Re: [fossil-users] Veracity Version control

Thu, 12 Mar 2015 02:45:16 -0700 


On 11/03/15 23:21, Andy Goth wrote:

On 3/11/2015 8:58 AM, Graeme Pietersz wrote:

On 11/03/15 12:25, Andy Goth wrote:

All you have to do is take away all of nobody's privileges.

f user capabilities nobody ""

Can also be done with the web interface.

And the same for anonymous surely?

No need.  anonymous inherits its ability to log in from nobody.  Taking
away nobody's privileges also takes away anonymous's privileges.

I just experimented with a new repo


Even if nobody has no privileges, anonymous can login. It appears that 
it is still locked up as there are no useful links in the navigation, 
and the home page redirects to the  login page. However anonymous does 
have some privileges not inherited from nobody (hmncz) and these can be 
used by directly typing in the appropriate URLs. I have not tested 
everything, but I have verified the biggest weakness: anonymous can 
download a zip archive using the /zip url.





The user administration page says:

"No login is required for user nobody.  The capabilities of the nobody
user are inherited by all users, regardless of whether or not they are
logged in.  To disable universal access to the repository, make sure
that the nobody user has no capabilities enabled.  The password for
nobody is ignored."

If you like, you can explicitly move nobody's privileges to anonymous so
that anonymous login is required.  You would do this to give every human
access but block spiders.

"Login is required for user anonymous but the password is displayed on
the login screen beside the password entry box so anybody who can read
should be able to login as anonymous.  On the other hand, spiders and
web-crawlers will typically not be able to login.  Set the capabilities
of the anonymous user to things that you want any human to be able to
do, but not any spider.  Every other logged-in user inherits the
privileges of anonymous."



_______________________________________________
fossil-users mailing list
fossil-users@lists.fossil-scm.org
http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users



_______________________________________________
fossil-users mailing list
fossil-users@lists.fossil-scm.org
http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users






















					Reply via email to