<br><br><div><span class="gmail_quote">On 1/6/06, <b class="gmail_sendername">Patrick R. Michaud</b> <<a href="mailto:pmichaud@pobox.com">pmichaud@pobox.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Thu, Jan 05, 2006 at 04:16:04PM -0800, Richard A. Millard wrote:<br><br>> I was also hoping to set up a RSS feed of the Group.RecentChanges page<br>
</blockquote><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">><br>> I have that Group password set using Eberron.GroupAttributes?action=attr ,
<br>> but I can't figure out how to allow Group.RecentChange to produce a RSS<br>> feed, and still protect the rest of the Group behind a login password.<br>><br>> Any suggestions would be appreciated!
<br><br>Sure thing! It's good that you have Group.RecentChanges set to "nopass",<br>this is necessary for people to get the RSS feed w/o a password. But<br>there's one other step you need to do -- in local/config.php you need
<br>to set<br><br> $EnablePageListProtect = 0;<br><br>Why is this needed? Well, even though the Group.RecentChanges page<br>isn't read protected, all of the pages it's referencing *are* protected,<br>and in the past most admins have expressed that they want the existence
<br>of such pages to be kept private and not "leak" out through things<br>such as searches, page lists, and (of course) RSS feeds.<br><br>By setting $EnablePageListProtect=0; you're telling the pagelist function
<br>to go ahead and list pages that are read protected. This doesn't allow<br>others to actually view the page without a password(*) -- it just lets them<br>see that the page exists.<br><br>(In an RSS feed someone might be able to see partial page contents
<br>in the description/page excerpt. This can be disabled if you wish --<br>let me know.)<br>
</blockquote></div><br>
If you want to keep $EnablePageListProtect=1; in your config.php, I believe you could create a local/<span class="q">Eberron.php file containing just </span><br>
<br>
<?php<br>
<br>
// Page List Protection enabling - <a href="http://www.pmwiki.org/wiki/PmWiki/PagelistVariables#EnablePageListProtect">http://www.pmwiki.org/wiki/PmWiki/PagelistVariables#EnablePageListProtect</a><br>
// When set to 1, causes (:pagelist:) and (:searchresults:) to exclude listing any pages <br>
// for which the browser does not currently have read authorization.<br>
$EnablePageListProtect = 0;<br>
<br>
Anyone: Any problem with this?<br>