Problem With post_via_blogger_API Permission -w.bloggar

Thread: Problem With post_via_blogger_API Permission -w.bloggar

Search this list only Search all lists
Problem With post_via_blogger_API Permission -w.bloggar
	2006-09-26 16:01:59
> > Have you tried giving them the following permissions: > > > > post_via_blogger_api > > post_via_metaweblog_api > > Aha! Yes, in my setup both permissions seem to necessary, for whatever > reason. BTW, I just discovered that with these permissions alone, every blogger on a multi-user blog can edit/delete everybody's postings via w.bloggar. With this particular blog I'm ok with just warning my bloggers to be careful, but I can imagine situations where this would give me more cause to be nervous. Is this an API thing, a w.bloggar thing, or a Blojsom thing? Paul -- Paul Birch pbirchrichmond.edu Computer Services Librarian University of Richmond School of Law ------------------------------------------------------------ ------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default. php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Blojsom-users mailing list Blojsom-userslists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/blojsom-u sers

Problem With post_via_blogger_API Permission -w.bloggar
	2006-09-26 16:43:18
I guess a blojsom thing. The API methods don't check post author (i.e. Username) against the incoming username. On 9/26/06 12:01 PM, "Birch, Paul" <pbirchrichmond.edu> wrote: >>> Have you tried giving them the following permissions: >>> >>> post_via_blogger_api >>> post_via_metaweblog_api >> >> Aha! Yes, in my setup both permissions seem to necessary, for whatever >> reason. > > BTW, I just discovered that with these permissions alone, every blogger > on a multi-user blog can edit/delete everybody's postings via w.bloggar. > With this particular blog I'm ok with just warning my bloggers to be > careful, but I can imagine situations where this would give me more > cause to be nervous. Is this an API thing, a w.bloggar thing, or a > Blojsom thing? > > Paul > > > -- > Paul Birch > pbirchrichmond.edu > Computer Services Librarian > University of Richmond School of Law > > > ------------------------------------------------------------ ------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys -- and earn cash > http://www.techsay.com/default. php?page=join.php&p=sourceforge&CID=DEVDEV > _______________________________________________ > Blojsom-users mailing list > Blojsom-userslists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/blojsom-u sers -- David Czarnecki http://www.blojsom.com/b log/ \| http://blojsom.sf.net ------------------------------------------------------------ ------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default. php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Blojsom-users mailing list Blojsom-userslists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/blojsom-u sers

[1-2]

about | contact Other archives ( Real Estate discussion Medical topics )