Item1485: tighten up _default and _empty web permissions to deny filt…

…hy spammers

git-svn-id: http://svn.foswiki.org/branches/Release01x00@3598 0b4bb1d4-4e5a-0410-9cc4-b2b747904278

core/data/System/ManagingWebs.txt

@@ -39,6 +39,7 @@ Create a new web by filling out this form.%BR%
 
 *Notes:*
    * You must have =ROOTCHANGE= access to create a top-level web (one with no parent)
+   * A new web created using the =_default= or =_empty= template webs must have their access controls set before public use
    * Only the person who created it has permission to change the <nop>%WEBPREFSTOPIC% in the new web
 
 ---++ Hierarchical Webs

core/data/_default/WebPreferences.txt

@@ -52,13 +52,13 @@ These settings override the defaults for this web only. See [[%SYSTEMWEB%.Defaul
       * Set DENYWEBVIEW = 
       * Set ALLOWWEBVIEW = 
       * Set DENYWEBCHANGE = 
-      * Set ALLOWWEBCHANGE = 
+      * Set ALLOWWEBCHANGE = %USERSWEB%.AdminGroup
       * Set DENYWEBRENAME = 
-      * Set ALLOWWEBRENAME = 
+      * Set ALLOWWEBRENAME = %USERSWEB%.AdminGroup
 
    * Users or groups allowed to change or rename this <nop>%TOPIC% topic: (e.g., [[%USERSWEB%.AdminGroup][AdminGroup]])
-      * Set ALLOWTOPICCHANGE = 
-      * Set ALLOWTOPICRENAME = 
+      * Set ALLOWTOPICCHANGE = %USERSWEB%.AdminGroup
+      * Set ALLOWTOPICRENAME = %USERSWEB%.AdminGroup
 
    * Web preferences that are *not* allowed to be overridden by sub-web, user or topic preferences:
       * Set FINALPREFERENCES = NOSEARCHALL, ATTACHFILESIZELIMIT, WIKIWEBMASTER, WEBCOPYRIGHT, WEBTOPICLIST, DENYWEBVIEW, ALLOWWEBVIEW, DENYWEBCHANGE, ALLOWWEBCHANGE, DENYWEBRENAME, ALLOWWEBRENAME

core/data/_empty/WebPreferences.txt

@@ -0,0 +1,4 @@
+   * Set ALLOWWEBCHANGE = %USERSWEB%.AdminGroup
+   * Set ALLOWWEBRENAME = %USERSWEB%.AdminGroup
+   * Set ALLOWTOPICCHANGE = %USERSWEB%.AdminGroup
+   * Set ALLOWTOPICRENAME = %USERSWEB%.AdminGroup