1086
Comment:
|
← Revision 7 as of 2013-01-11 21:16:01 ⇥
1497
|
Deletions are marked like this. | Additions are marked like this. |
Line 1: | Line 1: |
#acl Known:read,write All:read |
|
Line 8: | Line 6: |
* any user may create an account [:UserPreferences: here] * any member of EditorsGroup can add accounts to this group, hence granting write access to a collaegue |
* anyone may create an account [[https://dvinfo.ifh.de?action=newaccount| here]] * please use Firstname``Lastname as the account name (John``Smith, Daisy``Duck, Samuel``L``Bronkowitz, ...) * without further action, such an account can be used to subscribe to change notifications by e-mail * to actually add or modify content, the account must be in the Editors``Group * any member of EditorsGroup can add accounts to this group, thus granting write access to a colleague * or simply ask uco-zn |
Line 19: | Line 21: |
However, do ''not'' make pages writable for anonymous users. The spammers are out there. | However, do ''not'' make pages writable for anonymous users, and do ''not'' add anyone to EditorsGroup you don't actually know or before the account exists. The spammers are out there. |
Line 21: | Line 23: |
For more information about ACLS, see HelpOnAccessControlLists. | For more information about ACLs, see HelpOnAccessControlLists. |
DVInfo Access control is simple. The default settings had to be tightened a bit after spammers started to actually create accounts
- by default, any user can read
members of AdminGroup have all rights, regardless of ACLs
members of EditorsGroup have all rights, unless a page is protected by an ACL
anyone may create an account here
please use FirstnameLastname as the account name (JohnSmith, DaisyDuck, SamuelLBronkowitz, ...)
- without further action, such an account can be used to subscribe to change notifications by e-mail
to actually add or modify content, the account must be in the EditorsGroup
any member of EditorsGroup can add accounts to this group, thus granting write access to a colleague
- or simply ask uco-zn
- to protect a page, add a line like this at the top:
#acl YourName:read,write,delete,revert,admin All:read
you can do that unless the page is already protected, and you don't have admin rights
Please don't be too restrictive. After all, there's the revert action available, and you can subscribe to email notifications for your pages to get informed when they are changed.
However, do not make pages writable for anonymous users, and do not add anyone to EditorsGroup you don't actually know or before the account exists. The spammers are out there.
For more information about ACLs, see HelpOnAccessControlLists.