On Jul 20, 2009, at 4:17 PM, Tyler Whitney wrote:
> I will be updating this database myself, as well as a few other
> members of our staff that is in the IT team, and perhaps one or two
> others we show how it works and allow them to do it (the management
> itself is PHP based as well) ... the people who are allowed rights
> to the editing of the directory are authenticated by who they are
> logged in as using my current LDAP auth scheme. Which will change if
> I switch over to htaccess.
> The /admin/ folder within the application that allows for editing of
> the mysql database to add/remove users to the directory can have an
> htaccess file too which I will manually edit to allow the 4-5 users
> that will have access to editing the database.
OK, that sound perfect.
Ask SAA for a new unix group, say, rlwebadmin, with you as the owner
Once the group is established, add or delete members via Netid (e.g.,
ksmith qjones mkapoodle) using form at
for your admin directory, edit .htaccess . Change
require valid user ksmith qjones mkapoodle
require group rlwebadmin
Ask SAA to enable guid safe mode for all your directories for group
chmod all other necessary .htaccess files -- the ones you want to be
semi-dynamic -- to 0664, which allows rear/write access to matching
group members. They aren't "publicly writable" -- just writable to the
chgrp on .htaccess files to group rlwebadmin
Now, when someone in group rlwebadmin authenticates via .htaccess to
the admin folder, all scripts inside admin will execute with the UID
of the authenticated user and a guid of rlwebadmin. The admin scripts
will then have write access to all the necessary .htaccess files, and
you scripts will be able to modify these .htaccess files on the fly as
your database updates dictate.
piece of cake.
| Wesley Alan Wright <mailto:[log in to unmask]> |
| Academic Computing Services __0__ |
| Room 407 Lafayette Building / \ | \ |
| University of Vermont \77 |
| Burlington, Vermont 05405-0160 USA. \\ http://www.uvm.edu/skivt-l |
| Voice:802-656-1254 FAX:802-???-???? vv |
| aim:goim?screenname=maddogskideath http://www.uvm.edu/~waw/ |