Thomas Waldmann <tw-public <at> gmx.de> writes:
> Create some EditorGroup page and put all trusted users on it.
>
> Then use acl_rights_default = u"EditorGroup:read,write,delete,revert
> All:read".
>
> The group page will also get protected by this default ACL: only people
> who are in EditorGroup can edit EditorGroup (to add more people).
>
> For 1.6, I am working on kind of a "text captcha" system.
This is a good suggestion, and would surely work, but it would *prevent* new
users from editing without someone's help, right? I don't think we want to go
that far yet. It's more admin work to add more legit users (though pretty
simple, just edit a page on requ est) and since we're an open-source project, we
*want* more wiki editors -- just not bots.
I think all we need is captchas on the registration page, at least for now. The
recaptcha API is two simple python functions:
def displayhtml (public_key,
use_ssl = False,
error = None):
"""Gets the HTML to display for reCAPTCHA
public_key -- The public api key
use_ssl -- Should the request be sent over ssl?
error -- An error message to display (from RecaptchaResponse.error_code)"""
def submit (recaptcha_challenge_field,
recaptcha_response_field,
private_key,
remoteip)
"""
Submits a reCAPTCHA request for verification. Returns RecaptchaResponse
for the request
recaptcha_challenge_field -- The value of recaptcha_challenge_field from the
form
recaptcha_response_field -- The value of recaptcha_response_field from the
form
private_key -- your reCAPTCHA private key
remoteip -- the user's ip address
"""
I'd be happy to plug this into the user registration page; I'm a decent python
hacker but not a MoinMoin dev (I just administer our wiki). But I don't know
just where to put them, or whether the user reg page is amenable to using this
style of API. I'm guessing it would always display the captcha, but only care
about the response if it's a new-user registration.
Thomas, would you mind emailing me off-list at garyo at oberbrunner dot com and
giving me a couple of quick pointers to where I should put this, if you don't
mind? I'll be happy to submit it back when I get it working.
-- Gary
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
Moin-user mailing list
Moin-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/moin-user
