Commit Graph

5 Commits (26878fb4c74358adff9fd6921d062eb940721648)

Author SHA1 Message Date
Simon McVittie 2afb0dd663 Do not directly enable emailauth by default, only indirectly via openid
This avoids nasty surprises on upgrade if a site is using httpauth,
or passwordauth with an account_creation_password, and relying on
only a select group of users being able to edit the site. We can revisit
this for ikiwiki 4.
2015-05-27 08:52:01 +01:00
Joey Hess 2a64eea0f5 comments 2015-05-14 11:02:57 -04:00
Joey Hess 85a529db3d passwordauth: Don't allow registering accounts that look like openids.
Also prohibit @ in account names, in case the file regexp was relaxed to
allow it.
2015-05-14 10:57:56 -04:00
https://id.koumbit.net/anarcat 7ef44d84d6 acls and expectations 2015-05-14 08:22:29 -04:00
smcv 42b3b1f63a proposal for making emailauth not force username == email address 2015-05-14 05:49:45 -04:00