Hi there,
Were are doing a Wiki on the Intranet of a big company. We do not want to expose the Wiki to all of the company's employees, but rather restrict access to a particular group of people.
Would it be possible to provide acccess based on IP adress-ranges (not having to provide an account and password and doing all the maintenance; resetting passwords etc.)? I know that we then do not have automatically logged in editors, but is just good to know the possibility.
Anyone else having these kind of issues on an Intranet?
By the way is it actually possible to reset a password for a user?
Many thanks,
Marcel
--------------------------------- To help you stay safe and secure online, we've developed the all new Yahoo! Security Centre.
On 9/13/05, Marcel de Ruiter zeeforel70@yahoo.com wrote:
Hi there,
Were are doing a Wiki on the Intranet of a big company. We do not want to expose the Wiki to all of the company's employees, but rather restrict access to a particular group of people.
Would it be possible to provide acccess based on IP adress-ranges (not having to provide an account and password and doing all the maintenance; resetting passwords etc.)? I know that we then do not have automatically logged in editors, but is just good to know the possibility.
Anyone else having these kind of issues on an Intranet?
If you are really trying to restrict ALL access to the wiki, I suspect that it's better to do this with the web server configuration rather than in the wiki itself. Web servers like Apache have fairly sophisticated access control mechanisms, whereas mediawiki and other wikis which follow the wiki way philosophy are designed around open access.
If its a BIG company, it's might well be that they have a corporate strategy for controlling access to corporate intranet web apps, and they would like what you do to fit into that strategy.
I run two protected wikis for a big company, along with a dozen or so unprotected wikis, all on the same DL 360 server. I just use Apache directory passwords - any access attempt to the restricted wikis pops up a username and password dialog. The wiki owners can give out those users and passwords to whomever they want.
http://www.scriptsharks.com/articles/htaccess.php
- MHart
----- Original Message ----- From: "Marcel de Ruiter" zeeforel70@yahoo.com To: mediawiki-l@Wikimedia.org Sent: Monday, September 12, 2005 11:54 PM Subject: [Mediawiki-l] Access based on IP address-ranges possible (Intranet)?
Hi there,
Were are doing a Wiki on the Intranet of a big company. We do not want to expose the Wiki to all of the company's employees, but rather restrict access to a particular group of people.
Would it be possible to provide acccess based on IP adress-ranges (not having to provide an account and password and doing all the maintenance; resetting passwords etc.)? I know that we then do not have automatically logged in editors, but is just good to know the possibility.
Anyone else having these kind of issues on an Intranet?
By the way is it actually possible to reset a password for a user?
Many thanks,
Marcel
--------------------------------- To help you stay safe and secure online, we've developed the all new Yahoo! Security Centre. _______________________________________________ MediaWiki-l mailing list MediaWiki-l@Wikimedia.org http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
Hi
On 9/13/05, Marcel de Ruiter zeeforel70@yahoo.com wrote:
Would it be possible to provide acccess based on IP adress-ranges (not having to provide an account and password and doing all the maintenance; resetting passwords etc.)? I know that we then do not have automatically logged in editors, but is just good to know the possibility.
Yes it is possible
at least with Apache2..did this via /etc/apache2/default-server.conf
following settings:
<Directory "/xxx/yyy/htdocs/wiki"> AllowOverride None #Overriden by .htaccess-Files forbidden Satisfy any #either Authentification or access from xx.uni-koeln.de AuthName "mywikiname" AuthType Basic AuthUserFile /xxx/xxx/passwd/users Require valid-user Order deny,allow Deny from all Allow from xx.uni-koeln.de #you can here define further access without password </Directory>
Gustav
mediawiki-l@lists.wikimedia.org