NTP users are strongly urged to take immediate action to ensure that their NTP daemons are not susceptible to being used in distributed denial-of-service (DDoS) attacks. Please also take this opportunity to defeat denial-of-service attacks by implementing Ingress and Egress filtering through BCP38.
ntp-4.2.8p15 was released on 23 June 2020. It addresses 1 medium-severity security issue in ntpd, and provides 13 non-security bugfixes over 4.2.8p13.
Are you using Autokey in production? If so, please contact Harlan - he's got some questions for you.
Approval Plugin for ISO 9000 compliant quality systems
TWiki benefits from the fact that every user can modify a topic instantly without restrictions. However, sometimes it is desirable that one can control the content of the TWiki. In particular, if TWiki is used in a Quality System as a document server complaint with ISO 9000 (e.g. for the quality manual), it is essential that these documents are approved by the management before they can be applied by the employees.
This plugin enables you to establish a complex document approval process for single topics or for the entire web in order to control the content in your TWiki. If a topic is under such document control, you can define a set of states
for this topic (e.g. "under revision", "waiting for approval", "approved") and transitions
(e.g. "revise", "approve") between these states. Furthermore, you can define users or user groups which are permitted to perform specific transistions. In this way, you can control, for instance, who is allowed to "approve" a topic and who is not.
This plugin is motivated by the WorkFlowAddOn
plugin. It differs from the WorkFlowAddOn
plugin in following points:
- it does not require any patch of the TWiki source code; you just need to install the plugin,
- the state of a topic is not stored as a form, that means you can not define a different form for each state (but you can define one form which is kept through all states),
- for each state you can define whether a user is permitted to edit the text of the topic,
- changing the state does not require editing the topic,
- messages can be displayed in the topic indicating the current state of the document, and
- the plugin keeps track when the document was in a specific state last time (e.g. which version is the last "approved" version).
This plugin works already for most cases but is still under development. Please see comments under Bugs
Since the plugin needs to know who is looking at the controlled document/topic at all time you need to set up the TWiki in such way that the user has to log-in even if she just displays a page. Note:
the installation archive below contains a
file to accomplish this setting.
A topic is under document control if the preference variable
appears on its page while the topic YourDocumentApprocalWorkflow
describes your specific approval workflow.
Settings in the workflow description topic
Basically, the topic YourDocumentApprocalWorkflow
contains one state and one transition table. The state table could look like this, for example:
|| Allow Edit
|| Main.User1, QualityGroup
|| This document is under revision.
|| This document is waiting for approval by the Quality Manager.
|| This document is waiting for approval by the CEO.
Each row in this table defines a state whereby
- the State column contains an unique identifier for the state,
- the Allow Edit column specifies the user(s) which are permitted to edit the topic in the state, and
- the Message column defines a message which can be displayed on the document page when the document is in this state.
In this example, we have defined four states and only the users
are permitted to make
changes to the document in the state
. In all other states the document can not be edited by any user. Note, that the first state in this table defines always the initial/default state.
The transition table consists of 4 columns. For example:
Each row in this table defines a transition from one state to another state whereby
- the State column contains the identifier of the current state of the document (of course, this must correspond to a state in the state table!),
- the Action column defines a possible action for this current state,
- the Next State column defines the resulting state after the specified action is performed, and
- the Allowed column specifies the user(s) which are allowed to perform the corresponding action.
Thus, in our example the Quality Group is allowed to revise the document. After finishing the revision, first, the document is approved by the Quality Manager and after that by the Technical Director. Even though they can't edit the document by themself (see state table above), they can
reject the revision and put the document back into the
The state table needs to be defined before
the transition table!
Besides these both tables you can define any kind of variable staring with %APPROVAL ...% in this file, e.g.
- Set APPROVALNOTICE = This topic is under document control. Last approval on %APPROVALLASTTIME_APPROVED%
- Set APPROVALBUTTON = You are permitted to change the status of this document: %APPROVALTRANSITION%
which can be used then in the controlled document.
Settings in your controlled document/topic
As described above the topic needs to contain the variable
to be under the approval workflow.
Now you can place the tag
in your document which will be expanded to either (a) a pull-down menu if the user can perform more than one transition, (b) a button if the current user can only perform one transition, or (c) empty space if the current user is not allowed to perform any action.
Additionally, you can place the tag
in your document which will be replaced by the corresponding message in the state table.
The approval keeps track when the document was in a specific state last time. The tag
%APPROVALLASTTIME_State% will be replaced by the timestamp when the document was in the state State last time and
%APPROVALLASTVERSION_State% will be replaced by the version when the document was in the state State last time.
For instance, in our example above the tag =%APPROVALLASTTIME_APPROVED% is replaced by the timestamp when the document was in the state APPROVED last time.
Furthermore, the plugin replaces any variable starting with
%APPROVAL ... %
defined in the workflow file.
Finally, it removes all other tags in the document which start with
%APPROVAL ... %
. (You can use this behaviour
to place these tags in the header or footer. They appear only if the currently displayed document is controlled! Otherwise, these tags are just removed and do not disturb the layout)
Remark: If you replace the tag
in your templates, then the Edit
link is crossed out when the user is not allowed to edit the page in a state (Note, that the topic is still write protected even if you don't replace the tag).
This plugin is still under development. Even though it works fine for the purposes in our company, it might not work in all cases. Currently, I am aware of the following bug:
- You can attach a file to a contolled topic even if the state of the topic does not allow the user to edit it. In general, the plugin should prevent any changes to the topic in such case. (suggestions to solve this bug are appreciated).
Plugin settings are stored as preferences variables. To reference
a plugin setting write
- One line description, is shown in the TextFormattingRules topic:
- Set SHORTDESCRIPTION = Plugin to establish complex approval workflows
- Debug plugin: (See output in
Plugin Installation Instructions
You do not need to install anything on the browser to use this plugin. The following instructions are for the administrator who installs the plugin on the server where TWiki is running.
The ZIP file contains a
file to restrict the access to your TWiki. If you don't want to install this file, unzip the archive in a separate directory and copy the files by hand.
- Download the ZIP file from the Plugin web (see below)
ApprovalPlugin.zip in your twiki installation directory. Content:
| File: || Description: |
| Plugin topic |
| Plugin Perl module |
| configuration to restrict access to view script |
- Download example.
Related Topics: TWikiPreferences