[pmwiki-users] Re: Re: Edit password also used to read pages in PmWiki 2?

chr at home.se chr at home.se
Wed Jan 26 08:02:55 CST 2005


On Fri, 19 Nov 2004, Patrick R. Michaud wrote:

> On Fri, Nov 19, 2004 at 02:48:53PM +0100, chr at home.se wrote:
> > So what happens if you go directly to a URI like
> > 	http://... ?action=edit
> > 
> > without having visited the site before? I assume you'll be asked for the
> > edit password?
> > 
> > And then when you've saved the page you're asked for the read password?
> 
> Yup.
> 
> Believe it or not, this isn't entirely as farfetched or unintuitive as
> it might sound.  There are situations in which being able to edit a page
> doesn't imply that you know the page's entire contents when it's displayed
> via ?action=browse -- consider (:include:) and its relatives.  Currently
> (:include:) will insert the contents of another page only if the user
> has previously entered any read passwords for that page, and included
> pages won't generate password prompts.  So, entering the read password
> for the page just edited might be an important step to enabling access
> to other pages or features it includes or references.
> 
> That said, I might make this into a customization option of some sort,
> so that an administrator can set "edit implies read", "attr implies
> all" policies to be used by the passwording mechanism.

Just going through old posts, wanted to make sure you know I think it's a
good idea to allow polices such as 'edit implies read' etc through some
customization option.

/Christian

-- 
Christian Ridderström, +46-8-768 39 44               http://www.md.kth.se/~chr





More information about the pmwiki-users mailing list