What I have found though is that the system behaves as if every user who has authenticated successfully is implicitly a member of role 'Authenticated' even though the users had not been explicitly given this role. I was able to confirm this by switching things around, so that the Authenticated role only gave them view privileges, and to get read/write access required being a member of role 'WikiEditor', which had its own rights granted in the policy file.
Yes, this is correct. Authenticated is a role which is given to anyone who is, well, authenticated. Same thing with Asserted. These are known as "built-in" roles, and we have four of them: All, Asserted, Authenticated and Admin.
The fact that they all start with an "A" is just a coincidence, has nothing to do with the fact that Andrew's name starts also with an "A", and no mysterious black cars or grey beings with flashing lights have ever been seen outside mine or Andrew's apartment.
/Janne
