web commit by http://hendry.iki.fi/: openid acl

author: Joey Hess <joey@kitenet.net> 2008-03-11 09:09:15 -0400
committer: Joey Hess <joey@kitenet.net> 2008-03-11 09:09:15 -0400
commit: 09e69a642b9697c79157ceab5216b7158b4c23c6 (patch)
tree: 538a53b3405f396676108708b2ae7ed1aecd1cf3 /doc/bugs/openid_user_filtering.mdwn
parent: 830aab057f9973d013e1e724c540b3e68e6f30db (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/doc/bugs/openid_user_filtering.mdwn b/doc/bugs/openid_user_filtering.mdwn
new file mode 100644
index 000000000..8b2d0082e
--- /dev/null
+++ b/doc/bugs/openid_user_filtering.mdwn
@@ -0,0 +1,9 @@
+As mentioned on IRC, I think a cheap form of [[todo/ACL]] can be maintained using [OpenID in ikiwiki](http://packages.qa.debian.org/libn/libnet-openid-consumer-perl.html).
+
+Say I want to limit edits to [wiki.webvm.net](http://wiki.webvm.net/) to users of that machine. For the user 'hendry' I create a http://hendry.webvm.net/ OpenID (which actually delegates to http://hendry.myopenid.com/). And likewise for other users.
+
+So I suggest an ikiwiki configuration like:
+
+     users => ["*.webvm.net"],
+
+Would only allow edits from openIDs of that form.
author	Joey Hess <joey@kitenet.net>	2008-03-11 09:09:15 -0400
committer	Joey Hess <joey@kitenet.net>	2008-03-11 09:09:15 -0400
commit	09e69a642b9697c79157ceab5216b7158b4c23c6 (patch)
tree	538a53b3405f396676108708b2ae7ed1aecd1cf3 /doc/bugs/openid_user_filtering.mdwn
parent	830aab057f9973d013e1e724c540b3e68e6f30db (diff)