This question about Authentication or Authorisation: Answered
Edit Topics, but prevent editing access control settings
We use foswiki as a documentation platform in our IT department. Our IT is divided into a few small departments. We have created a web and a group for each department (eg. ServerNetwork, Sites...).
Our access control concept is in every web like this: Only members from the ServerNetworkGroup change something in the Servernetwork Web: ( * #Set ALLOWWEBCHANGE = ServerNetworkGroup)
Sometimes it's necessary to give someone from another department access to a topic in the ServerNetwork group ( * #Set ALLOWTOPICCHANGE = UserFromAnotherDepartment). If the added person has change-access, the person is able to add other persons or even deny the access for us.
Is there a possibility to give someone access to a topic without the right to change the access control?
--
KlausReithmaier - 08 Nov 2012
I don't believe so, no. Not that's I'm aware of anyway. Either the user is trusted to edit the topic, or not.
--
GeorgeClark - 08 Nov 2012
yes
if you write code.
You can write a plugin that either strips out, or rejects edits that change the permission of a topic.
Not hard (as far as foswiki plugins go) and if i remember correctly, a request that we've seen once in a while -
but yes, you are saying you trust them with the important stuff (the information the business runs on) but you don't trust them with the permissions.
--
SvenDowideit - 08 Nov 2012