Return-Path: Delivered-To: apmail-incubator-jspwiki-user-archive@minotaur.apache.org Received: (qmail 47443 invoked from network); 12 Feb 2009 18:00:22 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 12 Feb 2009 18:00:22 -0000 Received: (qmail 91727 invoked by uid 500); 12 Feb 2009 18:00:21 -0000 Delivered-To: apmail-incubator-jspwiki-user-archive@incubator.apache.org Received: (qmail 91690 invoked by uid 500); 12 Feb 2009 18:00:20 -0000 Mailing-List: contact jspwiki-user-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: jspwiki-user@incubator.apache.org Delivered-To: mailing list jspwiki-user@incubator.apache.org Received: (qmail 91674 invoked by uid 99); 12 Feb 2009 18:00:20 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 12 Feb 2009 10:00:20 -0800 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of Janne.Jalkanen@ecyrd.com designates 193.64.5.122 as permitted sender) Received: from [193.64.5.122] (HELO mail.ecyrd.com) (193.64.5.122) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 12 Feb 2009 18:00:13 +0000 Received: from [192.168.0.10] (cs181005170.pp.htv.fi [82.181.5.170]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by mail.ecyrd.com (Postfix) with ESMTPSA id 1E80697C086 for ; Thu, 12 Feb 2009 19:59:36 +0200 (EET) Message-Id: <5FC1E7A6-0A42-4AE8-AD31-61F59AE2B5EB@ecyrd.com> From: Janne Jalkanen To: jspwiki-user@incubator.apache.org In-Reply-To: <857A26F4E01F6546A056F1EE7604F0E201D699B740@N060XBOXPCMS01.kroger.com> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v930.3) Subject: Re: ALLOW tag not working properly Date: Thu, 12 Feb 2009 19:59:34 +0200 References: <857A26F4E01F6546A056F1EE7604F0E201D6822D49@N060XBOXPCMS01.kroger.com> <3a6c97f00902100925l2e85cf97i1c891d5d1fac3a2c@mail.gmail.com> <857A26F4E01F6546A056F1EE7604F0E201D699B740@N060XBOXPCMS01.kroger.com> X-Mailer: Apple Mail (2.930.3) X-Virus-Checked: Checked by ClamAV on apache.org > But I guess I'm a little confused about the way the [{ALLOW view > userid}] functions. Since it is part of the JSPWiki page text, I > would think it would have to be processed at the level where the > page is being viewed, not through the security setup. The security > setup would decide whether a user is allowed to view or edit pages > in general. I would imagine that the [{ALLOW view userid}] tag > works after a user is attempting to pull up the page in question - > more at the JSPWiki level than at the security level. Well, whenever the page is changed, we parse the text and find all ALLOW statements, then store them in the page ACL. And yeah, the security subsystem first checks the ACLs before the page content is even read. /Janne