web commit by http://hendry.iki.fi/: openid acl
authorJoey Hess <joey@kitenet.net>
Tue, 11 Mar 2008 13:09:15 +0000 (09:09 -0400)
committerJoey Hess <joey@kitenet.net>
Tue, 11 Mar 2008 13:09:15 +0000 (09:09 -0400)
doc/bugs/openid_user_filtering.mdwn [new file with mode: 0644]

diff --git a/doc/bugs/openid_user_filtering.mdwn b/doc/bugs/openid_user_filtering.mdwn
new file mode 100644 (file)
index 0000000..8b2d008
--- /dev/null
@@ -0,0 +1,9 @@
+As mentioned on IRC, I think a cheap form of [[todo/ACL]] can be maintained using [OpenID in ikiwiki](http://packages.qa.debian.org/libn/libnet-openid-consumer-perl.html).
+
+Say I want to limit edits to [wiki.webvm.net](http://wiki.webvm.net/) to users of that machine. For the user 'hendry' I create a http://hendry.webvm.net/ OpenID (which actually delegates to http://hendry.myopenid.com/). And likewise for other users.
+
+So I suggest an ikiwiki configuration like:
+
+     users => ["*.webvm.net"],
+
+Would only allow edits from openIDs of that form.