Hello all, I have installed authz_policy on 0.11dev-r6160 as per http://trac.edgewall.org/wiki/TracDev/SecurityBranch#Testingthefeatures using revision 6139 [1], not the update recently posted to trac-dev.
However, my authzpolicy.conf (permissions and file below) doesn't seem to be working. Am I getting the ordering wrong? (I've tried to swop things around a couple of times.) The idea is that 1) Anonymous users can see WikiStart and nothing else. 2) Customers will only get access to wiki pages that begin with their name, e.g. Acme users will only see Acme, Acme/Documentation, Acme/ Reports, etc. 3) Developers can see and modify all wiki pages. 1 is working. 2 and 3 are not working (customer and developer users cannot access any wiki pages after they are logged in - only user alice in the example below can do so because she belongs to the admin group with the TRAC_ADMIN permission). [EMAIL PROTECTED] [1] http://trac.edgewall.org/browser/trunk/sample-plugins/authz_policy.py?rev=6139 Trac permissions (set via web interface) admin: TRAC_ADMIN anonymous: WIKI_VIEW authenticated: WIKI_VIEW customer: TICKET_VIEW, WIKI_VIEW developer: BROWSER_VIEW, CHANGESET_VIEW, ... WIKI_ADMIN alice: developer, apogee, admin bob: developer, sierra claire: developer, acme, apogee damon: developer, acme ethel: developer, acme fred: developer, sierra acme: customer acme1: acme acme2: acme apogee: customer apogee1: apogee sierra: customer sierra1: sierra sierra2: sierra sierra3: sierra authzpolicy.conf [groups] admin = alice, bob, claire developer = alice, bob, claire, damon, ethel, fred customer = acme1, acme2, apogee1, sierra1, sierra2, sierra3 acme = acme1, acme2, claire, damon, ethel apogee = apogee1, alice, claire sierra = sierra1, sierra2, sierra3, bob, fred [wiki:[EMAIL PROTECTED] @admin = WIKI_ADMIN @developer = WIKI_ADMIN anonymous = WIKI_VIEW * = WIKI_VIEW [wiki:[EMAIL PROTECTED] @admin = WIKI_ADMIN @developer = WIKI_ADMIN @acme = WIKI_VIEW * = [wiki:[EMAIL PROTECTED] @admin = WIKI_ADMIN @developer = WIKI_ADMIN @apogee = WIKI_VIEW * = [wiki:[EMAIL PROTECTED] @admin = WIKI_ADMIN @developer = WIKI_ADMIN @sierra = WIKI_VIEW * = [wiki:[EMAIL PROTECTED] @admin = WIKI_ADMIN @developer = WIKI_ADMIN * = --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Trac Users" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/trac-users?hl=en -~----------~----~----~----~------~----~------~--~---
