Differences between revisions 1 and 6 (spanning 5 versions)
Revision 1 as of 2005-08-17 18:18:27
Size: 880
Editor: StephanWiesand
Comment: damit müssten eigentlich alle klarkommen
Revision 6 as of 2008-10-30 11:40:24
Size: 1053
Editor: localhost
Comment: converted to 1.6 markup
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
#acl Known:read,write All:read DVInfo Access control is simple. The default settings had to be tightened a bit after spammers started to actually create accounts :-(
Line 3: Line 3:
Access control is simple, and the default setting is rather permissive:
 * anonymous users (not logged into their wiki account) can only read
 * members of AdminGroup have all rights, regardless of ACLs
 * all other known users have all rights, unless a page is secured by an ACL
  * any user may create an account [:UserPreferences: here]		  * by default, any user can read
 * members of AdminGroup have all rights, regardless of ACLs 
 * members of EditorsGroup have all rights, unless a page is protected by an ACL
  * any user may create an account [[UserPreferences| here]]
  * any member of EditorsGroup can add accounts to this group, hence granting write access to a collaegue
Line 10: Line 10:
  #acl YourName:read,write,delete,revert,admin Known:read,write,revert All:read   #acl YourName:read,write,delete,revert,admin All:read
Line 16: Line 16:
  
However, do ''not'' make pages writable for anonymous users. The spammers are out there.

DVInfo Access control is simple. The default settings had to be tightened a bit after spammers started to actually create accounts :-(

  • by default, any user can read

  • members of AdminGroup have all rights, regardless of ACLs

  • members of EditorsGroup have all rights, unless a page is protected by an ACL

    • any user may create an account here

    • any member of EditorsGroup can add accounts to this group, hence granting write access to a collaegue

  • to protect a page, add a line like this at the top: 
      #acl YourName:read,write,delete,revert,admin All:read

    • you can do that unless the page is already protected, and you don't have admin rights

Please don't be too restrictive. After all, there's the revert action available, and you can subscribe to email notifications for your pages to get informed when they are changed.

However, do not make pages writable for anonymous users. The spammers are out there.

For more information about ACLS, see HelpOnAccessControlLists.

Access_Restrictions (last edited 2013-01-11 21:16:01 by StephanWiesand)