On 19.Aug.2004 09:02PM -0400, John Cappiello wrote:
> People have been talking about privacy in Kwiki. I was
> wondering what that entails.
I think we should have moderate access control with intelligent
defaults. For example, by default, people get a single editing
password so only people "in the know" get to edit pages. This
seems to be the most-requested meaning of privacy, but I could
be wrong.
I also think that we should be able to have decent access
control. My thought of a configuration:
__config/access.yaml__
acl:
edit: valid-user
view: anybody
arbitrary-wigit: valid-group
# ...
Then, maybe subclasses of core modules would check auth:
return $self->hub->auth->process_error
unless $self->hub->auth->ok('edit');
process_error() might display a page:
"Sorry, you need to log in before you can do what you just
tried to do. (edit requires valid-user)"
--
Ian Langworth
Project Guerrilla
Northeastern University
College of Computer and Information Science
