Last modified: 2012-03-10 11:37:44 UTC
option to allow only users with edit rights to vote, or only logged-in user, or... filed for tracking
enhancement
Rephrasing bug summary. The extension should register a new user right and restrict voting to users with that user right. Whether a new user group is created or whether anyone has this by default ('*', or 'autoconfirmed' or 'sysop' or 'user' etc.) is up to the local wiki to configure and shouldn't be part of the extension.
(In reply to comment #2) > Whether a new user group is created or whether anyone has this by default ('*', > or 'autoconfirmed' or 'sysop' or 'user' etc.) is up to the local wiki to > configure and shouldn't be part of the extension. I will add (similar to what is in OpenID.php) # new user rights $wgAvailableRights[] = 'ajaxpoll-vote'; $wgAvailableRights[] = 'ajaxpoll-admin';
Yes, something like that should be added to the extension. And then probably a few more lines of code in another place to enforces these user rights.
# new user rights $wgAvailableRights[] = 'ajaxpoll-vote'; $wgAvailableRights[] = 'ajaxpoll-admin'; # uncomment to allow users to read access the dashboard # default: everyone can vote # $wgGroupPermissions['user']['ajaxpoll-vote'] = true; # allow sysops to adminstrate the polls $wgGroupPermissions['sysop']['ajaxpoll-admin'] = true;
implemented in r113554
(In reply to comment #6) must use r113555 (r113554 lacks the server-side check)
