Free-Conversant Support / [ANN] New Security Feature
 Home   About Conversant   Free Sites   Hosting   Support   XML-RPC 
Support Home

Documentation

Search Support Site

Discussion Group
  Ask a Question
  Recent Topics
  Message Calendar

Membership
  Logon
  Join Now!

Subscribe via Email
Unsubscribe via Email

Search



Topic: [ANN] New Security Feature

Shown in forward chronological order.
Reverse chronological order | Hierarchical outline view

Messages: 9 of 9.
Pages: 1
[ANN] New Security Feature (#8171)
Posted: 3/22/2005; 12:57 AM by Seth Dillingham
Modified: 3/22/2005; 12:57 AM by Seth Dillingham
Edit | Reply

All web sites built on Conversant now support access restrictions (security settings) on files and folders.

The new feature allows you to limit access to parts or all of your site:

* to members only * to administrators only * to specific members * to members of a group

These 'access restrictions' are automatically inherited from a folder to all of the subfolders and files (pages) within that folder. You can (of course) override the security on any page or folder that is inheriting its security from a parent folder.

Why use it? Well, you could create private views of your discussion forum, or have a section of your site that's only available to admins, or member, or... whatever.

You can set the access restrictions through the Files & Folders section of the admin area (ie, the structure editor).

There are actually two page properties: one popup menu for setting the 'type' of restriction, and the other for setting the group id or username. Both items have full help text available.

Let us know if you have any questions!

Seth
RE: [ANN] New Security Feature (#8172)
Posted: 3/22/2005; 1:30 AM by Clark Venable
Modified: 3/22/2005; 1:30 AM by Clark Venable
Response to: 8171
Edit | Reply
Nicely done, Seth! I was able to start using this feature right away and do away with the conditionals in my bound message template.
RE: [ANN] New Security Feature (#8173)
Posted: 3/22/2005; 1:40 AM by Seth Dillingham
Modified: 3/22/2005; 1:40 AM by Seth Dillingham
Response to: 8172
Edit | Reply

On 3/22/05, Clark Venable said:

>Nicely done, Seth!  I was able to start using this feature right
>away and do away with the conditionals in my bound message template.

Nuts!!!

Hang on, one more announcement...
Re: [ANN] New Security Feature (#8174)
Posted: 3/22/2005; 1:44 AM by Seth Dillingham
Modified: 3/22/2005; 1:44 AM by Seth Dillingham
Response to: 8171
Edit | Reply

Due to the late timing of this announcement, I completely forgot to mention that Clark Venable sponsored this feature.

This is an important feature that we've needed from the beginning, and I'm personally very grateful to Clark for understanding its value and getting behind it.

Thanks Clark!

Seth
RE: [ANN] New Security Feature (#8175)
Posted: 3/22/2005; 1:50 AM by Seth Dillingham
Modified: 3/22/2005; 1:50 AM by Seth Dillingham
Response to: 8172
Edit | Reply

On 3/22/05, Clark Venable said:

>Nicely done, Seth!  I was able to start using this feature right
>away and do away with the conditionals in my bound message template.

Great! I'm glad you like it, Clark.

And the way it's written, some people should find that it's a performance improvement because they were using a lot of conditionals to control access to lots of different pages or directories.

Seth
Re: [ANN] New Security Feature (#8176)
Posted: 3/22/2005; 2:52 AM by Mark Morgan
Modified: 3/22/2005; 2:52 AM by Mark Morgan
Response to: 8171
Edit | Reply
This really rocks. It'll be nice to have some semi-public areas.
--
---Mark
"Too bad dark languages rarely survive."
Re: [ANN] New Security Feature (#8179)
Posted: 3/22/2005; 10:25 AM by Greg Pierce
Modified: 3/22/2005; 10:25 AM by Greg Pierce
Response to: 8171
Edit | Reply
On Mar 21, 2005, at 10:57 PM, Seth Dillingham wrote:

> Let us know if you have any questions!

I assume that in all cases the existing security preferences set under
/Preferences/Web Server override these settings? Is that correct?

g.
RE: [ANN] New Security Feature (#8181)
Posted: 3/22/2005; 10:45 AM by Seth Dillingham
Modified: 3/22/2005; 10:45 AM by Seth Dillingham
Response to: 8179
Edit | Reply

On 3/22/05, Greg Pierce said:


>>Let us know if you have any questions!
>
>I assume that in all cases the existing security preferences set
>under 
>/Preferences/Web Server override these settings?  Is that correct?

Those preferences are dealt with first. If they lock someone out, the new security settings won't let you in.

However, if the security preferences let you in, the newer ones can still exclude you.

In other words, the new security settings will never let someone in who couldn't already access the site.

There is one special rule I haven't mentioned yet.

The difficult part, for me, was figuring out how to deal with the discussion group messges at their own URL's. Technically, they're served through the root folder. If you want to limit access to the entire site then you'll want to set the security on the root folder... but that would also prevent anyone from accessing the discussion group messages, and there's no single page for the DG messages where the security could be overridden to allow access.

So, the solution:

1. Set "Allow non-members to view full site" to "Yes." 2. Set the root folder's security to something like "Members Only". 3. (Perhaps set the index page, at the root of the site, to "No Restrictions", so that guests can at least see the home page.)

The result is that your site now has a sort of "deny-then-allow" security policy, where the default for all pages is "only members have access." The "Allow non-members to view full site" preference is treated as an override, saying that you want guests to be able to view the DG.

Understand?

Seth
RE: [ANN] New Security Feature (#8183)
Posted: 3/22/2005; 10:55 AM by Terry
Modified: 3/22/2005; 10:55 AM by Terry
Response to: 8174
Edit | Reply
> This is an important feature that we've needed from the > beginning, and I'm personally very grateful to Clark for > understanding its value and getting behind it.

A second big Wahoo! For Clark. You da man!

-- Cordially, - twf

Messages: 9.
Pages: 1


This site managed with Conversant, © Copyright 2010 Macrobyte Resources