write only the WikiName of user to allow/deny restrictions 

   * Set DENYTOPICVIEW = 
   * Set ALLOWTOPICVIEW = 
   * Set DENYTOPICCHANGE = 
   * Set ALLOWTOPICCHANGE = 
   * Set DENYTOPICRENAME = 
   * Set ALLOWTOPICRENAME =

Or are there any other way to do this ? Thanks

-- TolgaYAMAN - 2009-12-28

Discussion and Answer

I assume you refer to user homepages. Yes, it is possible to restrict access to homepages, although I do not recommend it (TWiki has soft security, see TWikiAccessControl.

To restrict access for new users, add access control settings to your NewUserTemplate. To restrict access to any new page, modify your TWiki.WebTopicEditTemplate. Example: 

   * Set ALLOWTOPICCHANGE = %WIKIUSERNAME%

-- PeterThoeny - 2010-02-02

Hi Peter, I am working on our companies intranet site. There will be special webs/topics for projects. So only some of our user's must access to these.

When a user create a topic, i want empty access control settings at each topic.

  • Set ALLOWTOPICVIEW =
  • Set DENYTOPICCHANGE =
  • Set ALLOWTOPICCHANGE =
  • Set DENYTOPICRENAME =
  • Set ALLOWTOPICRENAME =

User will make a decision for access settings, and fill the User names

-- TolgaYAMAN - 2010-02-09

Although possible to restrict access per page, I advise to rely more on soft security, e.g. rely on audit trail to verify who makes changes and peer pressure.

If you need hard access control I recommend to create webs for different groups and lock down those webs appropriately. That way you as an admin can change the access at a bigger granularity, and you do not bother users with access control details. This reduces the chance of operator errors, e.g. you get a more secure system.

-- PeterThoeny - 2010-02-10

Closing this question after more than 30 days of inactivity. Feel free to reopen if needed. Consider engaging one of the TWiki consultants if you need timely help. We invite you to get involved with the community, it is more likely you get community support if you support the open source project!

-- PeterThoeny - 2010-04-05

      Change status to:
ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.
SupportForm
Status Answered
Title Adding access control template to bottom of every page
SupportCategory CategoryAccessControl
TWiki version 4.3.2
Server OS Centos 5.4
Web server

Perl version PCRE Library Version 6.6 06-Feb-2006
Edit | Attach | Watch | Print version | History: r5 < r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r5 - 2010-04-05 - PeterThoeny
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.