Extension:Semantic ACL

The SemanticACL extension allows read and edit restrictions to be set on pages using semantic properties.

Usage
To set restrictions, mark up a page with the appropriate properties.

To set read restrictions, use these properties:

To set edit restrictions (which apply to all other actions), use these ones:

The "main" property ( or  ) can take one or more of these values. With the exception of "public", a user must satisfy all conditions set.
 * — overrides all other values and never denies access.
 * — denies access to users who are not logged in.
 * — denies access to all users who are not whitelisted, either explicitly or by being in a whitelisted group.

The read and edit restrictions have separate whitelists. You can add one or more users or groups to the whitelist using the appropriate properties. Note that the  prefix is mandatory for the single-user whitelist.

Example
These properties, included on a page, would allow only users in the "moderator" group to read the page, and only the user "Chief Moderator" to edit it. Visible to::whitelist Visible to group::moderator

Editable by::whitelist Editable by user::User:Chief Moderator

User rights
Users who have the  user group are never prohibited access by this extension. This is a failsafe to avoid pages becoming permanently uneditable by having an empty whitelist.

By default, administrators (users in the  group) are given this right.