Hi Mike
Thanks for the reply. I found the answer.
You have to comment out policies using // not /* */.
grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
//permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*",
"none";
//permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editPreferences";
//permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editProfile";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"login";
};
works.
grant principal com.ecyrd.jspwiki.auth.authorize.Role "All" {
/*
permission com.ecyrd.jspwiki.auth.permissions.PagePermission "*:*",
"none";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editPreferences";
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"editProfile";
*/
permission com.ecyrd.jspwiki.auth.permissions.WikiPermission "*",
"login";
};
does not work.
James
----- Original Message -----
From: "Mike Morris" <[email protected]>
To: <[email protected]>
Sent: Monday, August 17, 2009 8:47 AM
Subject: Re: login but not register
James Cowan wrote:
How do I set up a policy that allows login but not registration?
I have commented out All and Anonymous permissions as below but this
still allows registration.
What I did for the same result was hack the login template and simply
removed the "register" link. Not as secure, I'll be the first to say,
but so far has worked fine for me.
--
mike morris :: mikro2nd (at) gmail (dot) com
http://mikro2nd.net/
http://mikro2nd.net/blog/planb/
http://mikro2nd.net/blog/mike/
This email is [X]bloggable [ ]ask-first [ ]private
--------------------------------------------------------------------------------
No virus found in this incoming message.
Checked by AVG - www.avg.com
Version: 8.5.409 / Virus Database: 270.13.58/2308 - Release Date: 08/16/09
21:46:00
