Hi
How do I set up a policy that allows login but not registration?
I have commented out All and Anonymous permissions as below but this
still allows registration.
grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
/*
permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*", "none";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editPreferences";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editProfile";
*/
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "login";
};
// The second policy block is extremely loose, and unsuited for public-facing
wikis.
// Anonymous users are allowed to create, edit and comment on all pages.
//
// Note: For Internet-facing wikis, you are strongly advised to remove the
// lines containing the "modify" and "createPages" permissions; this will make
// the wiki read-only for anonymous users.
// Note that "modify" implies *both* "edit" and "upload", so if you wish to
// allow editing only, then replace "modify" with "edit".
grant principal com.ecyrd.jspwiki.auth.authorize.Role "Anonymous" {
/*
permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*", "none";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*", "none";
*/
};
James
