Changes between Version 1 and Version 2 of TracPermissions


Ignore:
Timestamp:
11/18/04 18:02:59 (16 years ago)
Author:
trac
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • TracPermissions

    v1 v2  
    11== Trac Permissions ==
     2[[TracGuideToc]]
    23
    3 Trac uses a flexible permission system to control what different users can do
    4 in the system.
     4Trac uses a simple but flexible permission system to control what users can and can't access.
    55
    6 When a user first uses a system he/she will be able to do certain things.
    7 Exactly what he/she can do depend on which privileges you have granted to
    8 the special user {{{anonymous}}}.
    9 In addition to these privileges different users can be granted additional
    10 rights as soon as they login into the system.
     6Permission privilegies are managed using the [wiki:TracAdmin trac-admin] tool.
     7
     8Regular visitors, non-authenticated users, accessing the system are assigned the default
     9role (''user'') named {{{anonymous}}}.
     10Assign permissions to the {{{anonymous}}} user to set privilegies for non-authenticated/guest users.
     11
     12In addition to these privileges users can be granted additional individual
     13rights in effect when authenticated and logged into the system.
    1114
    1215=== Available privileges ===
     
    1821 * {{{BROWSER_VIEW}}}
    1922 * {{{TICKET_VIEW, TICKET_CREATE, TICKET_MODIFY, TICKET_ADMIN}}}
    20  * {{{REPORT_VIEW, REPORT_CREATE, REPORT_MODIFY, REPORT_DELETE, REPORT_ADMIN}}}
     23 * {{{REPORT_VIEW, REPORT_CREATE, REPORT_MODIFY, REPORT_DELETE, REPORT_ADMIN, REPORT_SQL_VIEW}}}
    2124 * {{{WIKI_VIEW, WIKI_CREATE, WIKI_MODIFY, WIKI_DELETE, WIKI_ADMIN}}}
     25 * {{{MILESTONE_VIEW, MILESTONE_CREATE, MILESTONE_MODIFY, MILESTONE_DELETE}}}
     26 * {{{ROADMAP_VIEW, ROADMAP_ADMIN}}}
    2227 * {{{TIMELINE_VIEW}}}
    2328 * {{{SEARCH_VIEW}}}
     
    3439
    3540{{{
    36   $ trac-admin /path/to/my.db permission list
     41  $ trac-admin /path/to/projenv permission list
    3742}}}
    3843
    39 This command will let the user ''bob'' to delete reports:
     44This command will let the user ''bob'' delete reports:
    4045
    4146{{{
    42   $ trac-admin /path/to/my.db permission add bob REPORT_DELETE
     47  $ trac-admin /path/to/projenv permission add bob REPORT_DELETE
     48}}}
     49
     50=== Permission groups ===
     51
     52Permissions can be grouped together to form roles such as
     53''developer'', ''admin'', etc.
     54
     55{{{
     56  $ trac-admin /path/to/projenv permission add developer WIKI_ADMIN
     57  $ trac-admin /path/to/projenv permission add developer REPORT_ADMIN
     58  $ trac-admin /path/to/projenv permission add developer TICKET_MODIFY
     59  $ trac-admin /path/to/projenv permission add bob developer
     60  $ trac-admin /path/to/projenv permission add john developer
    4361}}}
    4462
     
    4967
    5068In the same way, privileges granted to the special user ''authenticated'' will apply to any authenticated (logged in) user.
     69
     70----
     71See also: TracAdmin, TracGuide