You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@jspwiki.apache.org by Donal O'Brien <do...@oracle.com> on 2008/07/07 13:17:30 UTC

Overriding Default Policy

Sorry if this has been asked before.

I have a wiki (version 2.4) using an external application for 
authentication (Oracle SSO) and am using groups for authorization. I 
only want a small subset of the users in the SSO repository to have 
access to the wiki. This is working fine. However, what I would like to 
do now is allow people to grant read access to certain pages (using 
page-based ACLs) to select people who don't normally have access, but 
can log in through SSO.

I assumed this would be easy as I believed that page-based ACLs would 
override those in the policy. However, this didn't work so I had a look 
at the code and it seems that it checks that the user has access 
according to the policy before checking ACLs.

So, my question is, basically, is there any other way to do this?

Thanks,
DONAL