Opened 14 years ago
Last modified 10 years ago
#8976 closed defect
Can't restrict access to specified version of wiki page using FineGrainedPermissions — at Initial Version
| Reported by: | Owned by: | ||
|---|---|---|---|
| Priority: | normal | Milestone: | 1.0.2 |
| Component: | wiki system | Version: | 0.11-stable |
| Severity: | normal | Keywords: | authzpolicy |
| Cc: | leho@… | Branch: | |
| Release Notes: | |||
| API Changes: | |||
| Internal Changes: | |||
Description
This is either a defect, or I am really misreading the documentation.
After not having any success getting the authz configuration to behave the way I was expecting under Trac 0.11.4, I setup the development environment for 0.11.7dev and did some testing.
The following configuration grants access to all versions of WikiStart, as I would expect,
[wiki:WikiStart] * = WIKI_VIEW [wiki:WikiStart@*] * =
That is, it appears that the first match is used to grant WIKI_VIEW to all versions of WikiStart, which seems to agree with the documentation.
Given that, I would expect the following configuration to grant access to only version 3 of WikiStart (there are 7 versions of WikiStart under this instance of Trac):
[wiki:WikiStart@3] * = WIKI_VIEW [wiki:WikiStart@*] * =
However, with the latter configuration, I can't access any versions of WikiStart when navigating to:
http://localhost:8000/tracdev/wiki/WikiStart?version=3
There is a Forbidden Error with:
WIKI_VIEW privileges are required to perform this operation on WikiStart
I've set the LogLevel to DEBUG and will attach the log output from trying to access the aforementioned URL.
Log from accessing WikiStart@3