[pmwiki-users] Alternate authorization levels for $EnableDiag actions
H. Fox
haganfox at users.sourceforge.net
Thu Jul 5 11:33:02 CDT 2007
On 7/5/07, Patrick R. Michaud <pmichaud at pobox.com> wrote:
> ?action=diag doesn't go through the normal "HandleAuth" array
> or authorization routines, because it's often the case that what
> we're wanting to "diag" is the authorizaton itself, or we're
> wanting to generate diagnostic output before PmWiki completes
> its initialization. So, ?action=diag is handled directly in
> diag.php.
Thanks for explaining this.
> To get ?action=diag to require edit permission, one currently
> does it explicitly in local/config.php, with something like:
>
> if ($action == 'diag' && !CondAuth($pagename, 'edit'))
> $action = 'browse';
How about this?
if (CondAuth($pagename, 'edit')) $EnableDiag = 1;
Hagan
More information about the pmwiki-users
mailing list