From: Joey Hess <joey@kitenet.net>
Date: Tue, 11 Mar 2008 13:09:15 +0000 (-0400)
Subject: web commit by http://hendry.iki.fi/: openid acl
X-Git-Tag: 2.41~154^2~1
X-Git-Url: http://git.vanrenterghem.biz/git.ikiwiki.info.git/commitdiff_plain/09e69a642b9697c79157ceab5216b7158b4c23c6

web commit by http://hendry.iki.fi/: openid acl
---

diff --git a/doc/bugs/openid_user_filtering.mdwn b/doc/bugs/openid_user_filtering.mdwn
new file mode 100644
index 000000000..8b2d0082e
--- /dev/null
+++ b/doc/bugs/openid_user_filtering.mdwn
@@ -0,0 +1,9 @@
+As mentioned on IRC, I think a cheap form of [[todo/ACL]] can be maintained using [OpenID in ikiwiki](http://packages.qa.debian.org/libn/libnet-openid-consumer-perl.html).
+
+Say I want to limit edits to [wiki.webvm.net](http://wiki.webvm.net/) to users of that machine. For the user 'hendry' I create a http://hendry.webvm.net/ OpenID (which actually delegates to http://hendry.myopenid.com/). And likewise for other users.
+
+So I suggest an ikiwiki configuration like:
+
+     users => ["*.webvm.net"],
+
+Would only allow edits from openIDs of that form.