Re: Configuring a public JSPWiki instance for private use

Wed, 04 Oct 2017 00:54:07 -0700 

*Using Apache Tomcat, in the users.xml I have the following roles:*

<role rolename="Admin"/>
<role rolename="Authenticated"/>
<role rolename="Trusted"/>
(No need to set a rolename for Anonymous or All)

*In the jspwiki.policy set the role-permissions:*

grant principal org.apache.wiki.auth.authorize.Role "All" {
    permission org.apache.wiki.auth.permissions.PagePermission "*:*", "view";
    permission org.apache.wiki.auth.permissions.WikiPermission "*", "login";
};


grant principal org.apache.wiki.auth.authorize.Role "Anonymous" {
        permission org.apache.wiki.auth.permissions.WikiPermission "*", "login";
};

grant principal org.apache.wiki.auth.authorize.Role "Authenticated" {
        permission org.apache.wiki.auth.permissions.PagePermission "*:*",
"view,comment";
};

grant principal org.apache.wiki.auth.authorize.Role "Trusted" {
        permission org.apache.wiki.auth.permissions.PagePermission "*:*",
"modify,delete";
        permission org.apache.wiki.auth.permissions.WikiPermission "*",
"editProfile,createPages,login";
};

grant principal org.apache.wiki.auth.GroupPrincipal "Admin" {
    permission org.apache.wiki.auth.permissions.AllPermission "*";
};

grant principal org.apache.wiki.auth.authorize.Role "Admin" {
    permission org.apache.wiki.auth.permissions.AllPermission "*";
};



*On any Wiki Page you can now have something like:*
[{ALLOW comment Authenticated}]
[{ALLOW modify Trusted}]

*Or*
[{ALLOW view Admin}]

*etc*


On 4 October 2017 at 08:23, Peter Hormanns <peter.horma...@jalin.de> wrote:

> Am 03.10.2017 21:09, schrieb Jürgen Weber:
>
>> I followed Dave's blog entry at
>>
>> https://blog.davekoelmeyer.co.nz/2014/07/20/configuring-a-pu
>> blic-jspwiki-instance-for-private-use/
>>
>> Has someone tried to keep the front page public? (i.e. to give a
>> friendly reason for the rest of the pages being private)
>>
>> I tried to give all front facing pages [{ALLOW view ALL}]
>> but still only the login prompt.
>>
>
> Hi Juergen,
>
> put the ACLs into jspwiki.policy :
>
> Something like
>
> grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission
> "*:LeftMenu", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission
> "*:LeftMenuFooter", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission
> "*:Main", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission
> "*:Impress", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.PagePermission
> "*:Forbidden", "view";
>     permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
> "login";
> };
>
> "Main" ist my front page.
>
> Best regards,
> Peter
>
>
> --
> Peter Hormanns - Informatikbüro Hormanns & Wenz
> http://www.hormanns-wenz.de - Tel 02151 3274911
> Peter Hormanns - Hafenstraße 17 - 47809 Krefeld
>



-- 
Col

Reply via email to