[pmwiki-users] Login problems with BlogIt

Johannes Langlotz johannes at webminster.org
Tue Apr 7 09:12:25 CDT 2009


DaveG wrote:
> 
> Johannes Langlotz wrote:
>> I have problem with the AuthUser authorization system after I have 
>> enabled BlogIt in config.php. I have created a guest account for test 
>> cases.
>>
>> Username: Guest
>> Password: welcome
>>
>> The site at [1] gets all password setting from its own attributes 
>> page. The login works as expected.
>> The site at [2] inherits all password setting from its group 
>> attributes page. If you login at [2] the login form will show up 
>> again. But you can edit the page if you login once more or if you just 
>> press the edit link at the top left of the page.
> In this case, it doesn't actually look like Test/PagePW is a BlogIt 
> page. In which case BlogIt doesn't really kick in, aside from some 
> markup definitions, etc. Does the test work if you simply disable BlogIt?

Yes, it works when BlogIt is disabled. You can test it yourself at:
http://beta.webminster.org/Test/NoBlogIt

I don't load the BlogIt recipe for the Test.NoBlogIt page. I changed the 
permissions so that you can also view the attributes pages now. Compare 
it with:
http://beta.webminster.org/Test/GroupPW

Both Pages have the same attributes settings. Feel free to play around 
and change settings.


> I setup a local test case which seems to work fine, however I'm not too 
> familiar with AuthUser -- I've used it at it's most basic level -- so I 
> may not have replicated your test.
> 
> Can you help me understand how you're setting the passwords from the 
> 'group attributes page'?
> 
> Here's what I did:
> 1] Create a page Test.AuthUser
> 2] Using Test.AuthUser?action=attr I set an Edit password 'test'
> 3] Create a page Test.AuthUserGrp
> 4] Using Test.GroupAttributes?action=attr I set an Edit password 'test' 
> for the Test group.
> 
> I'm able to login to edit both pages normally, with BlogIt enabled, or 
> disabled. However, I may not be doing the same as you, so let me know.

I set user groups and not passwords on the attributes pages. This could 
be the problem. Try these steps:

0) Activate the identity-based authorization system by adding 
include_once("$FarmD/scripts/authuser.php"); to config.php if you not 
already have it

1) Create a new user at the SiteAdmin/AuthUser page:
    => Add "    Guest: (:encrypt test:)" to that page
    => This creates the user "Guest" with password "test"

2) Assign the user "Guest" to the user group "guest":
    => Add "    Guest: @guest" to the SiteAdmin/AuthUser page
    => Now "Guest" is member of the user group "guest"

3) Allow users of the user group "guest" to edit all pages of the page 
group Test
    => Set "@guest" as edit password at Test.GroupAttributes?action=attr

4) Login to Test.AuthUserGrp with username "Guest" and password "test"


I hope you can reproduce it now.

Johannes




More information about the pmwiki-users mailing list