authors PmWiki has built-in support for password-protecting various areas of the wiki site. Authors generally want to be able to apply passwords to individual pages or to wiki groups. Wiki Administrators can apply passwords to individual pages, to wiki groups, or to the entire site. As with any access control system, the password protection mechanisms described here are only a small part of overall system and wiki security.

## As an author editing pages...

An author will generally set 3 types of passwords:

1. to control who can see a page or group, use read passwords
2. to control who can edit a page or group, use edit passwords
3. to control who can alter the passwords used to protect a page or group, use attr passwords

To set a password on an individual wiki page, add ?action=attr to the page's URL (address) to access its attributes. Using the form on the attributes page, you can set or clear the read, edit, or attr passwords on the page. In the form you enter the passwords as cleartext; Pm Wiki encrypts them for you automatically when it stores them.

• Leaving a field blank will leave the attribute unchanged.
• To remove a password from a page (reverting back to the group's or site's default), enter "clear".
• To indicate that the page can be edited even if a group or site password is set, enter "@nopass".
• To lock a page for everybody but the admin, enter "@lock".
• To assign the site's site-wide edit-password to the read, edit, or attr password for the page, enter "@_site_edit".

To set a password on a wiki group is slightly more difficult -- you just set the passwords on a special page in each group called "GroupAttributes". First, you can get to the attributes page for GroupAttributes by entering a URL (address) like http://www.example.com/pmwiki.php?n=GroupName.GroupAttributes?action=attr. Then, using the form on the attributes page, you can set or clear the read, edit, or attr passwords for the entire group. In the form you enter the passwords as cleartext; Pm Wiki encrypts them for you automatically.

• To remove a password from a group (reverting back to the site's default), enter "clear".
• To indicate that the group can be edited even if a site password is set, enter "@nopass".
• To lock a group for everybody but the admin, enter "@lock".

Set new read password: alpha beta


This says that either "alpha" or "beta" can be used to read pages, but only "beta" may edit. Since Pm Wiki checks the passwords you've entered since the browser has been opened, entering a read password that is also a write password allows both reading and writing.

You can set passwords on pages and groups exactly as described above for authors. You can also:

1. set site-wide passwords for pages and groups that do not have passwords
2. use attr passwords to control who is able to set passwords on pages
3. use upload passwords to control access to the file upload capabilities (if uploads are enabled)
4. use an admin password to override the passwords set for any individual page or group

In Pm Wiki, page passwords override group passwords, group passwords override the default passwords, and the admin password overrides all passwords. This gives a great deal of flexibility in controlling access to wiki pages in Pm Wiki.

    $DefaultPasswords['edit'] = crypt('edit_password');  For more information about the password options that are available only to administrators, see PasswordsAdmin. How can I create private groups for users, so that each user can edit pages in their group, but no one else (other than the admin) can? Administrators can use the AuthUser recipe and add the following few lines to their local/config.php file to set this up: $group = Fmt Page Name('$Group',$pagename);     $DefaultPasswords['edit'] = 'id:'.$group;     include_once("\$FarmD/scripts/authuser.php");