I have just installed a pmwiki site on my Ubuntu server.<br><br>It works and looks great - I have configured a logo and a skin, I can create and edit pages - but that is the problem. This site is to be used for a private non-profit group - less than a dozen users. I would like to allow viewing, editing and uploading only by this group.
<br><br>I have edited the config.php file to include the following lines:<br><br>$DefaultPasswords['admin'] = crypt('secret');<br>$EnableUpload = 1; <br>$DefaultPasswords['upload'] = crypt('secret');
<br><br>But, even after restarting the server, I can still edit pages without entering any password. If I check the recent changes, I see:<br><div id="wikitext">
<ul><li><a class="wikilink" href="http://jeffnet.zapto.org:85/pmwiki/pmwiki.php?n=Main.HomePage">HomePage</a> . . . October 19, 2007, at 08:54 AM by ?:
</li><li><a class="wikilink" href="http://jeffnet.zapto.org:85/pmwiki/pmwiki.php?n=Main.NewPage">NewPage</a> . . . October 19, 2007, at 08:42 AM by ?:
</li><li><a class="wikilink" href="http://jeffnet.zapto.org:85/pmwiki/pmwiki.php?n=Main.WikiSandbox">WikiSandbox</a> . . . October 18, 2007, at 08:49 PM by ?:
</li></ul>So, pmwiki doesn't even know who is editing!<br><br>How can I protect my pmwiki site so that I have admin privileges, and group members have read, write and upload privileges.<br><br>I have read the documentation on security and passwords, and I understood that setting passwords in
config.php was sufficient to limit edit privileges to users who know those passwords.<br><br>What am I missing?<br><br>Thanks for your help! And thanks for the great software!<br><br>Jeff Schallenberg<br>
</div><br><br clear="all"><br>-- <br>- Jeff