User Tools
Page Tools
Site Tools
technology:web-access-control
Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
|
technology:web-access-control [2013/09/23 21:08] Pinkgothic created |
technology:web-access-control [2017/11/18 15:34] (current) |
||
|---|---|---|---|
| Line 10: | Line 10: | ||
| * EVICT (the right to kick or ban a user) | * EVICT (the right to kick or ban a user) | ||
| * MOLD (the right to reshape the landscape) | * MOLD (the right to reshape the landscape) | ||
| + | * GLOBAL (the right to send Fragment-global messages) | ||
| * ROLE (the right to swap places with a Puppet with a predefined role) | * ROLE (the right to swap places with a Puppet with a predefined role) | ||
| * QUARANTINE (the right to create a quarantine zone) | * QUARANTINE (the right to create a quarantine zone) | ||
| Line 52: | Line 53: | ||
| * GRANT | * GRANT | ||
| * MOLD | * MOLD | ||
| + | * GLOBAL | ||
| Founder: | Founder: | ||
| Line 61: | Line 63: | ||
| ===== Authentication ===== | ===== Authentication ===== | ||
| - | Actual user authentication (i.e. determining the identity of a user) varies strongly between servers. Sanctuary (re)identifies users on connection to a Fragment using their hostmask and an automated challenge-response handshake the user needs access to their private key for - and maintains a session for the time the user remains in the Fragment. This is true for [[terminology:Denizen|Denizens]] (which are expected to have a //localhost// hostmask) as well as [[terminology:Citizen|Citizens]]. [[terminology:Puppets:autonomous|Autonomous Puppets]] are free to move between Fragments, but foreign autonomous Puppets are authenticated on connection with Sanctuary as a whole. | + | Actual user authentication (i.e. determining the identity of a user) varies strongly between servers. Sanctuary (re)identifies users on connection to a Fragment using their hostmask and an automated challenge-response handshake the user needs access to their private key for - and maintains a session for the time the user remains in the Fragment. This is true for [[terminology:Denizen|Denizens]] (which are expected to have a //localhost// hostmask) as well as [[terminology:Citizen|Citizens]]. [[terminology:Puppet:autonomous|Autonomous Puppets]] are free to move between Fragments, but foreign autonomous Puppets are authenticated on connection with Sanctuary as a whole. |
| {{tag>[work-in-progress]}} | {{tag>[work-in-progress]}} | ||
technology/web-access-control.1379970539.txt.gz · Last modified: 2017/11/18 15:34 (external edit)
