We don't know if login is necessary. At the moment we haven't had any security issues. Does anybody else think that we should implement login security?
If you are thinking of running a FitNesse server at your own site, and you are concerned about security, It seems to me that you could:
If enough people want login security, we'll certainly implement it.
This is a great tool. However, in our environment (big company) we need to control logging + adding a footer indicating who is editing the pages. (MadDog).
I agreed with MadDog. Sercurity is very important is a business envirnment, even in the reqirement gathering and acceptance test writing phrase. (TM)
I'm a TWiki addict (perl implementation)! TWiki's philosophy is to handle this outside wiki with SSL. I don't know the implications for the FitNesse web server. TWiki, anon by default, also supports LoginForIdentification meaning you are TWikiGuest while browsing, but are prompted for a registered username when you change a page. This 2nd version is to get a name into version control (yeah, TWiki sits on top of RCS).
OMG there are major differences between WikiInstructions and TWikiTextFormattingRules... I don't care, I love them both!
-- Dhominator
[ User Guide] [.FrontPage] [.RecentChanges]
If you are thinking of running a FitNesse server at your own site, and you are concerned about security, It seems to me that you could:
- Give it a port number that nobody knew about.
- Put it behind a sonic wall.
- Keep it off the internet.
If enough people want login security, we'll certainly implement it.
This is a great tool. However, in our environment (big company) we need to control logging + adding a footer indicating who is editing the pages. (MadDog).
I agreed with MadDog. Sercurity is very important is a business envirnment, even in the reqirement gathering and acceptance test writing phrase. (TM)
I'm a TWiki addict (perl implementation)! TWiki's philosophy is to handle this outside wiki with SSL. I don't know the implications for the FitNesse web server. TWiki, anon by default, also supports LoginForIdentification meaning you are TWikiGuest while browsing, but are prompted for a registered username when you change a page. This 2nd version is to get a name into version control (yeah, TWiki sits on top of RCS).
OMG there are major differences between WikiInstructions and TWikiTextFormattingRules... I don't care, I love them both!
-- Dhominator
[ User Guide] [.FrontPage] [.RecentChanges]