This question about Authentication or Authorisation: Answered

Edit Topics, but prevent editing access control settings

We use foswiki as a documentation platform in our IT department. Our IT is divided into a few small departments. We have created a web and a group for each department (eg. ServerNetwork, Sites...).

Our access control concept is in every web like this: Only members from the ServerNetworkGroup change something in the Servernetwork Web: ( * #Set ALLOWWEBCHANGE = ServerNetworkGroup)

Sometimes it's necessary to give someone from another department access to a topic in the ServerNetwork group ( * #Set ALLOWTOPICCHANGE = UserFromAnotherDepartment). If the added person has change-access, the person is able to add other persons or even deny the access for us.

Is there a possibility to give someone access to a topic without the right to change the access control?

-- KlausReithmaier - 08 Nov 2012

I don't believe so, no. Not that's I'm aware of anyway. Either the user is trusted to edit the topic, or not.

-- GeorgeClark - 08 Nov 2012

yes smile if you write code.

You can write a plugin that either strips out, or rejects edits that change the permission of a topic.

Not hard (as far as foswiki plugins go) and if i remember correctly, a request that we've seen once in a while -

but yes, you are saying you trust them with the important stuff (the information the business runs on) but you don't trust them with the permissions.

-- SvenDowideit - 08 Nov 2012
 

QuestionForm edit

Subject Authentication or Authorisation
Extension
Version Foswiki 1.1.5
Status Answered
Related Topics
Topic revision: r3 - 08 Nov 2012, SvenDowideit
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. See Copyright Statement. Creative Commons License    Legal Imprint    Privacy Policy