Hi John,
A web host is actually hosting my Wiki site on the Internet, so a firewall
is in place. The server I'm being hosted on is capable of running .NET 2.0,
I'm not sure which edition it is though. It also appears to be a
stand-alone server. I don't think SQL Server is installed on the web server
though, as my host has me use an alternate server to store my databases.
I have read a tutorial on the aspnet_regsql command and have set it up on my
LAN. Would you be able to shed some light as in to how people normally set
this up through their host? I do have access to the database server via SQL
Management Studio, so I'm guessing I could just create the database on my
LAN, back it up, and restore it on the SQL Server. I'm also assuming I
would then need to modify the web.config file and update the SQL Provider
section to reflect these DB settings?
Would you be able to give me a sample of how to lock down the different
roles on my Wiki site? Basically, I only want anonymous users to be able to
add new pages and modify existing ones. Everything else should be locked
down to Wiki Admins.
Thanks again John,
Shannon
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of John
Davidson
Sent: Monday, February 11, 2008 9:38 PM
To: FlexWiki Users Mailing List
Subject: [SPAM-LOW] Re: [Flexwiki-users] Forms Based Authentication
Hi Shannon
Lets take the easy one first. By default, Lock Topic capability is only
available to those individuals who have 'ManageNamespace' rights. Other
individuals are not able to access or use this feature.
We probably need to update the notes in web.config. Using Windows
Authentication through Forms may have been possible in IIS 5 with ASP.NET
1.1, but I don't think it would work in IIS 6 with ASP.NET 2.0. ASP.NET 2.0
will only use a SQL Provider as far as I can see (and in my experience - but
I could be proven wrong). The support in FlexWiki is only for the Membership
Provider, it does not include the Profile Provider, but there may be ways of
using WikiTalk to effectively manage the experience if you describe the
requirement.
With regard to your authentication requirements, can you describe your
environment a bit.
What are your options: is there a firewall or proxy between the users and
the web server? Are you using Windows Web Edition, or reqular server? Is the
Web Server part of an AD domain, or is it standalone?
John Davidson
On Feb 11, 2008 9:02 PM, Shannon Ma <[EMAIL PROTECTED]> wrote:
In the web.config file, it appears I can have people with Windows user
accounts authenticate to FlexWiki via Forms from the following lines:
FORCE ALL USERS TO AUTHENTICATE VIA ASP.NET FORMS :
This setup makes the wiki only available to people who have a valid NT
login.
<authentication mode="Forms" />
<authorization>
<deny users="?" />
</authorization>
ALLOW ANONYMOUS USERS TO ACCESS THE PARTS OF THE WIKI THEY CAN, BUT MAKE
AUTHENTICATED USERS LOG ON VIA ASP.NET FORMS:
<authentication mode="Forms" />
Is this correct? I thought the forms provider (AspNetSqlMembershipProvider)
authenticates to a SQL Server database, not to Windows/AD. Also, is the
Windows/SQL authentication in FlexWiki only used to authenticate people, not
customize their experience?
Also, is it possible to lockdown certain pages that users cannot modify? I
noticed the "Topic Lock" feature, however it looks like anyone can
lock/unlock topics. Is there anyway to restrict this to a certain set of
users?\
-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2008.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Flexwiki-users mailing list
Flexwiki-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/flexwiki-users
