On Thu, Jul 23, 2009 at 12:11 AM, Ryan Lane<rlane32(a)gmail.com> wrote:
What about OpenID + OAuth?
With MediaWiki support, there would be any number of ways to do it.
Most obvious would be to just have a preference checkbox somewhere
that would create a secret magic URL that would allow unauthenticated
access to your watchlist. That's the main way that's been put forward
to allow RSS feeds for watchlists.
Neither the OpenID plugin, or MediaWiki really support
RBAC in a way
that would make this work, but it is definitely possible.
I'm not sure what "RBAC" means here. We sure do have RBAC for user
accounts -- $wgGroupPermissions does that just fine. We don't
generically permit users to set up discretionary access control lists
to delegate all their privileges, however. That would be . . . kind
of bizarre.