From f976f8c5c5347be67326ca6a6a2b6ac152a771f3 Mon Sep 17 00:00:00 2001 From: cdot Date: Tue, 18 Apr 2017 13:37:03 +0100 Subject: [PATCH] Item2247: incorporate MichaHalyler's excellent suggestion --- data/System/PublishPlugin.txt | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/data/System/PublishPlugin.txt b/data/System/PublishPlugin.txt index 87cbf32..f27aa82 100644 --- a/data/System/PublishPlugin.txt +++ b/data/System/PublishPlugin.txt @@ -699,6 +699,15 @@ take precautions to prevent accidental leakage of confidential information by restricting web access to this directory, for example in the Apache configuration. +One way to do this is to use the =viewfile= access rights management to control +access to the published content: + * Create a hidden web named e.g. Publish + * Make this web public readable (via Publish.WebPreferences; ALLOW/DENYTOPICVIEW) + * Create a topic Publish.PublishedContent + * Change !PublishPlugin Settings in =configure= to publish to =pub/Publish/PublishedContent= +Access controles on =Publish= web and =!Publish.PublishedContent= will then +apply. + ---++ Dependencies %$DEPENDENCIES%