From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-wr1-x42b.google.com (mail-wr1-x42b.google.com [IPv6:2a00:1450:4864:20::42b]) by mail.toke.dk (Postfix) with ESMTPS id 84AA9A9B2CB for ; Mon, 02 Dec 2024 20:56:53 +0100 (CET) Authentication-Results: mail.toke.dk; dkim=pass (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256 header.s=20230601 header.b=RjDgqyRn Received: by mail-wr1-x42b.google.com with SMTP id ffacd0b85a97d-385df8815fcso2106792f8f.1 for ; Mon, 02 Dec 2024 11:56:53 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1733169407; x=1733774207; darn=lists.galene.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=hyiQaTcgzWjYy/GDitgOxrn5zp4C9zH69gjdJ737U7k=; b=RjDgqyRnWqjPFFZMJJ+1H0Q9fttzCqE5jEQbqfSW8sAhX4pcwQm20jGLctwV8fKwl+ 8LmvztYiLT5nZzatiTUCpkyUjriqZqGeej2dKnKMpfv69d+UqTrUG4Luu0uXXv0cjSKb xtWt8Y8WnK+DxFtvoLhxmBN0O2slBUL8/JdGM6C3326PTn2i04n7YJCNdsFDoUMpi6Al 2tQPx2ckm/VPstTyKCsuxA6Ml2szX4peel6MMu4z2Uuy6UMhqbRS3D2I17abaLcYsahK SG6S7Ffw+PjjRY4MZvUxTeWlTvvQcElkZvV+rnTT1OS8UpQOwUMXRq9kOq0nNb5h/WBB R+tg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1733169407; x=1733774207; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=hyiQaTcgzWjYy/GDitgOxrn5zp4C9zH69gjdJ737U7k=; b=cGufpa2UX0+l55cc92ZSKnvz/CZvix89zqHt7QAUi96NnN3E9Dfmg8rcj8/EFO5HIO IxBB2mbLRbkavNv6VI0LYNMQgNOzWgx2cvLluP2QdrazHoN+IfuUYNduo4QxqYh2lUnY IxZ7EofkaYO7QnFAVh1fXzKgCqe1NXLRxCKQ/5p8QtCyP9ZX6PsQ74WUQszcOdHqLctJ pKlR5DXApKRZ9Be3Xny41cfviGXibPzrLEsUiPVo4lueA1ytf1kHIoPN4/QvBEsb8xTJ F8XMOTIzZOqtLmmSUwTWvF/eO8pE10fTdrkhGs/Q7yHFFS6qd5kVm4ueenCBZysxYRaG uAeA== X-Gm-Message-State: AOJu0YwvfvKt0X3CDDFCJfbZ593yFGVNk/h1hERItvzkRWTO5341ZEJB zG+GJd4dS/sg23YgtMuqzCSHwcs6FKs149iQMaU+01Xl2Z8tLo2bwba9QpS1Sj9P77EGKIrT0ik A2R+mhUhwarEMTcqKLkcXP/c/K8zKlmZL X-Gm-Gg: ASbGnctwlrWbzlZfRdIx6SYlHHY34SpxVtT8hkkeLYXYtJqAGEE2/EoaiILv0wM+wLO nHJzgwcF7WTRIo8QD6GPr6dwuNKf52xGiIa/ykstEaCoV7j0Usd0Ymx8imM1IeVos X-Google-Smtp-Source: AGHT+IHlyOtT6Uh5CSmrWYrFfrhSufKIUlbmTkttTXzKdSU//FF8H8bbUi5kbpSCJ8Xhsfz0jSNMAMMTPrWg4ZcNz5Y= X-Received: by 2002:a05:6000:1acc:b0:382:31a2:17fd with SMTP id ffacd0b85a97d-385c6edc89dmr20692033f8f.55.1733169407051; Mon, 02 Dec 2024 11:56:47 -0800 (PST) MIME-Version: 1.0 References: <87iks2jnic.wl-jch@irif.fr> <87plm9gaq6.wl-jch@irif.fr> In-Reply-To: <87plm9gaq6.wl-jch@irif.fr> From: Marty Betz Date: Mon, 2 Dec 2024 11:56:36 -0800 Message-ID: To: Juliusz Chroboczek Content-Type: multipart/alternative; boundary="000000000000d7d3f406284ef245" Message-ID-Hash: 2GEYGVJZRXO6NKRQKA7QREFTRAMLGK7D X-Message-ID-Hash: 2GEYGVJZRXO6NKRQKA7QREFTRAMLGK7D X-MailFrom: martybetz@gmail.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; loop; banned-address; emergency; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: galene@lists.galene.org X-Mailman-Version: 3.3.10 Precedence: list Subject: [Galene] Re: Admin group creation List-Id: =?utf-8?q?Gal=C3=A8ne_videoconferencing_server_discussion_list?= Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: --000000000000d7d3f406284ef245 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Thank you for the detailed information. yes, I did have the wrong mental model. > The new syntax is more verbose by design, so that you don't open your > server by mistake. I like the new syntax because it is more consistent and has fewer shortcuts with unexpected results. -Marty On Mon, Dec 2, 2024 at 11:12=E2=80=AFAM Juliusz Chroboczek wr= ote: > > On further investigation, it seems the group config parameters > "presenter" and > > "wildcard-user" interact in a non-trivial way. > > There are two syntaxes for Galene group definitions: the old syntax, base= d > on pattern-matching, used in Galene 0.8 and earlier; and the new syntax, > based on a straightforward map from usernames to user descriptions, which > was introduced in Galene 0.9. > > Galene still parses the old syntax for compatibility reasons. You're > mixing the two syntaxes, which is confusing. Please don't do that. The > following fields are now deprecated: > > - "op", "presenter" and "other", replaced by "users"; > - "allow-subgroups" and "allow-anonymous", no longer supported. > > > Having "presenter":[{}] seems to act like a wildcard user authenticator= , > > Yes. That's the old syntax for what is now > > "wildcard-user": {"password":{"type":"wildcard"}, > "permissions":"presenter"} > > The new syntax is more verbose by design, so that you don't open your > server by mistake. > > > unless another "wildcard-user" field is present. > > If you mix the two syntaxes in contradictory manners, the new syntax take= s > precedence over the old one. There should be a warning in the log. > > -- Juliusz > > --000000000000d7d3f406284ef245 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Thank you for the detailed=C2=A0information. yes, I did ha= ve the wrong mental model.

> The new syntax is more verbose= by design, so that you don't open your
> server by mistake.
I like the=C2=A0new syntax=C2=A0because it is more consist= ent and has fewer shortcuts with unexpected=C2=A0results.
-= Marty


On Mon, Dec 2, 2024 at 11:1= 2=E2=80=AFAM Juliusz Chroboczek <jch@irif= .fr> wrote:
> On further investigation, it seems the group config parameters &quo= t;presenter" and
> "wildcard-user" interact in a non-trivial way.

There are two syntaxes for Galene group definitions: the old syntax, based<= br> on pattern-matching, used in Galene 0.8 and earlier; and the new syntax, based on a straightforward map from usernames to user descriptions, which was introduced in Galene 0.9.

Galene still parses the old syntax for compatibility reasons.=C2=A0 You'= ;re
mixing the two syntaxes, which is confusing.=C2=A0 Please don't do that= .=C2=A0 The
following fields are now deprecated:

=C2=A0 - "op", "presenter" and "other", repla= ced by "users";
=C2=A0 - "allow-subgroups" and "allow-anonymous", no lo= nger supported.

> Having "presenter":[{}] seems to act like a wildcard user au= thenticator,

Yes.=C2=A0 That's the old syntax for what is now

=C2=A0 =C2=A0"wildcard-user": {"password":{"type&q= uot;:"wildcard"}, "permissions":"presenter"}<= br>
The new syntax is more verbose by design, so that you don't open your server by mistake.

> unless another "wildcard-user" field is present.

If you mix the two syntaxes in contradictory manners, the new syntax takes<= br> precedence over the old one.=C2=A0 There should be a warning in the log.
-- Juliusz

--000000000000d7d3f406284ef245--