Currently, when new things are created, nobody has (even read) access except the creator and the administrator until explicitly set otherwise. This seems a bit paranoid and prone to reduce sharing and usefulness via laziness. On the other hand, important sensitive data can never be in a state where unauthorized individuals can gain access to it, even for a moment. It seems to me that eventually specifying some permission levels should to be baked into the creation of maps and uploading of data if we want to avoid both of these. Perhaps a friendly default setting that allows sharing, with the option of explicitly setting paranoid permission levels. Which of these do we care about most in the short term? Have a friendlier default? Leave it paranoid? - Luke
> > It seems to me that eventually specifying some permission levels should to > be baked into the creation of maps and uploading of data if we want to avoid > both of these. Perhaps a friendly default setting that allows sharing, with > the option of explicitly setting paranoid permission levels. > +1 > Which of these do we care about most in the short term? Have a friendlier > default? Leave it paranoid? > +1 for friendlier default. -- Sebastian Benthall OpenGeo - http://opengeo.org
On Tue, Jul 20, 2010 at 3:00 PM, Sebastian Benthall <seb@opengeo.org> wrote: > It seems to me that eventually specifying some permission levels should to >> be baked into the creation of maps and uploading of data if we want to avoid >> both of these. Perhaps a friendly default setting that allows sharing, with >> the option of explicitly setting paranoid permission levels. >> > > +1 > To get it on the record: http://projects.opengeo.org/CAPRA/ticket/649 -- Sebastian Benthall OpenGeo - http://opengeo.org
I'm not sure what in particular we want for the defaults -- my guess is something like: Layers: Anonymous: Read All Registered: Read (?) Owner: Administrative Maps: Anonymous: Read All Registered: Write Owner: Administrative I'm guessing because of the participatory map thing that we want all registered users to be able to modify a new map by default -- I'm less clear on whether this goes for data. It's very easy to switch if anyone has particular feelings about this. - Luke On Tue, Jul 20, 2010 at 3:00 PM, Sebastian Benthall <seb@opengeo.org> wrote: > It seems to me that eventually specifying some permission levels should to >> be baked into the creation of maps and uploading of data if we want to avoid >> both of these. Perhaps a friendly default setting that allows sharing, with >> the option of explicitly setting paranoid permission levels. >> > > +1 > > >> Which of these do we care about most in the short term? Have a friendlier >> default? Leave it paranoid? >> > > +1 for friendlier default. > > -- > Sebastian Benthall > OpenGeo - http://opengeo.org > >
oops I see tickets for this :) On Fri, Jul 23, 2010 at 10:49 AM, Luke Tucker <ltucker@openplans.org> wrote: > I'm not sure what in particular we want for the defaults -- my guess is > something like: > > Layers: > Anonymous: Read > All Registered: Read (?) > Owner: Administrative > > Maps: > Anonymous: Read > All Registered: Write > Owner: Administrative > > I'm guessing because of the participatory map thing that we want all > registered users to be able to modify a new map by default -- I'm less clear > on whether this goes for data. > > It's very easy to switch if anyone has particular feelings about this. > > - Luke > > On Tue, Jul 20, 2010 at 3:00 PM, Sebastian Benthall <seb@opengeo.org>wrote: > >> It seems to me that eventually specifying some permission levels should to >>> be baked into the creation of maps and uploading of data if we want to avoid >>> both of these. Perhaps a friendly default setting that allows sharing, with >>> the option of explicitly setting paranoid permission levels. >>> >> >> +1 >> >> >>> Which of these do we care about most in the short term? Have a friendlier >>> default? Leave it paranoid? >>> >> >> +1 for friendlier default. >> >> -- >> Sebastian Benthall >> OpenGeo - http://opengeo.org >> >> >