Is it somehow possible to password protect the whole wiki from viewing? And if so, how? I could only find that you can prevent editing, but not if you could prevent viewing the wiki itself.
Is it somehow possible to password protect the whole wiki from viewing? And if so, how? I could only find that you can prevent editing, but not if you could prevent viewing the wiki itself.
ikiwiki is a wiki compiler (or a static site generator if you prefer): when it builds your wiki, the result is static HTML. When a visitor views a page, no ikiwiki code is running.
If you want viewing to be restricted, you need to configure your web server (Apache or lighttpd or nginx or similar) to restrict it. For example, if your web server is Apache, this page on Apache access control might help.
If we are talking about configuring the HTTPD to use HTTP basic auth, the UI for HTTP Basic authentication is not great; it is not well supported on mobile devices; it's not well managed by browsers which can remember login credentials and it's not well supported by password managers. Most serious web applications do not use it and instead have their own bespoke session management stuff. Indeed Ikiwiki already has machinery for logins and sessions (I've just completed it on ikiwiki.info to post this comment). So I still think it would be nice to have it necessary to log in to view some, or all, pages in some circumstances.
Of course for HTTPD-mediated login, it doesn't have to be HTTP Basic, but not many users will have the skills or infrastructure to set up something like Shibboleth for their ikiwikis.
To some extent this dovetails with another wishlist item of mine, which is the ability to generate a CGI-only ikiwiki. This is useful if you have an existing ikiwiki which is large, and you want to run a dev or test one in parallel, but don't want to share the src dir, and don't want to have a second git clone of the material knocking around. -- jon