[pmwiki-users] UserAuth vs. AuthUser

Patrick R. Michaud pmichaud at pobox.com
Thu Jun 30 09:08:23 CDT 2005


On Wed, Jun 29, 2005 at 06:36:17PM -0500, Jeremy Sproat wrote:
> It appears that AuthUser is officially part of the PmWiki distribution
> now.  It also appears to be in early development.  Does AuthUser
> represent the official authentication scheme for PmWiki?

Yes.

> Are there any plans to offer per-group security in AuthUser like
> UserAuth provides?  For example, in UserAuth I can specify that user
> Bob is the only one (besides Admin) who can view, edit, upload, etc.
> to the TopSecret group, but anyone can do anything with the WideOpen
> group.  

In AuthUser, you do this by specifying "id:Bob" for the 
view/edit/upload passwords in TopSecret.GroupAttributes .

> Another question: if AuthUser is the official authentication
> framework, does this mean that there are no plans to extend and/or
> support UserAuth?

I guess that depends on the authors/users of the UserAuth recipe.
I don't have any plans to extend/support UserAuth directly.

> Lastly, is AuthUser the framework which will allow LDAP-based authentication?

It will be, yes.  I just need to review my LDAP authentication standards
(especially the url specification) -- it's been 4-5 years since I've
dealt with that.

Pm



More information about the pmwiki-users mailing list