Return-Path: Delivered-To: apmail-cocoon-dev-archive@www.apache.org Received: (qmail 46516 invoked from network); 23 Oct 2005 07:44:10 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 23 Oct 2005 07:44:10 -0000 Received: (qmail 57293 invoked by uid 500); 23 Oct 2005 07:44:08 -0000 Delivered-To: apmail-cocoon-dev-archive@cocoon.apache.org Received: (qmail 57263 invoked by uid 500); 23 Oct 2005 07:44:07 -0000 Mailing-List: contact dev-help@cocoon.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@cocoon.apache.org List-Id: Delivered-To: mailing list dev@cocoon.apache.org Received: (qmail 57252 invoked by uid 99); 23 Oct 2005 07:44:07 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 23 Oct 2005 00:44:07 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (asf.osuosl.org: local policy) Received: from [212.23.3.140] (HELO pythagoras.zen.co.uk) (212.23.3.140) by apache.org (qpsmtpd/0.29) with ESMTP; Sun, 23 Oct 2005 00:44:06 -0700 Received: from [82.69.78.226] (helo=[192.168.0.2]) by pythagoras.zen.co.uk with esmtp (Exim 4.30) id 1ETaW9-0002nN-Fm for dev@cocoon.apache.org; Sun, 23 Oct 2005 07:43:45 +0000 Message-ID: <435B3F2F.8050507@apache.org> Date: Sun, 23 Oct 2005 08:43:43 +0100 From: Ross Gardler User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: dev@cocoon.apache.org Subject: Access to daisy docs (Re: forrest config for exporting daisy docs) References: <4358CCE2.6090707@apache.org> <435941F0.6040805@apache.org> <43594A40.4080908@odoko.co.uk> <435AB303.8070307@apache.org> <435B3676.5040702@odoko.co.uk> In-Reply-To: <435B3676.5040702@odoko.co.uk> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Originating-Pythagoras-IP: [82.69.78.226] X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N Upayavira wrote: > Stefano Mazzocchi wrote: > >>Upayavira wrote: ... >>>>An "edit this page" link would make is *sooo* much better to tie the >>>>whole system together and shouldn't be that hard. >>> >>> >>> >>>With one of those 'don't crawl me' request parameters, I assume? And a >>>robots.txt on Daisy. We don't want our daisy content crawled by search >>>engines, do we? >> >> >>why not? showing a login page to a search engine is not going to make >>that big of a difference > > > Well, at the moment, all content in Daisy is visible to the world. I > don't like this. Were it protected in some way, I would agree with you. It can be protected in pretty much any way you want, anyone with admin rights on Daisy can do it. Anyone who arrives at the wiki initially has the role of "guest". People can self register, this makes them "user". After this rights have to be defined and assigned by an admin. In addition we can limit access to only live documents, i.e. published and to particular collections. It's also possible on a per page basis but administration of this is cumbersome, the ACL interface is not really geared up for this. So the question is, with respect to read access to the "live" documents and to the "in development" docs (write access is already defined): 1) should we keep access open to all users (including guests) 2) should we allow access to users (self registration possible) 3) should we only allow access to people approved by the community My view is that we restrict read access to published docs to "users" and encourage people to comment on the docs rather than edit them. The we have the existing doc-editors and doc-committers role for editing and publishing. Ross Ross