What does your policy look like, Rolf? Regards, Xiaoming
-----Original Message----- From: Rolf Schumacher [mailto:r...@august.de] Sent: 28 June 2015 13:50 To: user@jspwiki.apache.org Subject: RE: Closed Thank you for your answer, Xiaoming Had a few problems with entering the first new name to userdatabase.xml. With some complicated procedure I had the luck of being authenticated - according to logging (back-and-forth with old an new jspwiki.policy, cannot commit "easy"). Now I am facing a followup problem that I am not able to solve on my own: the user seems to be authenticated but is not allowed of viewing Main page. Here are the logging messages: 2015-06-28 14:29:40,481 [http-nio-8080-exec-6] INFO JSPWiki Jspwiki:/jspwiki/Login.jsp Jspwiki:http://wiki.url.com/jspwiki/Login.jsp - Successfully authenticated user ngong (custom auth) 2015-06-28 14:29:40,481 [http-nio-8080-exec-6] INFO JSPWiki Jspwiki:/jspwiki/Login.jsp Jspwiki:http://wiki.url.com/jspwiki/Login.jsp - Redirecting user to https://wiki.url.com/Wiki.jsp?page=Main 2015-06-28 14:29:40,487 [http-nio-8080-exec-7] INFO org.apache.wiki.auth.AuthorizationManager Jspwiki:/jspwiki/Wiki.jsp Jspwiki:http://wiki.url.com/jspwiki/Wiki.jsp - User The Name has no access - redirecting (permission=("org.apache.wiki.auth.permissions.PagePermission","Jspwiki:Main","view")) 2015-06-28 14:29:40,499 [http-nio-8080-exec-8] INFO org.apache.wiki.util.PropertyReader Jspwiki:/jspwiki/Login.jsp Jspwiki:http://wiki.url.com/jspwiki/Login.jsp - No jspwiki.custom.config defined for this context, looking for custom properties file with default name of: /jspwiki-custom.properties Do you got another hint for me? --- Viele Grüße, Best Regards Rolf Schumacher Am 24.06.2015 06:22, schrieb Xiaoming Yang: > Hi Rolf, > > It is quite easy to create your own policy. For example, here is my > policy, which only allow Authenticated users to use the wiki. > > /-------------- > > grant principal org.apache.wiki.auth.authorize.Role "All" { > permission org.apache.wiki.auth.permissions.WikiPermission "*", > "login"; }; > > grant principal org.apache.wiki.auth.authorize.Role "Anonymous" { }; > > grant principal org.apache.wiki.auth.authorize.Role "Asserted" { }; > > grant principal org.apache.wiki.auth.authorize.Role "Authenticated" { > permission org.apache.wiki.auth.permissions.PagePermission "*:*", > "view,modify,rename"; > permission org.apache.wiki.auth.permissions.GroupPermission "*:*", > "view"; > permission org.apache.wiki.auth.permissions.GroupPermission > "*:<groupmember>", "edit"; > permission org.apache.wiki.auth.permissions.WikiPermission "*", > "createPages,createGroups"; }; > > --------------/ > > > Regards, > > Xiaoming > > ________________________________________ > From: Rolf Schumacher [r...@august.de] > Sent: 23 June 2015 22:44 > To: user@jspwiki.apache.org > Subject: Closed > > Dear JSPWiki insiders > > I would like to open a JSPWiki to a limited set of contributers. > I did several experiments with editing jspwiki.policy without success. > I must say I am not able to understand the logic behind it and stopped > trying it. > > Is there just an ready-to-use example of a jspwiki.policy for a > limited set of users? > > -- > Viele Grüße, Best Regards > > Rolf Schumacher
