I have two wikis, "open" and "private", the policy file restricts the "private" wiki to "View" only for users with a special role.
First, here is the config for the open wiki:
grant signedBy "jspwiki", principal com.ecyrd.jspwiki.auth.authorize.Role "Anonymous" { permission com.ecyrd.jspwiki.auth.permissions.PagePermission "open:*", "view"; permission com.ecyrd.jspwiki.auth.permissions.PagePermission "open:*", "edit"; };
On the open wiki I can restrict edit privileges for example by adding this ACL to the frontpage:
[{Allow edit Admin}]
Therefore the ACL "seems" to reduces the privileges, overwriting the privileges granted by PagePermission "open:*", "edit"; This is fine.
Now to the second private wiki where I assume the same behavior, but on a different level: Instead of restricting edit privileges, I now want to restrict view privileges. First, heres the configuration:
grant signedBy "jspwiki", principal com.ecyrd.jspwiki.auth.authorize.Role "Authenticated" { permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "private", "editPreferences"; permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "private", "editProfile"; permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "private", "login"; }; grant signedBy "jspwiki", principal com.ecyrd.jspwiki.auth.GroupPrincipal "Guest" { permission com.ecyrd.jspwiki.auth.permissions.PagePermission "private:*", "view"; };
Now with the same logic that seems to be available for "edit" in an open wiki I am trying to reduce the "view" on a certain page only to admins with the following ACL. This should overwriting the privileges granted by PagePermission "private:*", "view";
[{Allow view Admin}]
However this does not work. Can someone reproduce this issue (latest 2.4 code)?
Add new attachment
List of attachments
Kind | Attachment Name | Size | Version | Date Modified | Author | Change note |
---|---|---|---|---|---|---|
txt |
open_private.txt | 2.8 kB | 1 | 30-Jun-2007 12:49 | ChristophSauer |