X-Git-Url: http://git.vanrenterghem.biz/git.ikiwiki.info.git/blobdiff_plain/b83cb1d9f5ad1bc3eab332a75ecd958d63610ce9..c03b033969b22b4c540c5ca8ec7b730dda4bd483:/doc/todo/Restrict_page_viewing.mdwn diff --git a/doc/todo/Restrict_page_viewing.mdwn b/doc/todo/Restrict_page_viewing.mdwn index 9c1889d63..69b15a187 100644 --- a/doc/todo/Restrict_page_viewing.mdwn +++ b/doc/todo/Restrict_page_viewing.mdwn @@ -37,3 +37,11 @@ much more maintainable htaccess file. >>>> Yes, I think this could probably be used in combination with ikiwiki's >>>> httpauth and openid plugins. --[[Joey]] + +>>>>> If you use the httpauth and the cgiauthurl method, you can restrict a path +>>>>> like /private/* to be accessible only under the authenticated request uri. + +>>>>>> Note that if editing is enabled, then you should set the restriction in +>>>>>> [[plugins/lockedit]]'s locked_pages too +>>>>>> or they may be able to view pages by editing the page= value in the editor's +>>>>>> query string. --[mjr](http://mjr.towers.org.uk/)