On Thursday, June 8, 2017 at 2:23:18 AM UTC-7, Peter Chiu wrote: > > Hello all, > > I have set up Trac 1.0.13 and Subversion 1.7.14 on a Centos 7.3 system > using epel and anaconda distributions. > > I then followed the instructions given in > https://trac-hacks.org/wiki/AccountManagerPlugin > to install Account Manager Plugin 0.5.dev0. > > The main intention is to enable users to change their own passwords. > > This works fine as users can do that once they have logged on. > > 2 Questions: > > 1. When a user registers for an user account, is there any way to provide > an option to approve such registration before the account is set up? >
The require_approval option will probably do what you want. https://trac-hacks.org/wiki/TracIni#account-manager-require_approval-option > > 2. Before the Account Manager Plugin, I was using HTTP authentication > (with HtDigest). > > So when a user attempts to access the page > http://server_host/trac/project > he will need to provide a valid username and password previously set > up. > > Now with the Account Manager, the HTTP authentication is disabled. > > The above page becomes visible to everyone, as the Login tab also > resides on this page. > > This poses a problem as the "Browse Source" tab is now accessible to > everyone to access the repository, without logging in first. > > Looks like I have missed out something in following the Account > Manager Plugin instructions > to prevent this. > Is BROWSER_VIEW granted to anonymous? You probably need to revoke permissions from the metagroup anonymous. - Ryan -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/trac-users. For more options, visit https://groups.google.com/d/optout.
