On Wed, Jul 22, 2009 at 7:30 PM, Aryeh Gregor<simetrical+wikil...@gmail.com> wrote: > On Thu, Jul 23, 2009 at 12:11 AM, Ryan Lane<rlan...@gmail.com> wrote: >> What about OpenID + OAuth? > > With MediaWiki support, there would be any number of ways to do it. > Most obvious would be to just have a preference checkbox somewhere > that would create a secret magic URL that would allow unauthenticated > access to your watchlist. That's the main way that's been put forward > to allow RSS feeds for watchlists. > >> Neither the OpenID plugin, or MediaWiki really support RBAC in a way >> that would make this work, but it is definitely possible. > > I'm not sure what "RBAC" means here. We sure do have RBAC for user > accounts -- $wgGroupPermissions does that just fine. We don't > generically permit users to set up discretionary access control lists > to delegate all their privileges, however. That would be . . . kind > of bizarre. >
Check out how the Flickr API works. Users can give web and desktop apps privileges (read/write/delete). It isn't really that bizarre of a concept. V/r, Ryan Lane _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
