web commit by JoshTriplett

[git.ikiwiki.info.git] / doc / todo / fileupload.mdwn

diff --git a/doc/todo/fileupload.mdwn b/doc/todo/fileupload.mdwn
index 3a3f27dc44dac9a5922afe198ce86d9bacf2b08b..4623e4a5a10f8938fcb129ef433ab0607d47f5ea 100644 (file)
--- a/doc/todo/fileupload.mdwn
+++ b/doc/todo/fileupload.mdwn
@@ -20,6 +20,7 @@ the work is in securing it. Several classes of controls seem appropriate:
   browsers are probably too smart for their own good and may ignore the
   extension / mime info and process as the actual detected file type. It
   may be necessary to use `file` to determine a file's true type.
   browsers are probably too smart for their own good and may ignore the
   extension / mime info and process as the actual detected file type. It
   may be necessary to use `file` to determine a file's true type.

+* Optional ability to test a file using a virus scanner like clamav.

 * Limits to who can upload what type of files.
 * Limits to what files can be uploaded where.
 
 * Limits to who can upload what type of files.
 * Limits to what files can be uploaded where.
 


@@ -41,9 +42,11 @@ as a wikifs. Maybe.
 And if that's done, it can also be used to lock users from editing a pages
 or the whole wiki:
 
 And if that's done, it can also be used to lock users from editing a pages
 or the whole wiki:
 

-       ( user(spammer) and * ) or
-       ( user(annoying) and index) or
-       ( immutable_page )
+       !(( user(spammer) and * ) or
+        ( user(42.12.*) and * ) or
+        ( user(http://evilopenidserver/*) and * ) or
+        ( user(annoying) and index) or
+        ( immutable_page ))

 
 That would obsolete the current simple admin prefs for banned users and
 locked pages. Suddenly all the access controls live in one place.
 
 That would obsolete the current simple admin prefs for banned users and
 locked pages. Suddenly all the access controls live in one place.