Pages

ACL

Access Control Lists

MondoChest 0.7 improves on a feature added experimentally in the 0.6 series: the access control list. Access control lists let you set allowed users per MondoChest master. This is useful on PVP servers, and very large servers, and it can also be used as a simple way to protect all the chests in your home.

Note If you're at this page because you saw a message with a link here upon upgrading MondoChest, and you don't really care for configuring the user roles, set the fallback role to user and you will get the same behavior more or less as MondoChest 0.6.2.

Roles

For every MondoChest you access, you are given an access role(level). This is different from user groups or permissions because the roles are different per master. For example, you may be level admin on one MondoChest, and then be level user on another.

The roles are:

  • none: No access to use this MondoChest. If chest_open protection is enabled, then you can't even open the chest.
  • deposit: Can open the MondoChest master, and use the sign to shelve items to slaves, but cannot open slaves.
  • user: Can open all chests, and can use the MondoChest to shelve items to the slaves.
  • manager: Can do everything user can, plus can add/remove slaves to this MondoChest
  • admin: Can do all of the above, plus manage the access control list for this MondoChest.

Fallback Role

One more feature which helps define MondoChest is the "Fallback Role" concept. This is, in short, the role someone takes if they're not in the access control list. Depending on how your server is run, you will want to configure this security option.

Scenario 1: Tiny Personal Server You've only got 2 people on your server, and you trust the other person, you just want both of you to be able to add/remove slaves to any MondoChest. If so, set the fallback role to admin or moderator and everyone is an admin without being specifically added.

Scenario 2: Private / Trusted Friends Server You trust people are generally not jerks, but you don't want them to be able to add/remove slaves to the chest. Set the fallback role to user and they'll be able to use it just fine.

Scenario 3: PVP/Large server You don't know everyone well, and there could be griefing. Set the fallback role to none. What this means is the owner has to then add every single user who they want to be able to access this MondoChest.

Note that these roles are on top of permissions, if users don't have the appropriate mondochest.* permissions they can't use MondoChests regardless of their roles. If you don't want to be bothered with the access control system, set the fallback role to user to get the same effect as MondoChest 0.6.2.

Managing Access

MondoChest 0.7 introduces a re-vamped /mondo access command which will put you into a dialogue that will help you manage the access.

For example, to add the user bob123 with access level manager to your chest, perform the following steps:

  1. Right-click the mondo chest sign (if you haven't already)
  2. Run the /mondo access command to enter the access control dialogue
  3. type in add bob123 manager to complete the add process.
  4. repeat for any other users: add <username> <role>
  5. type in the command quit to leave the dialogue

Interesting tricks

  1. If the default role is something other than none, you can also use the access control list to ban people, by adding people to the ACL with role none. This allows you to have the server default allow everyone and instead implement bans for specific people.
  2. If you want people to be able to add / remove slaves, make them the role manager. If you want them to be able to also access the access control, make them role admin.

Comments

Posts Quoted:
Reply
Clear All Quotes