You are here: Foswiki>Tasks Web>Item845>CommentPlugin>Item11448 (05 Jul 2015, GeorgeClark)Edit Attach

Item11448: Implement {GuestCanComment} feature.

Priority: Enhancement
Current State: Closed
Released In: 2.0.0
Target Release: major

Applies To: Extension
Component: CommentPlugin
Branches: trunk

Reported By: GeorgeClark
Waiting For:
Last Change By: GeorgeClark

The {GuestCanComment} feature is not implemented beyond the settings in Foswiki.spec.

Comment.pm needs to test that unless GuestCanComment is set, then the user must be authenticated. If not authenticated, then redirect the request from rest to restauth so that the user is prompted for a login.

Not sure what this does with ajax operation, and should it redirect, or just fail when running as ajax?

-- GeorgeClark - 16 Jan 2012

I'm doubting the {GuestCanComment} configure checker's error message when restauth is not in {AuthScripts}.

This could permit commenting by unauthorized users

I began to re-word the message along the lines of 'If {GuestCanComment} and WikiGuest has CHANGE permission, unauthenticated users may be able to comment' but then this is true anyway when rest itself isn't listed {AuthScripts}.

Anyway, it's not unauthorized users that's a problem, but unauthenticated ones.

-- PaulHarvey - 22 Feb 2012

ItemTemplate edit

Summary	Implement {GuestCanComment} feature.
ReportedBy	GeorgeClark
Codebase	trunk
SVN Range
AppliesTo	Extension
Component	CommentPlugin
Priority	Enhancement
CurrentState	Closed
WaitingFor
Checkins	distro:41eeb00cde52 distro:6a020c712561 distro:23c9fbf5ec68 distro:3b35a601d010 distro:fee2adc2a790
TargetRelease	major
ReleasedIn	2.0.0
CheckinsOnBranches	trunk
trunkCheckins	distro:41eeb00cde52 distro:6a020c712561 distro:23c9fbf5ec68 distro:3b35a601d010 distro:fee2adc2a790
Release01x01Checkins