On Tue, Sep 15, 2009 at 16:18, Jean-Vincent Drean <jv(a)xwiki.com> wrote:
Hi devs,
I'm currently working on documents we create from core/plugins or
those we bundle in XARs (xwiki/2.0 conversion, filling title field,
etc).
I'd like to take advantage of this to discuss about the author we use
in those documents. We currently have 2 different behaviors:
- classes created from the core usually have their author set to ""
- classes created from plugins (skinx, scheduler, etc) or bundled in
our XARs usually have their author set to "XWiki.Admin"
It lacks consistency and it can lead to security issues. If for some
reason the administrator of a wiki decide to delete the XWiki.Admin
account some can re-create it and gain the authorship -- thus the
right to delete -- plenty of XE documents.
We can decide to:
1) Only tackle the consistency problem and use "XWiki.Admin" everywhere
-1, "XWiki.Admin" is a XE user
2) Solve the 2 problems by extending core policy to
all our documents,
ie. use "" everywhere
+0 not very good looking but at least we are sure it's a special
system user since it's not possible to have user called ""
3) Solve the 2 problems by using a special username
everywhere, like "System".
Are you sure System is not automatically resolved in XWiki.System ? In
this case it would be the same security issue than with XWiki.Admin.
Note that we already have a "system" user, it's superadmin.
Here's my +1 for 3), rationale:
- 1) is only a quick fix and core shouldn't be aware of a user that
comes with XE,
- 2) is fine except that not having an author seems unnatural from a user POV.
- In the future we could decide to have special handler for the
"System" user, like pointing to a page explaining that it is a
pseudo-user when we use $xwiki.getLocalUserName("System").
JV.
_______________________________________________
devs mailing list
devs(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/devs
--
Thomas Mortagne