This question about Authentication or Authorisation: Answered

Edit Topics, but prevent editing access control settings

We use foswiki as a documentation platform in our IT department. Our IT is divided into a few small departments. We have created a web and a group for each department (eg. ServerNetwork, Sites...).

Our access control concept is in every web like this: Only members from the ServerNetworkGroup change something in the Servernetwork Web: ( * #Set ALLOWWEBCHANGE = ServerNetworkGroup)

Sometimes it's necessary to give someone from another department access to a topic in the ServerNetwork group ( * #Set ALLOWTOPICCHANGE = UserFromAnotherDepartment). If the added person has change-access, the person is able to add other persons or even deny the access for us.

Is there a possibility to give someone access to a topic without the right to change the access control?

-- KlausReithmaier - 08 Nov 2012

I don't believe so, no. Not that's I'm aware of anyway. Either the user is trusted to edit the topic, or not.

-- GeorgeClark - 08 Nov 2012

yes smile if you write code.

You can write a plugin that either strips out, or rejects edits that change the permission of a topic.

Not hard (as far as foswiki plugins go) and if i remember correctly, a request that we've seen once in a while -

but yes, you are saying you trust them with the important stuff (the information the business runs on) but you don't trust them with the permissions.

-- SvenDowideit - 08 Nov 2012

QuestionForm edit

Subject Authentication or Authorisation
Version Foswiki 1.1.5
Status Answered
Related Topics
Topic revision: r3 - 08 Nov 2012, SvenDowideit - This page was cached on 16 Jan 2020 - 15:21.

The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. See Copyright Statement. Creative Commons License    Legal Imprint    Privacy Policy