Mirroristas/CommunitySolidServer
2
0
Fork 0
mirror of https://github.com/CommunitySolidServer/CommunitySolidServer.git synced 2024-10-03 14:55:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: Add more warning to root ACLs.

Browse Source
This commit is contained in:
Ruben Verborgh 2021-10-18 14:59:42 +01:00
parent d81b9ef2a4
commit 93b71eb726
3 changed files with 25 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
templates/root/empty/.acl
View File

@ -1,7 +1,18 @@
# Root ACL resource generated by the Community Server to allow public access # WARNING: DO NOT USE UNMODIFIED UNLESS FOR TESTING PURPOSES.
# WHEN IN DOUBT, DELETE THIS DOCUMENT.
#
# This root ACL resource allows unrestricted public access to all documents and subcontainers.
#
# This document was automatically generated by the Community Solid Server
# because the "Expose a public root Pod" option was selected during setup,
# or because setup has been bypassed.
#
# We strongly suggest to edit this document such that it restricts permissions.
@prefix acl: <http://www.w3.org/ns/auth/acl#>. @prefix acl: <http://www.w3.org/ns/auth/acl#>.
@prefix foaf: <http://xmlns.com/foaf/0.1/>. @prefix foaf: <http://xmlns.com/foaf/0.1/>.
# Give all agents Read, Write, and Control permissions on everything
<#authorization> <#authorization>
a acl:Authorization; a acl:Authorization;
acl:agentClass foaf:Agent; acl:agentClass foaf:Agent;

13
templates/root/prefilled/.acl
View File

@ -1,7 +1,18 @@
# Root ACL resource generated by the Community Server to allow public access # WARNING: DO NOT USE UNMODIFIED UNLESS FOR TESTING PURPOSES.
# WHEN IN DOUBT, DELETE THIS DOCUMENT.
#
# This root ACL resource allows unrestricted public access to all documents and subcontainers.
#
# This document was automatically generated by the Community Solid Server
# because the "Expose a public root Pod" option was selected during setup,
# or because setup has been bypassed.
#
# We strongly suggest to edit this document such that it restricts permissions.
@prefix acl: <http://www.w3.org/ns/auth/acl#>. @prefix acl: <http://www.w3.org/ns/auth/acl#>.
@prefix foaf: <http://xmlns.com/foaf/0.1/>. @prefix foaf: <http://xmlns.com/foaf/0.1/>.
# Give all agents Read, Write, and Control permissions on everything
<#authorization> <#authorization>
a acl:Authorization; a acl:Authorization;
acl:agentClass foaf:Agent; acl:agentClass foaf:Agent;

2
templates/setup/response.html.ejs
View File

@ -9,7 +9,7 @@
<% if (initialize && !registration) { %> <% if (initialize && !registration) { %>
<h2>Root Pod</h2> <h2>Root Pod</h2>
<p> <p>
<strong>The root Pod is publicly accessible.</strong> <strong>Warning: the root Pod is publicly accessible.</strong>
<br> <br>
Prevent public write and control access to the root Prevent public write and control access to the root
by modifying its <a href=".acl">ACL document</a>. by modifying its <a href=".acl">ACL document</a>.