Question

What all should I configure (and how) to get "Login" prompt by TWiki?

I installed the Twiki as per the documentation. I always seem to be Guest, though I registered myself as "AtulSowani". I never get the "Login" prompt when I try to edit and save any page - it always gets saved! How can I enable the authentication?

Environment

-- AtulSowani - 03 Nov 2005

Answer

If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

It looks like the edit script is not authenticated. This can be a problem with the .htaccess file in your twiki/bin directory or with the Apache configuration file that disables .htaccess files.

The relevant documentation is at TWikiInstallationGuide

-- PeterThoeny - 04 Nov 2005

I followed exactly all the instructions given in TwikiInstallationGuide but the authentication is still not working.

Another piece of information is: If I try to access "templates" and "data" directories using my apache server (as http://myserver.com/twiki/bin/view/templates I do get pop-up window asking me username and password. But when I try to edit any twiki page, it just allows me to do it without any authentication checks.

-- AtulSowani - 18 Nov 2005

This definitely sounds like an Apache roblem rather than a pure TWiki problem.

You should not be able to access templates/ or date/, the .htaccess shoud prevent this. See the top level file subdir-htaccess.txt for addressing that problem.

In addition, any topic can be edited by an unauthenticated user unless its access permission is set to be restrictive. See discussion of ALLOWTOPICCHANGE.

Dakar has a clearer "login" and "logout" mechanism than Cairo because its session management is built into the core. But the above notes on Apache and ALLOWTOPICCHANGE still apply. Dakar can be configured to demand authentication if an unauthenticated user tries to access a restricted topic.

-- AntonAylward - 18 Nov 2005