Category:Page specific read access extensions/de-formal
 | MediaWiki was not designed to support per-page or partial-page access restrictions. If you require this level of control, you are strongly advised to use a content management system that supports it natively.
Patches or third-party extensions claiming to provide access control, when in use with MediaWiki, may not work in all cases, potentially exposing confidential data. Use them at your own risk. Neither the MediaWiki developers nor the Wikimedia Foundation are responsible for any data leaks that may result. This message is added to all extensions of this nature and may not reflect the actual security status of this extension. For more information, see Security issues with authorization extensions. |
 | Diese Seite ist veraltet. |
The Page specific read access extensions category contains various extensions that attempt to restrict a user's ability ro read specific pages based on the namespace, category links, page content, and/or title patterns. Before installing one of these extensions, users should be aware that such extensions are likely to exhibit three significant problems:
- caching problems: MediaWiki's page caching facilities do not currently support rights-specific caching. That means MediaWiki caches one versions of a page and then serves that page to everyone without rechecking to see if the next user has the proper rights. Any extension that tries to exclude or hide part of a page based on user rights is likely to result in performance declines (if caching is turned off) and/or security leaks when a page cached for a user with higher rights is later viewed by a user with lesser rights.
- multiple exit paths: Page content has many exit paths in MediaWiki: direct page views, excerpts inserted into search results, special pages, RSS feeds, and numerous extensions that read directly from the MediaWiki database. There is no one exit path that either the MediaWiki core or its extensions rely on. Hence it is virtually impossible for any extension to provide full security.
- system security: Content management security is inseparable from overall system security. The default MediaWiki configuration places database passwords in plain text on a file located on the same server as the MediaWiki installation. There is no attempt to secure the host web server or underlying database. If the underlying system is insecure, any extension added on top of that system is also insecure.
| AccessControl | Lockdown | NSFileRepo | PageOwnership | PagePermissions | Semantic ACL | |
|---|---|---|---|---|---|---|
| Status | stable | stable | stable | stable | stable | unmaintained |
| Works with caching | Ja | Ja | Ja | Ja | Ja | Nein |
| Works with MediaWiki groups | Ja | Ja | Ja | Ja | Nein (user based) | Ja |
| Page-based access control | Ja | Nein | Nein | Ja | Ja | Ja |
| Namespace-based access control | Ja | Ja | Ja | Ja | Nein | Nein |
| Add ACL by editing page | Ja | Nein | Nein | Nein | Nein | Ja |
| Add ACL via special page | Nein | Nein | Nein | Ja | Ja (page action) | Nein |
| MediaWiki version supported | 1.34+ | 1.31+ | 1.27, 1.35 | 1.35+ | 1.38+ | 1.38+ |
| Handles transclusion | ? | $wgNonincludableNamespaces | $wgNonincludableNamespaces | Ja | ? | Ja |
| Handles preview | ? | $wgNonincludableNamespaces | $wgNonincludableNamespaces | ? | ? | Ja |
| Handles raw | ? | Ja | Ja | ? | ? | Ja |
| Handles search | ? | partial (title listed, but no content) | partial (title listed, but no content) | partial (title listed, but no content) | ? | Ja |
| Handles export | ? | Ja | Ja | Ja | ? | Ja |
| Handles rss/atom | ? | partial (title listed, but no content) | partial (title listed, but no content) | ? | ? | ? |
| Handles recent changes | ? | partial (title listed, but no content) | partial (title listed, but no content) | RecentChanges special page can be forbidden | ? | Nein |
See also
Pages in category "Page specific read access extensions/de-formal"
This category contains only the following page.