Admin Guide: Wiki Permissions for Dokuwiki
DokuWiki allows for access control for each page and namespace of the wiki. Permissions can be given to individual users or to entire groups. Admin permissions will be assigned in both the Liquid Core Admin page as well as in the DokuWiki Admin pages.
- Go to Liquid Admin
- Under 'Groups' click the green plus sign to create the group of your choice.
- Name your group and assign the desired permissions by selecting the checkmarks next to the apps
- A list of the groups that you created will be displayed under 'Groups', each having access to the different available apps
- Go to Liquid Admin under Users and create a User and assign it to a Group
- When creating a user, you can assign the user to a specific group
In this example, the user test.1 is part of the toto_cutugno and celentano groups
- A list of the created users and their respective group membership will be displayed in the Users view
Notes:
- Only users marked as "Staff" and "Superuser" in the Liquid Home Page Admin will see this interface.
- Any user marked as "Staff" and "Superuser" in the Liquid Home Page Admin will have potential access to the entire wiki, both secret and public: they can give themselves access to any page.
The Wiki Groups themselves are independent of the rest of the system. If you create a group in the 'Liquid Core Admin' page, it will not be synced here, so the user needs to be given access to users and groups separately from the home page or Hoover.
- Navigate to the DokuWiki App, to the Admin interface
- Select 'Virtual Groups'
- Use these simple forms, to add new groups to the system, and link existing users to groups.
Caveat: This page does not check if the usernames are actually valid in the system, so please double-check if the correct username is set. To avoid any errors, please copy/paste the username from the Liquid Core Admin page instead of manually writing it.
To see this mage, you must have Superuser permission.
This page controls what users and groups have the following permissions: Read Edit Create Upload Delete. It allows you to configure access for each page/namespace, either for a specific user or for an entire group.
You can also set the default permission set (the * namespace).
When managing group access permissions, you can assign different levels of permissions, with 'None' being the most limiting access level and 'Delete' being the most permissive level, depending on each use case.
More information on the 'Access Control Lists' system, including examples, can be found here: Dokuwiki Access Restrictions, Access Control Examples.
Make sure everyone has access to the tools:index page, to access the Sitemap.
Use these ACL rules to give everyone access to tools:index:
You can make use of the following groups created automatically:
-
ALLanduser- both contain all users of the wiki. -
admin- contains people with Admin access (marked as Staff in Liquid Home Page). However, they cannot access the Virtual Group or ACL pages. -
superuser- contains all people with Superuser access (marked as Superuser in Liquid Home Page)
Accounts marked as Superuser in the Liquid Home page (and automatically added to the superuser group in DokuWiki) are the only accounts that can access the Virtual Group Manager and the ACL Manager. They are not restricted by the ACLs they create. This means they can view, edit, move, delete any page, in any namespace.
Because of their elevated access, these accounts should only be used by people with direct access to the servers, for maintenance and fixing permissions.
See Dokuwiki Access Restrictions Documentation for more details.
- The Virtual Manager and ACL forms do not check if the groups and usernames are actually valid in the system, so please double-check the correct group is set. When possible, use copy/paste from the Liquid Home Page / Virtual Group manager instead of manually writing the user/group name, to avoid errors.