From doconnor at gsoft.com.au Tue Feb 21 02:45:45 2012 From: doconnor at gsoft.com.au (Daniel O'Connor) Date: Tue, 21 Feb 2012 18:15:45 +1030 Subject: [Moin-user] GUI editor not showing up Message-ID: Hi, I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. "Edit (Text)" is there, and I can GUI edit pages by visiting http://www/moinmoin/Page?action=edit&editor=gui (and it works). The text edit page does not have a "GUI mode" button either. Any ideas? I had a google around but couldn't find anything :( Thanks. -- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C From eric at tibco.com Tue Feb 21 03:40:13 2012 From: eric at tibco.com (Eric Johnson) Date: Tue, 21 Feb 2012 09:40:13 +0100 Subject: [Moin-user] GUI editor not showing up In-Reply-To: References: Message-ID: <4F43586D.3020501@tibco.com> Did you read the section on configuring the editor? http://moinmo.in/HelpOnConfiguration#editor -Eric. On 2/21/12 8:45 AM, Daniel O'Connor wrote: > Hi, > I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. > > "Edit (Text)" is there, and I can GUI edit pages by visiting > http://www/moinmoin/Page?action=edit&editor=gui > > (and it works). > > The text edit page does not have a "GUI mode" button either. > > Any ideas? I had a google around but couldn't find anything :( > > Thanks. > > -- > Daniel O'Connor software and network engineer > for Genesis Software - http://www.gsoft.com.au > "The nice thing about standards is that there > are so many of them to choose from." > -- Andrew Tanenbaum > GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C > > > > > > > > ------------------------------------------------------------------------------ > Keep Your Developer Skills Current with LearnDevNow! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-d2d > _______________________________________________ > Moin-user mailing list > Moin-user at lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/moin-user From ajhurst at me.com Tue Feb 21 05:32:14 2012 From: ajhurst at me.com (John Hurst) Date: Tue, 21 Feb 2012 21:32:14 +1100 Subject: [Moin-user] GUI editor not showing up In-Reply-To: References: Message-ID: <3B10FC47-90FD-4985-8893-EEBC2BB8A915@me.com> G'day Daniel, Are you using Safari perchance? I have not been able to get the GUI editor running under Safari. The good news is that it works fine with Firefox. cheers, --John Hurst --5 Fran Court, Glen Waverley, VIC 3150 ~ ~~~&#: -- ajhurst at mac.com +61 3 9803 9346 _..___ ---____ at ___H__ --(mob 0407 569 292) |_____[_|_________[__]_ -- http://homepage.mac.com/ajhurst/ oo oo oo O--O--O o=o -- -- The trouble with common sense is that it isn't. On 20120221, at 18:45, Daniel O'Connor wrote: > Hi, > I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. > > "Edit (Text)" is there, and I can GUI edit pages by visiting > http://www/moinmoin/Page?action=edit&editor=gui > > (and it works). > > The text edit page does not have a "GUI mode" button either. > > Any ideas? I had a google around but couldn't find anything :( > > Thanks. > > -- > Daniel O'Connor software and network engineer > for Genesis Software - http://www.gsoft.com.au > "The nice thing about standards is that there > are so many of them to choose from." > -- Andrew Tanenbaum > GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C > > > > > > > > ------------------------------------------------------------------------------ > Keep Your Developer Skills Current with LearnDevNow! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-d2d > _______________________________________________ > Moin-user mailing list > Moin-user at lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/moin-user From doconnor at gsoft.com.au Tue Feb 21 06:42:49 2012 From: doconnor at gsoft.com.au (Daniel O'Connor) Date: Tue, 21 Feb 2012 22:12:49 +1030 Subject: [Moin-user] GUI editor not showing up In-Reply-To: <4F43586D.3020501@tibco.com> References: <4F43586D.3020501@tibco.com> Message-ID: <8AF4BB3D-C0FD-4277-92E4-71857959AEA4@gsoft.com.au> On 21/02/2012, at 19:10, Eric Johnson wrote: > Did you read the section on configuring the editor? > > http://moinmo.in/HelpOnConfiguration#editor Yes, it doesn't have an enable as such though. I just tried setting editor_default to 'gui' (and this shows up in SystemInfo) but has no effect on the problem. > > -Eric. > > On 2/21/12 8:45 AM, Daniel O'Connor wrote: >> Hi, >> I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. >> >> "Edit (Text)" is there, and I can GUI edit pages by visiting >> http://www/moinmoin/Page?action=edit&editor=gui >> >> (and it works). >> >> The text edit page does not have a "GUI mode" button either. >> >> Any ideas? I had a google around but couldn't find anything :( >> >> Thanks. >> >> -- >> Daniel O'Connor software and network engineer >> for Genesis Software - http://www.gsoft.com.au >> "The nice thing about standards is that there >> are so many of them to choose from." >> -- Andrew Tanenbaum >> GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C >> >> >> >> >> >> >> >> ------------------------------------------------------------------------------ >> Keep Your Developer Skills Current with LearnDevNow! >> The most comprehensive online learning library for Microsoft developers >> is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, >> Metro Style Apps, more. Free future releases when you subscribe now! >> http://p.sf.net/sfu/learndevnow-d2d >> _______________________________________________ >> Moin-user mailing list >> Moin-user at lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/moin-user > -- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C From doconnor at gsoft.com.au Tue Feb 21 07:30:05 2012 From: doconnor at gsoft.com.au (Daniel O'Connor) Date: Tue, 21 Feb 2012 23:00:05 +1030 Subject: [Moin-user] GUI editor not showing up In-Reply-To: <3B10FC47-90FD-4985-8893-EEBC2BB8A915@me.com> References: <3B10FC47-90FD-4985-8893-EEBC2BB8A915@me.com> Message-ID: <36887632-0D42-49C8-9FDF-31B00548FCB0@gsoft.com.au> On 21/02/2012, at 21:02, John Hurst wrote: > Are you using Safari perchance? I have not been able to get the GUI editor running under Safari. > > The good news is that it works fine with Firefox. I'm using Chrome, I tried Firefox and it does show up there. Weirdly when I use Chrome on http://moinmo.in/WikiSandBox it shows GUI & text options - this is why I disregarded the browser as a problem. Checking it now I see that the main site runs 1.9.4 and I only have 1.9.3 (and 1.9.4 is unreleased so I guess I'll use text mode for now :) Thanks. > > cheers, > --John Hurst > --5 Fran Court, Glen Waverley, VIC 3150 ~ ~~~&#: > -- ajhurst at mac.com +61 3 9803 9346 _..___ ---____ at ___H__ > --(mob 0407 569 292) |_____[_|_________[__]_ > -- http://homepage.mac.com/ajhurst/ oo oo oo O--O--O o=o > -- > -- The trouble with common sense is that it isn't. > > > > On 20120221, at 18:45, Daniel O'Connor wrote: > >> Hi, >> I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. >> >> "Edit (Text)" is there, and I can GUI edit pages by visiting >> http://www/moinmoin/Page?action=edit&editor=gui >> >> (and it works). >> >> The text edit page does not have a "GUI mode" button either. >> >> Any ideas? I had a google around but couldn't find anything :( >> >> Thanks. >> >> -- >> Daniel O'Connor software and network engineer >> for Genesis Software - http://www.gsoft.com.au >> "The nice thing about standards is that there >> are so many of them to choose from." >> -- Andrew Tanenbaum >> GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C >> >> >> >> >> >> >> >> ------------------------------------------------------------------------------ >> Keep Your Developer Skills Current with LearnDevNow! >> The most comprehensive online learning library for Microsoft developers >> is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, >> Metro Style Apps, more. Free future releases when you subscribe now! >> http://p.sf.net/sfu/learndevnow-d2d >> _______________________________________________ >> Moin-user mailing list >> Moin-user at lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/moin-user > > -- Daniel O'Connor software and network engineer for Genesis Software - http://www.gsoft.com.au "The nice thing about standards is that there are so many of them to choose from." -- Andrew Tanenbaum GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C From nigel at dotdot.it Tue Feb 21 07:37:08 2012 From: nigel at dotdot.it (Nigel Metheringham) Date: Tue, 21 Feb 2012 12:37:08 +0000 Subject: [Moin-user] GUI editor not showing up In-Reply-To: <36887632-0D42-49C8-9FDF-31B00548FCB0@gsoft.com.au> References: <3B10FC47-90FD-4985-8893-EEBC2BB8A915@me.com> <36887632-0D42-49C8-9FDF-31B00548FCB0@gsoft.com.au> Message-ID: The explanation is at http://moinmo.in/MoinMoinBugs/1.9.3GUIEditorInWebKit Nigel. On 21 Feb 2012, at 12:30, Daniel O'Connor wrote: > > On 21/02/2012, at 21:02, John Hurst wrote: >> Are you using Safari perchance? I have not been able to get the GUI editor running under Safari. >> >> The good news is that it works fine with Firefox. > > I'm using Chrome, I tried Firefox and it does show up there. > > Weirdly when I use Chrome on http://moinmo.in/WikiSandBox it shows GUI & text options - this is why I disregarded the browser as a problem. > > Checking it now I see that the main site runs 1.9.4 and I only have 1.9.3 (and 1.9.4 is unreleased so I guess I'll use text mode for now :) > > Thanks. > > > >> >> cheers, >> --John Hurst >> --5 Fran Court, Glen Waverley, VIC 3150 ~ ~~~&#: >> -- ajhurst at mac.com +61 3 9803 9346 _..___ ---____ at ___H__ >> --(mob 0407 569 292) |_____[_|_________[__]_ >> -- http://homepage.mac.com/ajhurst/ oo oo oo O--O--O o=o >> -- >> -- The trouble with common sense is that it isn't. >> >> >> >> On 20120221, at 18:45, Daniel O'Connor wrote: >> >>> Hi, >>> I have installed MoinMoin 1.9.3 on FreeBSD 8 and I can't get the "Edit (GUI)" link to appear on pages. >>> >>> "Edit (Text)" is there, and I can GUI edit pages by visiting >>> http://www/moinmoin/Page?action=edit&editor=gui >>> >>> (and it works). >>> >>> The text edit page does not have a "GUI mode" button either. >>> >>> Any ideas? I had a google around but couldn't find anything :( >>> >>> Thanks. >>> >>> -- >>> Daniel O'Connor software and network engineer >>> for Genesis Software - http://www.gsoft.com.au >>> "The nice thing about standards is that there >>> are so many of them to choose from." >>> -- Andrew Tanenbaum >>> GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C >>> >>> >>> >>> >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Keep Your Developer Skills Current with LearnDevNow! >>> The most comprehensive online learning library for Microsoft developers >>> is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, >>> Metro Style Apps, more. Free future releases when you subscribe now! >>> http://p.sf.net/sfu/learndevnow-d2d >>> _______________________________________________ >>> Moin-user mailing list >>> Moin-user at lists.sourceforge.net >>> https://lists.sourceforge.net/lists/listinfo/moin-user >> >> > > -- > Daniel O'Connor software and network engineer > for Genesis Software - http://www.gsoft.com.au > "The nice thing about standards is that there > are so many of them to choose from." > -- Andrew Tanenbaum > GPG Fingerprint - 5596 B766 97C0 0E94 4347 295E E593 DC20 7B3F CE8C > > > > > > > > ------------------------------------------------------------------------------ > Keep Your Developer Skills Current with LearnDevNow! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-d2d > _______________________________________________ > Moin-user mailing list > Moin-user at lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/moin-user -- [ Nigel Metheringham ------------------------------ nigel at dotdot.it ] [ Ellipsis Intangible Technologies ] From rb.proj at gmail.com Tue Feb 21 15:17:38 2012 From: rb.proj at gmail.com (Reimar Bauer) Date: Tue, 21 Feb 2012 21:17:38 +0100 Subject: [Moin-user] moin-1.9.4 released Message-ID: This release ist mostly about security and bug fixes and a few minor changes (including Python 2.7 compatibility). For details see: http://hg.moinmo.in/moin/1.9/raw-file/1.9.4/docs/CHANGES See http://moinmo.in/MoinMoinDownload for the release archive. BTW, for future moin 1.9 releases, we still need many more people helping with maintaining and updating translations on http://master19.moinmo.in/ . So, especially if you speak some non-english language, you can help! See http://moinmo.in/MoinDev/Translation for details. These days we spent most of our time on developing moin2, see http://moinmo.in/MoinMoin2.0 for details. If you like to hack / test new stuff, have a look! Also feel invited to help with it, so it gets ready for production sooner. If you are interested in helping, feel free to contact us on IRCH chat, see: http://moinmo.in/MoinMoinChat From daniel at pocock.com.au Thu Feb 23 12:53:52 2012 From: daniel at pocock.com.au (Daniel Pocock) Date: Thu, 23 Feb 2012 18:53:52 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) Message-ID: <4F467D30.2030607@pocock.com.au> Hi, I'm looking at running a number of services (Moin, Bugzilla, Gitosis) for public access Specifically, this will support a number of open source projects, such as www.opentelecoms.org and www.lumicall.org To make it convenient and maximise participation, I want to set up a common registration/login system for all the software and across multiple domains (e.g. multiple instances of Moin). However, each system has slightly different behavior: - Bugzilla uses the email address as a primary key, together with RADIUS or LDAP - gitosis inherits git's schema: uses the email address as the primary key, together with RSA auth - Moin uses a numeric `user id' value that appears in the page revisions, and then it stores email address, name (e.g. DanielPocock) and an alias There are a few queries that I have about how Moin will fit into this picture: - can anyone point me to an existing howto or blog about building something like this? - although they do not appear to be the primary key, do the `name' and `alias' values have to be unique? I'm guessing that is the case, but as it will be a publicly accessible system, it is quite possible there will be people with the same name - any suggestions on how to handle this in a nice way? - management of the user files: I notice Moin creates a file for each user: is it better to let Moin manage these files (e.g. creating/updating them on each login attempt), or to write a script to create them pro-actively when a user is registered in the central system? - can I keep the users in a MySQL or Postgres table rather than having them in disk files? - I want to allow the users to have both password and OpenID access - and I thought that maybe I can just enable OpenID in Moin, my central registration system could act as OpenID provider for the password-authenticated users, and the users who have OpenID could authenticate directly: but using OpenID URL's as identifiers, do the users still potentially need unique WikiNames as well? Any feedback is really appreciated, and however I get this up and running, I am also keen to document it and share some of the scripts that are developed. Regards, Daniel From tw at waldmann-edv.de Fri Feb 24 05:30:28 2012 From: tw at waldmann-edv.de (Thomas Waldmann) Date: Fri, 24 Feb 2012 11:30:28 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <4F467D30.2030607@pocock.com.au> References: <4F467D30.2030607@pocock.com.au> Message-ID: <1330079428.6614.41.camel@x300.localdomain> > - Moin uses a numeric `user id' value that appears in the page > revisions, and then it stores email address, name (e.g. DanielPocock) > and an alias For the usual login ("MoinAuth"), moin asks for name and password. Based on that, it looks up the corresponding user profile and puts the userid (filename of the profile) into the session cookie. There are quite some other auth methods, though, see MoinMoin/auth/... > - can anyone point me to an existing howto or blog about building > something like this? There are likely no howtos fur such complex/specific stuff. You can try google, though. > - although they do not appear to be the primary key, do the `name' and > `alias' values have to be unique? name is checked for uniqueness. Otherwise one would be in trouble with ACLs. You shouldn't use alias for anything except being some sort of "display name" - e.g. in case the login name is cryptic. E.g. name == jd001, alias == Joe Doe > I'm guessing that is the case, but as > it will be a publicly accessible system, it is quite possible there will > be people with the same name - any suggestions on how to handle this in > a nice way? Use their middle initials or some other way to make the name unique. > - management of the user files: I notice Moin creates a file for each > user: is it better to let Moin manage these files (e.g. > creating/updating them on each login attempt), or to write a script to > create them pro-actively when a user is registered in the central system? You for sure should let moin do that. MoinMoin's auth methods usually have some autocreate flag that let them autocreate the user profile if it does not already exist. In general you rather should NOT access moin's storage files directly. You could do that, but if something goes wrong, you own the pieces. > - can I keep the users in a MySQL or Postgres table rather than having > them in disk files? No. BTW, those files moin is using for users serve 2 purposes: a) they are used to store the encrypted password for MoinAuth. Note that you are not required to use MoinAuth, there are other auth methods also. b) they are referred from the session's userid and store all sorts of other user profile / user related data that is needed by moin. > - I want to allow the users to have both password and OpenID access - > and I thought that maybe I can just enable OpenID in Moin, my central > registration system could act as OpenID provider for the > password-authenticated users, and the users who have OpenID could > authenticate directly: but using OpenID URL's as identifiers, do the > users still potentially need unique WikiNames as well? Yes, usernames in the wiki need to be unique as they might be used in ACLs. > Any feedback is really appreciated, and however I get this up and > running, I am also keen to document it and share some of the scripts > that are developed. You have to differentiate whether you do SSO (single sign on, one login total, everything else is automatic) or just have a common place where you keep accounts and passwords and against which you can authenticate, but you still log into each system separately. Of course SSO is more comfortable, but also it is more effort to get it. Looking at what moin can already do: GivenAuth - use some given user name (e.g. apache REMOTE_USER). Can optionally strip windows or email domain, remove blanks, titlecase. There are a lot of apache modules you can use this with, but the only thing moin will get from this is a authenticated user name. CAS authentication - against a CAS server (don't ask me about that, looks like it could be helpful) ldap_login - LDAP server = common place to store credentials and some user profile data (like email address), but no SSO with non-moin systems openidrp - does OpenID auth (try it, can't help much with that either) sslclientcert - uses SSL client certs for auth MoinAuth - direct login into moin, does not help you http basic auth done by moin - does not help you interwiki auth - does not help you for integration with non-moin systems mysql_group - does not help (don't ask me about that) php_session - made to read the session cookie of eGroupware smb_mount - special, does not help you Other than these, you can write your own MoinMoin auth module (and do whatever you want there) or modify an existing auth method, if you need it slightly different. Basic Python skills needed. If you run multipe moin wikis, they can share the cookie (the session) and the user profiles. Make sure you do that right from the beginning or it will have diverging userids. The MoinMoin.user module has some lookup functions to find users not only by name, but also by email or openid address. If you need help, feel free to join us on #moin on chat.freenode.net IRC channel. From daniel at pocock.com.au Fri Feb 24 15:22:37 2012 From: daniel at pocock.com.au (Daniel Pocock) Date: Fri, 24 Feb 2012 21:22:37 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <1330079428.6614.41.camel@x300.localdomain> References: <4F467D30.2030607@pocock.com.au> <1330079428.6614.41.camel@x300.localdomain> Message-ID: <4F47F18D.80902@pocock.com.au> >> I'm guessing that is the case, but as >> it will be a publicly accessible system, it is quite possible there will >> be people with the same name - any suggestions on how to handle this in >> a nice way? > > Use their middle initials or some other way to make the name unique. My original plan was to have the users do all registration through one form (in other words, avoid repetition) However, I could assume that not all users will want to write on the wiki anyway - so the first time they login to write, then they will have to choose a wiki name. Is this type of hybrid registration practical? >> - management of the user files: I notice Moin creates a file for each >> user: is it better to let Moin manage these files (e.g. >> creating/updating them on each login attempt), or to write a script to >> create them pro-actively when a user is registered in the central system? > > You for sure should let moin do that. MoinMoin's auth methods usually > have some autocreate flag that let them autocreate the user profile if > it does not already exist. > > In general you rather should NOT access moin's storage files directly. > You could do that, but if something goes wrong, you own the pieces. I wasn't keen on that option, but I am keen to centralise other settings too, such as user timezone. Moin isn't the only app that needs that setting. I want to be sure that: a) if they update their timezone in the central registration system, the setting propagates to Moin (perhaps on the next login to Moin) b) if I can achieve (a), then I do not want the user changing such settings in Moin, as their changes would be lost on the next login >> - I want to allow the users to have both password and OpenID access - >> and I thought that maybe I can just enable OpenID in Moin, my central >> registration system could act as OpenID provider for the >> password-authenticated users, and the users who have OpenID could >> authenticate directly: but using OpenID URL's as identifiers, do the >> users still potentially need unique WikiNames as well? > > Yes, usernames in the wiki need to be unique as they might be used in > ACLs. Could ACLs and everything else in Moin use the email address in place of the name value? Or could the email address be safely used in the name field? >> Any feedback is really appreciated, and however I get this up and >> running, I am also keen to document it and share some of the scripts >> that are developed. > > You have to differentiate whether you do SSO (single sign on, one login > total, everything else is automatic) or just have a common place where > you keep accounts and passwords and against which you can authenticate, > but you still log into each system separately. Of course SSO is more > comfortable, but also it is more effort to get it. I still haven't made that decision, but I've worked with OpenID previously - see http://www.dynalogin.org - so I've been contemplating a few variations of it. I'm also thinking of finding the quickest way to get it work now, but in such a way that I can phase in SSO later without the users having to notice any change. > Looking at what moin can already do: > > GivenAuth - use some given user name (e.g. apache REMOTE_USER). Can > optionally strip windows or email domain, remove blanks, titlecase. > There are a lot of apache modules you can use this with, but the only > thing moin will get from this is a authenticated user name. Rather than just stripping the email domain, can it search the user data files to match on email address? > ldap_login - LDAP server = common place to store credentials and some > openidrp - does OpenID auth (try it, can't help much with that either) > php_session - made to read the session cookie of eGroupware I think those three are the most relevant ones, although I hope to avoid adding LDAP to the picture, I prefer LDAP for situations where it is an internal domain (e.g. all users are within the same company) rather than a publicly accessible service. > Other than these, you can write your own MoinMoin auth module (and do > whatever you want there) or modify an existing auth method, if you need > it slightly different. Basic Python skills needed. > > If you run multipe moin wikis, they can share the cookie (the session) > and the user profiles. Make sure you do that right from the beginning or > it will have diverging userids. > > The MoinMoin.user module has some lookup functions to find users not > only by name, but also by email or openid address. You save the best bit for last: letting the user log in with the email address would make it work just like Bugzilla and Mailman From paul at boddie.org.uk Fri Feb 24 17:34:59 2012 From: paul at boddie.org.uk (Paul Boddie) Date: Fri, 24 Feb 2012 23:34:59 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <4F47F18D.80902@pocock.com.au> References: <4F467D30.2030607@pocock.com.au> <1330079428.6614.41.camel@x300.localdomain> <4F47F18D.80902@pocock.com.au> Message-ID: <201202242334.59591.paul@boddie.org.uk> On Friday 24 February 2012 21:22:37 Daniel Pocock wrote: > > Could ACLs and everything else in Moin use the email address in place of > the name value? Or could the email address be safely used in the name > field? On one Moin deployment, I use each user's e-mail address as their username. If this doesn't work with ACLs for some reason, I'd be interested in making a patch that makes it work. [...] > You save the best bit for last: letting the user log in with the email > address would make it work just like Bugzilla and Mailman Having to use an e-mail address as a username is something of a limitation with Bugzilla, which I also use together with Wiki installations, but you can certainly adopt that scheme with Moin, too. In effect, you can delegate the authentication to Apache, use GivenAuth to access the REMOTE_USER details (as Thomas pointed out), and then you're mostly avoiding any registration process within Moin. Paul From daniel at pocock.com.au Sat Feb 25 05:31:12 2012 From: daniel at pocock.com.au (Daniel Pocock) Date: Sat, 25 Feb 2012 11:31:12 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <201202242334.59591.paul@boddie.org.uk> References: <4F467D30.2030607@pocock.com.au> <1330079428.6614.41.camel@x300.localdomain> <4F47F18D.80902@pocock.com.au> <201202242334.59591.paul@boddie.org.uk> Message-ID: <4F48B870.9030408@pocock.com.au> On 24/02/12 23:34, Paul Boddie wrote: > On Friday 24 February 2012 21:22:37 Daniel Pocock wrote: >> >> Could ACLs and everything else in Moin use the email address in place of >> the name value? Or could the email address be safely used in the name >> field? > > On one Moin deployment, I use each user's e-mail address as their username. If > this doesn't work with ACLs for some reason, I'd be interested in making a > patch that makes it work. Did you have to make any hacks or patches to support that? The email address shows up on screen, e.g. where it shows the user who last changed a particular page? And the email address is valid in the name of the user's own page, e.g.: http://moin-wiki.example.org/wiki/user at example.org or is anything likely to choke on the @ symbol? >> You save the best bit for last: letting the user log in with the email >> address would make it work just like Bugzilla and Mailman > > Having to use an e-mail address as a username is something of a limitation > with Bugzilla, which I also use together with Wiki installations, but you can > certainly adopt that scheme with Moin, too. In effect, you can delegate the > authentication to Apache, use GivenAuth to access the REMOTE_USER details (as > Thomas pointed out), and then you're mostly avoiding any registration process > within Moin. I understand there are limitations with using the email address, e.g. some users want their email address private. On the other hand, that is also troublesome, because users want to communicate with each other, and if the email addresses are hidden, then a private messaging system is needed, and some users don't like that either. In other words, no perfect answer. On the other hand, whether it is public or private, the email address is very useful as a login credential: - just about every user has one - when the user is asked for their email address in a login box, they don't have to try and remember it - on large systems, registering is easier, because users with particularly common names don't have to keep trying to guess a login name that is not already taken - and the fact that other systems already use email address So maybe the solution for my own Moin deployment would involve: - user logs in with email address - user chooses a display name on the first login or it looks up the name on subsequent logins (the system would not be able to translate email->display name with a regex) - the display name appears on any pages they edit, etc From paul at boddie.org.uk Sat Feb 25 09:23:35 2012 From: paul at boddie.org.uk (Paul Boddie) Date: Sat, 25 Feb 2012 15:23:35 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <4F48B870.9030408@pocock.com.au> References: <4F467D30.2030607@pocock.com.au> <201202242334.59591.paul@boddie.org.uk> <4F48B870.9030408@pocock.com.au> Message-ID: <201202251523.35236.paul@boddie.org.uk> On Saturday 25 February 2012 11:31:12 Daniel Pocock wrote: > On 24/02/12 23:34, Paul Boddie wrote: > > On Friday 24 February 2012 21:22:37 Daniel Pocock wrote: > >> Could ACLs and everything else in Moin use the email address in place of > >> the name value? Or could the email address be safely used in the name > >> field? > > > > On one Moin deployment, I use each user's e-mail address as their > > username. If this doesn't work with ACLs for some reason, I'd be > > interested in making a patch that makes it work. > > Did you have to make any hacks or patches to support that? I haven't used ACLs on that deployment until now, but setting an ACL with an e-mail address as username doesn't cause an error, at least. > The email address shows up on screen, e.g. where it shows the user who > last changed a particular page? Yes. > And the email address is valid in the name of the user's own page, e.g.: > > http://moin-wiki.example.org/wiki/user at example.org > > or is anything likely to choke on the @ symbol? I don't see why it would on a page name, and it seems to work - I can create a page and access it - but for things like ACLs I suppose it would depend on the parser, which also seems to work. [...] > So maybe the solution for my own Moin deployment would involve: > - user logs in with email address > - user chooses a display name on the first login or it looks up the name > on subsequent logins (the system would not be able to translate > email->display name with a regex) > - the display name appears on any pages they edit, etc I notice that the alias name (see the user settings/preferences) doesn't seem to appear in place of the username generally when testing under MoinMoin 1.8.8 and 1.9.3. You can get the username to be replaced by an alias under certain circumstances, but not on pages like RecentChanges, so it is possible that the mapping doesn't occur generally. (The code would need to use request.user.aliasname instead of request.user.name throughout, at least where it doesn't affect the functionality in some way.) That said, I know that an explicit mapping exists for OpenID-authenticated users: you don't see their login URLs all over the place because they choose a username when visiting for the first time. Maybe a solution might involve a similar identity mapping exercise using REMOTE_USER as the starting point, but it would arguably be a lot cleaner to make aliases ubiquitous in Moin where user details are displayed instead. Paul From tw at waldmann-edv.de Sat Feb 25 10:21:37 2012 From: tw at waldmann-edv.de (Thomas Waldmann) Date: Sat, 25 Feb 2012 16:21:37 +0100 Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <4F47F18D.80902@pocock.com.au> References: <4F467D30.2030607@pocock.com.au> <1330079428.6614.41.camel@x300.localdomain> <4F47F18D.80902@pocock.com.au> Message-ID: <1330183297.4379.8.camel@x300.localdomain> > >> I'm guessing that is the case, but as > >> it will be a publicly accessible system, it is quite possible there will > >> be people with the same name - any suggestions on how to handle this in > >> a nice way? > > > > Use their middle initials or some other way to make the name unique. > > My original plan was to have the users do all registration through one > form (in other words, avoid repetition) Well, then I suggest you make sure stuff is unique at registration time. > I wasn't keen on that option, but I am keen to centralise other settings > too, such as user timezone. Moin isn't the only app that needs that > setting. I want to be sure that: I you use a custom auth method for moin, you can keep stuff in sync with your centralised system. E.g. ldap_login does that, but you can update user profiles in the same way in a custom auth method for your centralised system. > b) if I can achieve (a), then I do not want the user changing such > settings in Moin, as their changes would be lost on the next login You can configure moin so some settings are disabled (not changeable). > Could ACLs and everything else in Moin use the email address in place of > the name value? Maybe, I never tried that. I guess it would be ugly and also a problem if an email address changes, then you'ld have to change acls and group pages also. > > GivenAuth - use some given user name (e.g. apache REMOTE_USER). Can > > optionally strip windows or email domain, remove blanks, titlecase. > > There are a lot of apache modules you can use this with, but the only > > thing moin will get from this is a authenticated user name. > > Rather than just stripping the email domain, can it search the user data > files to match on email address? I don't think so, but a good and well-tested patch to search in name and in email fields would be a considerable contribution. From mohacsi at niif.hu Sun Feb 26 02:20:35 2012 From: mohacsi at niif.hu (Mohacsi Janos) Date: Sun, 26 Feb 2012 08:20:35 +0100 (CET) Subject: [Moin-user] integrated authentication (Moin, Bugzilla, Gitosis, etc) In-Reply-To: <4F467D30.2030607@pocock.com.au> References: <4F467D30.2030607@pocock.com.au> Message-ID: Hi, Not exactly like this, but you might use Shibboleth for authentication: http://moinmo.in/ShibbolethSupport We are using Shibboleth or MoinMoin and TRAC and SVN repositories... Janos Mohacsi Head of HBONE+ project Network Engineer, Deputy Director of Network Planning and Projects NIIF/HUNGARNET, HUNGARY Key 70EF9882: DEC2 C685 1ED4 C95A 145F 4300 6F64 7B00 70EF 9882 On Thu, 23 Feb 2012, Daniel Pocock wrote: > > > > Hi, > > I'm looking at running a number of services (Moin, Bugzilla, Gitosis) > for public access > > Specifically, this will support a number of open source projects, such > as www.opentelecoms.org and www.lumicall.org > > To make it convenient and maximise participation, I want to set up a > common registration/login system for all the software and across > multiple domains (e.g. multiple instances of Moin). However, each > system has slightly different behavior: > > - Bugzilla uses the email address as a primary key, together with RADIUS > or LDAP > - gitosis inherits git's schema: uses the email address as the primary > key, together with RSA auth > - Moin uses a numeric `user id' value that appears in the page > revisions, and then it stores email address, name (e.g. DanielPocock) > and an alias > > There are a few queries that I have about how Moin will fit into this > picture: > > - can anyone point me to an existing howto or blog about building > something like this? > > - although they do not appear to be the primary key, do the `name' and > `alias' values have to be unique? I'm guessing that is the case, but as > it will be a publicly accessible system, it is quite possible there will > be people with the same name - any suggestions on how to handle this in > a nice way? > > - management of the user files: I notice Moin creates a file for each > user: is it better to let Moin manage these files (e.g. > creating/updating them on each login attempt), or to write a script to > create them pro-actively when a user is registered in the central system? > > - can I keep the users in a MySQL or Postgres table rather than having > them in disk files? > > - I want to allow the users to have both password and OpenID access - > and I thought that maybe I can just enable OpenID in Moin, my central > registration system could act as OpenID provider for the > password-authenticated users, and the users who have OpenID could > authenticate directly: but using OpenID URL's as identifiers, do the > users still potentially need unique WikiNames as well? > > Any feedback is really appreciated, and however I get this up and > running, I am also keen to document it and share some of the scripts > that are developed. > > Regards, > > Daniel > > > > ------------------------------------------------------------------------------ > Virtualization & Cloud Management Using Capacity Planning > Cloud computing makes use of virtualization - but cloud computing > also focuses on allowing computing to be delivered as a service. > http://www.accelacomm.com/jaw/sfnl/114/51521223/ > _______________________________________________ > Moin-user mailing list > Moin-user at lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/moin-user >