[xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
15 Sep
2009
15 Sep
'09
4:18 p.m.
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
2) Solve the 2 problems by extending core policy to all our documents,
ie. use "" everywhere
3) Solve the 2 problems by using a special username everywhere, like "System".
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
15 Sep
15 Sep
4:25 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
On Sep 15, 2009, at 4:18 PM, Jean-Vincent Drean wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin"
everywhere
2) Solve the 2 problems by extending core policy to all our documents,
ie. use "" everywhere
3) Solve the 2 problems by using a special username everywhere, like
"System".
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a
user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
+1 for 3)
Thanks
-Vincent
4:38 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
On Tue, Sep 15, 2009 at 16:18, Jean-Vincent Drean <jv(a)xwiki.com> wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
-1, "XWiki.Admin" is a XE user
2) Solve the 2 problems by extending core policy to
all our documents,
ie. use "" everywhere
+0 not very good looking but at least we are sure it's a special
system user since it's not possible to have user called ""
3) Solve the 2 problems by using a special username
everywhere, like "System".
Are you sure System is not automatically resolved in XWiki.System ? In
this case it would be the same security issue than with XWiki.Admin.
Note that we already have a "system" user, it's superadmin.
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
_______________________________________________
devs mailing list
devs(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/devs
--
Thomas Mortagne
5:19 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
On Tue, Sep 15, 2009 at 4:38 PM, Thomas Mortagne
<thomas.mortagne(a)xwiki.com> wrote:
I haven't checked if System was resolved as XWiki.System and since we
already have special checks for superadmin I'm +1 to use this one.
3) Solve the 2
problems by using a special username everywhere, like "System".
Are you sure System is not automatically resolved in XWiki.System ? In
this case it would be the same security issue than with XWiki.Admin.
Note that we already have a "system" user, it's superadmin.
5:34 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
On Sep 15, 2009, at 5:19 PM, Jean-Vincent Drean wrote:
On Tue, Sep 15, 2009 at 4:38 PM, Thomas Mortagne
<thomas.mortagne(a)xwiki.com> wrote:
I haven't checked if System was resolved as XWiki.System and since we
already have special checks for superadmin I'm +1 to use this one.
+1 too
Thanks
-Vincent
3) Solve
the 2 problems by using a special username everywhere,
like "System".
Are you sure System is not automatically resolved in XWiki.System ?
In
this case it would be the same security issue than with XWiki.Admin.
Note that we already have a "system" user, it's superadmin.
5:36 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
+0 for 3)
Thanks,
Marius
Jean-Vincent Drean wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
2) Solve the 2 problems by extending core policy to all our documents,
ie. use "" everywhere
3) Solve the 2 problems by using a special username everywhere, like "System".
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
_______________________________________________
devs mailing list
devs(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/devs
16 Sep
16 Sep
12:13 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
On Tue, Sep 15, 2009 at 4:18 PM, Jean-Vincent Drean <jv(a)xwiki.com> wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
2) Solve the 2 problems by extending core policy to all our documents,
ie. use "" everywhere
3) Solve the 2 problems by using a special username everywhere, like "System".
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
I'm going to apply 3) with the author superadmin today, shout if you
realize that it was a bad idea.
Thanks,
JV.
12:15 p.m.
New subject: [xwiki-devs] [VOTE] Change the default author of documents created programmatically or provided in XARs
Note: after further discussions it appears that setting the author in
our XAR is not the solution (it must not be set in exports that aren't
backup exports).
I'm only going to modify the author that is set when classes are
created programmatically.
On Wed, Sep 16, 2009 at 12:13 PM, Jean-Vincent Drean <jv(a)xwiki.com> wrote:
On Tue, Sep 15, 2009 at 4:18 PM, Jean-Vincent Drean
<jv(a)xwiki.com> wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
2) Solve the 2 problems by extending core policy to all our documents,
ie. use "" everywhere
3) Solve the 2 problems by using a special username everywhere, like "System".
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
I'm going to apply 3) with the author superadmin today, shout if you
realize that it was a bad idea.
Thanks,
JV.
5532
days inactive
5533
days old
7 comments
5 participants
participants (5)
-
Jean-Vincent Drean -
Jean-Vincent Drean -
Marius Dumitru Florea -
Thomas Mortagne -
Vincent Massol