| e81c5974 |
1 | The only way to have a private ikiwiki, with a shared user database |
| 2 | for static pages and CGI authentication, is to use |
| 3 | [[plugins/httpauth]]. It would be good for httpauth to be on par with |
| 4 | [[plugins/passwordauth]], i.e. to allow registering users, resetting |
| 5 | passwords, and changing passwords; supporting some kind of |
| 214d7377 |
6 | `account_creation_password` configuration option would be nice, too. |
| 7 | |
| 8 | I'll probably propose patches implementing this at some point. |
| 9 | I've not had a single look at the code yet, but it may be nice to factorize |
| 10 | the relevant passwordauth code, instead of rewriting it completely in httpauth. |
| 11 | |
| 12 | -- [[intrigeri]] |
| 13 | |
| e81c5974 |
14 | Well, on such a private wiki, one can neither register herself nor |
| 15 | reset his password: the registration page, as any other page, would be |
| 16 | forbidden to non-authenticated users. Admin users should then be |
| 17 | enabled to: |
| 18 | |
| 19 | - register a new user |
| 20 | - reset someone else's password |
| 21 | |
| 22 | In both cases, a brand new random password is sent by e-mail to the |
| 23 | new user. |
| 24 | |
| 25 | An authenticated user should nevertheless be able to change his |
| 26 | own password. -- [[intrigeri]] |
| 27 | |
| 214d7377 |
28 | [[wishlist]] |
projects / ikiwiki / blame