Menu
▾
▴
Re: [Phpwiki-talk] GroupWikiPage
|
From: Joby W. <joby@u.washington.edu> - 2002-10-16 23:27:34
|
Jeff Dairiki wrote:
>>2) It looks like a non-homepage can be compromised and turned into a
>>homepage by adding a CategoryHomepage and then trying to login with that
>>name.
>
> Okay. Maybe the CategoryHomepage idea is a bad one... Let's fallback
> (for the sake of discussion) to detecting user pages by the presence
> of user meta-data.
>
>>4) Without the "Group" magic word a homepage can be a grouppage as well,
>>which means that user A could not link to user B's homepage without
>>adding B to A's group. Which seems overlimiting...
>
> True. One solution is "don't do that". ("Doctor, doctor...")
> (Another solution would be not to allow that: ignore any groups which
> have the same name as a user.)
A solution to both is "pagetype" in its own field in $page_tbl (or if it
is the consensus a meta-data entry). A single small int would resolve
the issue:
0 - WIKI_PAGE # Standard Wiki Page
1 - GROUP_PAGE # Group page with list of members
2 - USER_PAGE # User Homepage with Meta-data containing password
3 - ADMIN_PAGE # ? not sure just brainstorming for potential
This would enable quick identification (field would be faster than
meta-data), provide better security, and well...make things clearer.
jbw
|
