We are holding off, until other tasks in T15000 are complete.

When changes are made please document what all they end up being.

So I edited policy.allow-public and set it to true in the DB.

And then proceeded to update the policies of various apps so that they can be accesses without login. Participating still require to be logged in.

Changes:

• differential: default view policy: public
• diffusion: default view policy: public and default push policy; blessed committers
• maniphest: default view policy: public and default edit policy: task author or trusted contributors.
• project: default view policy: public
• paste: default view policy; public
• countdown: default view policy; public

I haven't touched other app, because I'm not sure what we want to do with them. these were fairly obvious IMO, so I went for it.

In T15007#182, @Matthew wrote:

We are holding off, until other tasks in T15000 are complete.

It's on a subdomain that isn't listed anywhere and registration require approval, so that shouldn't be a problem.

In T15007#191, @deadalnix wrote:

In T15007#182, @Matthew wrote:

We are holding off, until other tasks in T15000 are complete.

It's on a subdomain that isn't listed anywhere and registration require approval, so that shouldn't be a problem.

Fair enough!

Also, S1 isn't public, contrary to what the name says, so this effectively just changes the error message at the moment.

S1 has been adjusted (the option didn't exist until the switch you flipped was active). I've also adjusted all tasks (per-object policies) and the dashboard panels. I will make a pass at the subprojects unless you want to go for it.

err, why do we need Spaces?

In T15007#209, @avivey wrote:

err, why do we need Spaces?

S2 is where security issues live.