I still need to check out the way security is handled in depth, but I when creating a SnipSnap I like the idea to define a zone where the SnipSnap is used.
Intranet Admin Rights
- At the moment all users in our intranet SnipSnap are running with Admin privileges. This makes sense since everybody should be able to do anything anyway. For the moment I will have to tell everybody to logoff once they registered and explicitly give them Admin rights. I would like a preset for this.
- On the other hand I can create a user directly with Admin rights and use the password change trick (i.e. try to log in as that user and then force a password change) to notify them that their account is ready. It would be neat if there were a way to create a new account and send a mail with a nice "initial" password change request.
Protection
- Namespace Security is a nice idea by phobia.
- Another idea would be to simply attach labels to snips (similar to filesystem groups) and then grant specific users to edit snips marked with such a protection label.
Various Stuff
- Changing passwords is definately missing.
- Also, there should be a way to "reset" a password as Admin.
Web Start Demo!Resources
Powered by SnipSnap 1.0b3-uttoxeter 
