[pmwiki-users] userAuth and unix passwd file

Patrick R. Michaud pmichaud at pobox.com
Mon Jun 20 15:27:35 CDT 2005


Oops!  I forgot the attachment!  Oh well, it's available from

    http://www.pmwiki.org/wiki/Cookbook/AuthUser

and will probably make it into the distribution soon.

Pm

On Mon, Jun 20, 2005 at 03:14:29PM -0500, Patrick R. Michaud wrote:
> On Mon, Jun 13, 2005 at 10:35:52AM +0200, Masschelein Bart wrote:
> > Hello,
> > 
> > Apparently I don't have direct access to the password file, 
> > but what I could do is on a regular basis "ypcat passwd > passwd.local". 
> 
> This works just fine.  I'm attaching a new script I'm testing for
> the distribution that uses passwd-formatted files for authentication.
> Just place the attached script (authuser.php) into your cookbook directory,
> then add the following lines to your config.php:
> 
>     $AuthUser['htpasswd'] = '/path/to/your/passwd.local'
>     include_once('cookbook/authuser.php');
> 
> This will change PmWiki's password page to prompt for both a
> username and password, and if a username is supplied it will attempt
> to authenticate it against the passwd.local file.
> 
> Then, protecting pages on the wiki uses the same mechanisms as
> default -- i.e., set per-page and per-group passwords using ?action=attr, 
> except you can add "passwords" that look like
> 
>     id:bart           # only "bart" can do this
>     id:bart,nancy     # both "bart" and "nancy"
>     id:*              # anyone with a valid username/password
>     foobar id:bart    # only "bart" and anyone who knows the password "foobar"
> 
> So, if you wanted a site-wide edit restriction, you can do:
> 
>     $DefaultPasswords['edit'] = 'id:bart,nancy';
> 
> Try that, and let me know if you have any questions or run into any
> problems.  The script is still undergoing testing, but I expect to be
> including it in the distribution soon.
> 
> Pm
> 
> 
> > From: Patrick R. Michaud [mailto:pmichaud at pobox.com]
> > Sent: Thursday, June 09, 2005 19:53
> > To: Masschelein Bart
> > Cc: pmwiki-users at pmichaud.com
> > Subject: Re: [pmwiki-users] userAuth and unix passwd file
> > 
> > 
> > On Tue, Jun 07, 2005 at 06:16:45PM +0200, Masschelein Bart wrote:
> > >    Hello,
> > >     
> > >    I've installed the latest version of the PmWiki on the intranet of my
> > >    work, to be used among several users of several groups. I want to use the
> > >    userauth plug in, to to authentication. Is the only way to use this by
> > >    having the users enter their email addres and preferred username, and then
> > >    the admin has to send a pwd? Is there a way to link the unix passwd file
> > >    with the .passwd file required by PnWiki? Like this I don't have to give
> > >    everybody a new password. My guess is that it is not possible, as you have
> > >    to set the permission (read, edit, etc) as well. Any clues?
> > 
> > PmWiki's built-in authentication system can do what you want, *provided*
> > there's some way for PmWiki to be able to get read access to the
> > encrypted unix passwords.  Most modern unix systems store the passwords
> > in /etc/shadow or somewhere that makes it difficult for a web script
> > to be able to access them.  But if they're available somewhere, it's 
> > fairly simple to get PmWiki to use the unix passwords (and I'll be
> > happy to write the code to set that up).
> > 
> > Pm
> > 
> _______________________________________________
> pmwiki-users mailing list
> pmwiki-users at pmichaud.com
> http://pmichaud.com/mailman/listinfo/pmwiki-users



More information about the pmwiki-users mailing list