Hi Harald, you may wish to take a look at the department policy file [#1] of jspwiki's portable build; IIRC, anonymous users aren't granted any permission, whereas authenticated ones can view, edit, etc. Please let me know if that policy works out for you or if further help is needed.
cheers, juan pablo [#1] https://github.com/apache/jspwiki/blob/master/jspwiki-portable/src/overlay/woas/webapps/department/WEB-INF/jspwiki.policy On 2023/02/06 18:36:27 Harald Krammer wrote: > Hello ! > > Currently we have allowed anonymous access (only view) and set the > permissions in the pages. This allows us to limit access from Anonymous. > > So far everything is fine, but I now have to change our policy. We must > explicitly specify the pages that are publicly (anonymous access) allowed. > > > e.g. for OLD-Page: > > * to protect a side we did it with e.g. > [{ALLOW edit grdev }] > > Without an ACL, public access is allowed (but without write permission). > > > > I have to change that now, that I explicitly allow the page. > e.g. possibly like this? > > * To allow public access > [{ALLOW view ALL }] > > Without ACL you have to be authenticated! > > > Unfortunately, it is not clear to me how I can set this in > jspwiki.policy. All my attempts have failed so far. > > My used documentation: > https://jspwiki-wiki.apache.org/Wiki.jsp?page=Wiki.Admin.Security > > Any tip is welcome. > Nice greetings, > Harald > > >
