I can confirm and replicate this bug, the same happens on windows binaries and on ubuntu with source with latest stable version - 2.2.1.
Here are the steps to replicate the bug: 1. create new app 2. create new page (default/wikipage.html) and controller that returns auth.wiki(manage_permissions=True) 3. go to wikipage, I am now redirected to user login 4. register first user, go to default/wikipage 5. create first wiki page, accept defaults and submit 6. logout, register second user 7. go to appadmin, check auth_membership table, second user is not a member of wiki_editor 8. with second user visit default/wikipage 9. go to appadmin, check auth_membership table, second user has now automatically become a member of wiki_editor On Thursday, November 8, 2012 5:23:24 PM UTC+1, Massimo Di Pierro wrote: > > The rule is the first user to register is also a wiki_editor. This should > not happen for other users. If it happens it is a bug. Can you confirm this > is working as intended? > > On Thursday, 8 November 2012 08:00:31 UTC-6, Dragan Matic wrote: >> >> I am doing an auth.wiki(manage_permissions=True). >> >> Basically, I want to have a wiki writer and a wiki_reader who will not be >> able to edit wiki posts. Two users (reader and writer) are registered and >> two groups are automatically opened (user_1 and user_2). For every wiki >> post user_1 and user_2 are set to read it and only user_1 can edit it. >> However, whenever wiki reader logs in, a row is automatically inserted into >> auth_membership table which maps wiki_reader user to wiki_editor group, so >> he can also edit posts. Is this a bug or is there a way to set a user to be >> a wiki reader only? >> >> Thanks >> Dragan >> > --
