On Wed, Jul 18, 2012 at 12:24 PM, Meghan Mahar meghan.mahar@appian.comwrote:
I currently have a set of internal users for our wiki that have Administrator access. I also have a set of external users (our customers) that can only read pages and create discussion pages.
I would like to remove the permission from our customers that allows them to access the History tab. I looked into the Extension:GroupPermissionsManager, but we use PHP 5.3.1 and we plan on upgrading to Mediawiki 1.19 soon, so that doesn't work.
Is there an alternative you recommend? I have removed the history tab from our CSS, but users could still access the direct url of the history page if they wanted. I would like a resolution that denies them access, but still allows myself and other admins to access it.
Unfortunately for your case, read access to the wiki grants permission to both current and old revisions -- it's simply assumed throughout the system. I don't think there's really a good way to actually prevent access to old revisions.
You might be able to track down all the output systems and disable them though:
* action=view w/ oldid * action=raw w/ oldid * action=history * API * Special:Export
-- brion