Users and Groups
Account creation for MIT Community members
- A basic account is automatically created when an MIT certificate-bearing or Touchstone authenticated user first logs in to the service. When a new user attempts to access a protected site, that user will be propmted to log in. A new user can also log in by explicitly clicking the 'Log In' link.
Non-MIT ' guest' users
- Non MIT people must create 'collaboration accounts' in MIT's Touchstone single sign-on service. Once such an account has been created, a basic guest-level wiki account will be auto created the first time the collaboration-account bearing user logs into wikis.mit.edu.
A space administrator can then give the person an appropriate level of space permissions by specifying the person's touchstonenetwork.net identity on the space's permissions page.
Note that a collaboration account user's username is not the same as that person's email address, but rather takes the form..
identity_n@touchstonenetwork.net
..where identity is generated from the person's email address, and n takes care of potential duplicates.
For example, a user who has registered for a Collaboration account using the email address..
joe.schmoe@flub.edu
..will have a touchstone collaboration identity of joe.schmoe_1@touchstonenetwork.net.
A user who registers subsequently using email address..
joe.schmoe@something.com \
..will have a touchstone collaboration identity of joe.schmoe_2@touchstonenetwork.net.
*The Touchstone collaboration identy is used as the person's username in wikis.mit.edu
If you need help in determining the Touchstone collaboration identity of a user, contact wiki-support@mit.edu.
Wiki Group Membership
- Wiki groups map to Moira groups and Stellar class membership lists. In order to add a user to a wiki group, add that user to the proper Moira group or Stellar class group.
- Any Moira group can be associated with a space. A space administrator can asociate any Moira group with his/her space. A periodic (several times a day) feed synchronizes internal wiki groups with their corresponding Moira groups. Non-MIT users can be added to the Moira group as type STRING.
The Stellar feed is more infrequent (generally twice a day). - It is not necessary to use Moira groups to control acces to wiki spaces. Access to some wiki spaces can be controlled at the individual user level as well.
- If a Touchstone collaboration user is detected in the Moira feed, a basic account will be created automatically.
- All user accounts are included in a base-level group named confluence-users. This group can not be modified via Moira.
Default Groups
- confluence-users contains all people with Confluence accounts – both MIT and non-MIT
- mit-users contains all people with MIT kerberos accounts
- anonymous a pseudo group equivalent to everyone in the world without an account, used for the purpose of setting a space to be world-accessible.
Managing Groups
Creating and managing Moira lists for wiki access and administration
The recommended practice is to use at least two lists for your wiki space. One list should contain regular users of the space, and the others should contain space administrators. Members of the MIT community can create Moira lists at:
http://wserv.mit.edu/lc/
When creating lists..
- Create "traditional" Moira lists, not Mailman lists
- You, as space administrator, should be a member and administrator of any Moira list you create for use in your wiki space.
- All Moira lists must also be AFS groups ("traditional" groups). This is important. Be sure to check the appropriate checkbox.
- Create an admin list for the space. Include yourself in it, and make it a self-administered list (set the listowner to be the list itself).
e.g. mygroup-wiki-admin - Create the user-level list for the space. Make the owner of this list admin group you just created.
e.g. mygroup-wiki - Non-MIT users should be added to Moira lists as type 'string'.
- Manage your new Moira list at:
https://web.mit.edu/moira/
Using Existing Moira lists and Stellar class lists.
If you have existing lists you'd like to use for wiki access, you can do so.
Existing Lists..
- Be sure that the lists are AFS groups.
- The Registrar's office auto-populates Moira lists corresponding to the class membership. These lists can be useful if no Stellar site exists for a class. Contact the Accounts group (accounts@mit.edu) for more information.
- Stellar class lists can be used for access to a class wiki space. Contact class-wiki-support@mit.edu for more information.
Associating your group(s) in Confluence
A periodic feed populates Confluence with the groups you have created in Moira. Once your groups have been picked up by the feed, space administrators can use them to control access to your space within Confluence.
In your wiki space:
- Go to Browse Space -> Space Admin -> Permissions
- Click edit permissions and add your groups under the 'Groups' heading. Modify permissions as appropriate.