http://dev.tikiwiki.org/bug1291 points out that the wiki cache contains
what was displayed based upon the privileges of whomever created the
cached copy. An anonymous reader gets presented with nonfunctional edit
and delete icons if the cache was created by an Admin or Editor user.
I have a fix to the bug which simply restricts the caching to anonymous
users. This is a wiki parse cache with a maximum time of 2 hours, so is
of limited benefit except for a busy site with many readers within 2
hours.
I'd like to commit this one-line change (there are a few lines of
comments) to solve the permission leakage problem and close the bug.
Someone can extend the concept if they want more features, such as
configuring which user group gets cached or rewriting the caching
mechanism to handle more situations.
Background: Apparently this is only a cache of the parsing of Wiki pages.
In tiki-index.php is a cache test before the code which parses wiki
content. If there is an unexpired cache entry, that is displayed instead
of parsing the page. If there is no cache entry, the page is parsed and
the result is stored in a field in the page's database row. This is only
a wiki parsing cache and is separate from the (apparently unused) Smarty
cache and whatever caching one's web server and browser are doing.
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer's challenge
Build the coolest Linux based applications with Moblin SDK & win great prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/_______________________________________________
Tikiwiki-devel mailing list
Tikiwiki-devel@...
https://lists.sourceforge.net/lists/listinfo/tikiwiki-devel
