User Tools
Page Tools
Site Tools
technology:web-access-control
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
technology:web-access-control [2013/09/23 21:08] Pinkgothic created |
technology:web-access-control [2017/11/18 15:34] (current) |
||
---|---|---|---|
Line 10: | Line 10: | ||
* EVICT (the right to kick or ban a user) | * EVICT (the right to kick or ban a user) | ||
* MOLD (the right to reshape the landscape) | * MOLD (the right to reshape the landscape) | ||
+ | * GLOBAL (the right to send Fragment-global messages) | ||
* ROLE (the right to swap places with a Puppet with a predefined role) | * ROLE (the right to swap places with a Puppet with a predefined role) | ||
* QUARANTINE (the right to create a quarantine zone) | * QUARANTINE (the right to create a quarantine zone) | ||
Line 52: | Line 53: | ||
* GRANT | * GRANT | ||
* MOLD | * MOLD | ||
+ | * GLOBAL | ||
Founder: | Founder: | ||
Line 61: | Line 63: | ||
===== Authentication ===== | ===== Authentication ===== | ||
- | Actual user authentication (i.e. determining the identity of a user) varies strongly between servers. Sanctuary (re)identifies users on connection to a Fragment using their hostmask and an automated challenge-response handshake the user needs access to their private key for - and maintains a session for the time the user remains in the Fragment. This is true for [[terminology:Denizen|Denizens]] (which are expected to have a //localhost// hostmask) as well as [[terminology:Citizen|Citizens]]. [[terminology:Puppets:autonomous|Autonomous Puppets]] are free to move between Fragments, but foreign autonomous Puppets are authenticated on connection with Sanctuary as a whole. | + | Actual user authentication (i.e. determining the identity of a user) varies strongly between servers. Sanctuary (re)identifies users on connection to a Fragment using their hostmask and an automated challenge-response handshake the user needs access to their private key for - and maintains a session for the time the user remains in the Fragment. This is true for [[terminology:Denizen|Denizens]] (which are expected to have a //localhost// hostmask) as well as [[terminology:Citizen|Citizens]]. [[terminology:Puppet:autonomous|Autonomous Puppets]] are free to move between Fragments, but foreign autonomous Puppets are authenticated on connection with Sanctuary as a whole. |
{{tag>[work-in-progress]}} | {{tag>[work-in-progress]}} |
technology/web-access-control.1379970539.txt.gz ยท Last modified: 2017/11/18 15:34 (external edit)