Question
A question regarding Twiki Access Control. I have a SecureTopic which is set to * Set ALLOWTOPICCHANGE = Main.MyAdminGroup Main.MyAdminGroup is set to: * Set GROUP =* Set ALLOWTOPICCHANGE = Main.MyName In this configuration, it seems any user can edit the SecureTopic. Only once I actually populate MyAdminGroup with a name, is SecureTopic protected. This seems to be dangerous. Why would a Group that exists but is empty be considered to include all users?
- TWiki version: 03 August 2002
- Web server: Apache
- Server OS: Linux
- Web browser: Opera
- Client OS: Linux
Answer
All new groups should be defined with some names in the GROUP. There was some design reason why we chose an empty GROUP to be open, but I can't recall. -- PeterThoeny - 07 Sep 2002
Edit | Attach | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actionsTopic revision: r2 - 2002-09-07 - PeterThoeny
Home 
Site map
Blog web
Search
Changes
RSS Feed
Notifications
Statistics
Preferences
Register new user
Support Forum 
Ask a question
Open questions 
My recent questions
Get quick help in #twiki IRC channel
Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.Copyright © 1999-2012 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.