Mercurial > p > roundup > code
view website/www/code.txt @ 4902:a403c29ffaf9
Security fix default user permissions
Default user permissions should not include all user attributes. We now
limit this to the username, realname and some further attributes
depending on the schema. Note that we no longer include the email
addresses, depending on your installation you may want to further
restrict this or add some attributes like ``address`` and
``alternate_addresses``.
| author | Ralf Schlatterbeck <rsc@runtux.com> |
|---|---|
| date | Fri, 04 Jul 2014 15:32:28 +0200 |
| parents | b77ef61a844e |
| children | 98344ba5e157 |
line wrap: on
line source
Code ==== Changelog ---------- The changelog is available as `CHANGES.txt in the SCM repository <https://sourceforge.net/p/roundup/code/ci/tip/tree/CHANGES.txt>`_. Browse ------ `Browse the repository <https://sourceforge.net/p/roundup/code/>`_. Read-only Access ---------------- Read-only repository access is provided through :: hg clone http://hg.code.sf.net/p/roundup/code roundup-code The URL for the webinterface works, too, but you will see messages about redirects to the URL shown here. Read-write Access ----------------- The read/write access uses your SourceForge.net ssh password or ssh key to authorize your access. (See `SF's site documentation on Mercurial access <https://sourceforge.net/p/forge/documentation/Mercurial/>`_) :: hg clone ssh://USERNAME@hg.code.sf.net/p/roundup/code roundup-code Of course a roundup developer must have granted you write access first - ask for it on the roundup-devel list.