[Moin-user] will moin-moin be adapted to my needs? (corporate wiki)
Yusuf Abdulghani
yusuf at apple.com
Wed Mar 2 16:11:25 EST 2005
Fred,
I believe that this should work, but haven't tried it myself:
acl_rights_before = u"AdminGroup:read,write,delete,revert,admin"
acl_rights_default = u"All:"
What this suggests is that don't give ANY permissions to anyone except
the users in the AdminGroup. No one will be able to see any pages in
the wiki.
Lets now create a page called "MyClientNumberOneGroup" as follows:
---------------------
* ClientOneUserOne
* ClientOneUserTwo
* ClientOneUserThree
---------------------
Since the above page does not have any acls, it will use the ACLs from
the wikiconfig.py. No one will be able to read/write to this page
except the users in the AdminGroup.
Now let a user from the AdminGroup create a page "MyClientNumberOne"
and give access to all the users in "MyClientNumberOneGroup" as
follows:
----------------------------
#acl MyClientNumberOneGroup:read All:
##language:en
### DO NOT EDIT ABOVE THIS LINE ###
'''Table of Contents'''
[[TableOfContents]]
= Welcome MyClientNumberOne =
Blah Blah.
= Topics Related to This Page =
Here is an exhaustive list of sub-topics related to this page:
[[FullSearch(t:"^@PAGE@/")]]
= Create New Page =
1. Think of a good WikiName for the topic. It will be used to create a
subpage under this page. Enter it here:
[[NewPage(MyClientNumberOneTemplate, Create New Sub-Page, @PAGE@)]]
= How to Subscribe to This Page =
Realising that this page is subscribed by many users of this wiki, I
want to explain how to subscribe to these pages correctly:
Just put `@PAGE@/.*` into the subscribed pages listing on the page
UserPreferences.
----------------------------
Note that the "MyClientNumberOneTemplate" can be designed as follows:
----------------
#acl MyClientNumberOneGroup:read,write,delete All:
##language:en
### DO NOT EDIT ABOVE THIS LINE ###
'''Table of Contents'''
[[TableOfContents]]
= Welcome =
Your welcome message. Note that this is just a template. You can set it
up however you want.
= Topics Related to This Page =
Here is an exhaustive list of sub-topics related to this page:
[[FullSearch(t:"^@PAGE@/")]]
= Create New Topic =
1. Think of a good WikiName for the topic. It will be used to create a
subpage under this page. Enter it here:
[[NewPage(MyClientNumberOneTemplate, Create New Sub-Topic, @PAGE@)]]
= How to Subscribe to This Page =
Realising that this page is subscribed by many users of this wiki, I
want to explain how to subscribe to these pages correctly:
Just put `@PAGE@/.*` into the subscribed pages listing on the page
UserPreferences.
-----------------
This setting should probably work....
Yusuf
On Mar 2, 2005, at 3:52 PM, Fred Haynes wrote:
> Yusuf,
>
> wouldn't this ACL configuration fail unless all users were given admin
> rights by default? I have tried this configuration and I get an error
> stating that I don't have permission to change the ACLs for the new
> page (presumably, from default settings to the template's settings).
>
> -Fred
>
>
> On Wed, 2 Mar 2005 15:26:25 -0800, Yusuf Abdulghani <yaghani at mac.com>
> wrote:
>> Oliver,
>>
>> All that you mention can be done very easily with MoinMoin wiki and
>> all
>> of them in one wiki. Use groups to group your users for access to
>> specific parts of your wiki. I would highly recommend that you use
>> "templates" with predefined ACLs to create pages so that your users do
>> not mess up the permissions and mistakenly allow others (or people
>> from
>> other companies) to read your pages.
>>
>> The default permissions for each page will be set so read/write/admin
>> for the AdminGroup. For the rest of the users (Known/All), set it such
>> that no one can read any pages. Divide users into groups. Create a
>> "homepage" for each client and give read access to that page only to
>> the group(s) of users who should see it. On that "homepage", give the
>> users a button to create subpages (using "NewPage" macro) based on
>> templates whose ACLs are already set. This will ensure that your users
>> don't have to worry about ACLs.
>>
>> I have found MoinMoin to be very easy to use and maintain (especially
>> after the 1.3.x release). The interface is clean.
>>
>> Hope this helps.
>>
>> Yusuf
>>
>> On Mar 2, 2005, at 11:05 AM, Olivier Mueller wrote:
>>
>>> Hello,
>>>
>>> I'm currently navigating across http://c2.com/cgi/wiki?WikiChoicetree
>>> trying to find the "perfect" wiki, and it seems that moinmoin is
>>> the one: well designed, python, file upload support, simple, ACL's.
>>>
>>> Here is what I'd like to have: if you have a few seconds, I'd be
>>> happy if you could tell me if it could be done with moinmoin.
>>> (I plan to play with moinmoin's ACL later today).
>>>
>>> Goal would be a kind of "corporate" wiki, with a public part
>>> for public projects (open source), and different private parts,
>>> for server documentation:
>>>
>>> /Public/PublicDocument1 -> rw access for everybody
>>> /Public/PublicDocument2 -> rw access for everybody
>>>
>>> /Customer1 -> private, rw access for UserA, UserB, UserC
>>> /Customer2 -> private, rw access for UserA, UserD, UserE
>>>
>>>
>>> UserD should only be able to see the Public part and
>>> the documents in the /Customer2 tree, and he shouldn't
>>> even see that there is a "/Customer1" tree: is that
>>> possible, or would it be to unsecure?
>>>
>>> If necessary I could setup one standalone wiki per
>>> customer or project, but I guess it would be nicer
>>> with just one... :)
>>>
>>>
>>> About security, I'd like to use the wiki to store
>>> some sensitive passwords (each of these "customers" have servers):
>>> how would you do that? I'm thinking about using
>>> a kind of "gpg" pad, and store only some blocks like
>>> "gqQXy5kJIlB4sGxJE+u0DbvPdX5U2mLFMxULL2kK0YIpOU734EywLi65XxHEKlXV
>>> sOOyskZs/BjIJmWoBsOMIujUMbMYlk4UoSSLyP8zJyuRwCob41zhed2CMG3CTLXE"
>>>
>>> To get the cleartext data, the user should than copy paste
>>> these line somewhere and give in the "secret" key (not stored on the
>>> wiki). Does it sound ok? Maybe there are even modules/macros for
>>> that, I'll search... :)
>>>
>>>
>>> Regards,
>>> Olivier
>>>
>>> --
>>> _______________________________________________________
>>> Olivier Müller - PGP key ID: 0x0E84D2EA - Switzerland
>>> E-Mail: http://omx.ch/mail/ - AIM/iChat: swix3k
>>>
>>>
>>>
>>>
>>> -------------------------------------------------------
>>> SF email is sponsored by - The IT Product Guide
>>> Read honest & candid reviews on hundreds of IT Products from real
>>> users.
>>> Discover which products truly live up to the hype. Start reading now.
>>> http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
>>> _______________________________________________
>>> Moin-user mailing list
>>> Moin-user at lists.sourceforge.net
>>> https://lists.sourceforge.net/lists/listinfo/moin-user
>>
>> -------------------------------------------------------
>> SF email is sponsored by - The IT Product Guide
>> Read honest & candid reviews on hundreds of IT Products from real
>> users.
>> Discover which products truly live up to the hype. Start reading now.
>> http://ads.osdn.com/?ad_ide95&alloc_id�396&opclick
>> _______________________________________________
>> Moin-user mailing list
>> Moin-user at lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/moin-user
>>
>
>
> -------------------------------------------------------
> SF email is sponsored by - The IT Product Guide
> Read honest & candid reviews on hundreds of IT Products from real
> users.
> Discover which products truly live up to the hype. Start reading now.
> http://ads.osdn.com/?ad_ide95&alloc_id�396&op=click
> _______________________________________________
> Moin-user mailing list
> Moin-user at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/moin-user
More information about the Moin-user
mailing list