From: Jeff D. <da...@da...> - 2001-07-20 15:41:21
|
How's this for an interim solution (until we get real user authentication, that is)? Allow anyone to log in (via HTTP authentication, the same way the admin currently logs in) with any userid except the admin user, and any password. This would be a trivial hack, and I believe would be maximally forward-compatible with future non bogo-authentication. I guess we don't want to allow people to set userid's which look like IP addresses or host names. Perhaps we should only allow people to log in with with userid's which are WikiWords, so as to encourage userids to be the names of homepages? Speak now or suffer the short term consequences. Jeff |