[Pmwiki-users] Idea for overview of protected pages
chr@home.se
chr
Mon Oct 25 12:01:05 CDT 2004
On Mon, 25 Oct 2004, Patrick R. Michaud wrote:
> In the "catching up on old emails" department...
>
> On Wed, Sep 29, 2004 at 08:15:46PM +0200, chr at home.se wrote:
> > Background: I recently had some problems with a forgotten password for a
> > wiki page.
> > Would it be convenient if some action could create a list of pages in a
> > group together with their access rights? I was thinking the result could
> > be something like this:
> > Page Read Edit Admin
> > SomePage
> > AnotherPage x x
> > FinalPage x x x
> > where the 'x' would indicate that the corresponding page has that kind of
> > password protection.
>
> Would it be okay to put this feature into the ?action=refcount script?
> It's already displaying a list of pages anyway.
I don't think it matters what you have to do in order to extract the
information.
> Or, this could be done as a special "fmt=" parameter to (:pagelist:)
> and (:searchlist:), although there's not yet a filter that says "show me
> only the protected pages".
It's been a while so.. is there a security risk with being able to list
the information above?
Or can anyone today see a list of all pages anyway? So the password
information doesn't really give away that much extra?
> > >From the point of view of keeping data private, this kind of overview
> > could be very useful. There are some open questions of course...
> > * Should you have to give an 'admin' password to do this?
> > * Should anyone be able to see which pages are protected? And how?
>
> And yes, these are open questions.
>
> Maybe this feature deserves a PITS entry where it can be discussed over
> a longer timeframe and voted upon.
True... it's hardly urgent. If you reply with a suitable link, I'll place
it there. (I've actually not used PITS yet!)
/Christian
--
Christian Ridderstr?m, +46-8-768 39 44 http://www.md.kth.se/~chr
More information about the pmwiki-users
mailing list