PmWiki | UserAuth2 / ModuleChoice

This is for the Cookbook.UserAuth2 recipe.

Comparison UserAuth2 vs. AuthUser

	UserAuth2	AuthUser
Specifying permission settings	centralized in admin tool; user-oriented	distributed over attribute pages; page-oriented
Default policy	open for reading	open to what extent?
Pagelists with protection of read-restricted pages	faster[1]	slower
Adhoc protecting pages	requires two operations[2]	requires one operation

[1] In UserAuth2 there will be only one file access for this user (the user's permission record), with which all pages under consideration are checked against. No multiple file load for each page necessary; rather a number of preg_matches are necessary for each page, the number depending on the complexity of the permission derivation hierarchy (number of patrons, group memberships etc.) only.

Note that for generally open sites, one will probably have $EnablePageListProtect disabled, so this point wouldn't matter.

[2] For UserAuth2 the ad-hoc protection of pages requires two steps done by the administrator: (1) closing away the page in the GuestUsers record, and (2) opening the page for the specific user desired. In AuthUser this can be done with one operation: placing an id: password.