Using Authenticated Publishing-Computing Services - Carnegie Mellon University

Using Authenticated Publishing for Your Course or Personal Pages 

Why Use Authenticated Publishing?

Course and personal pages can be published through the Publish! or KWPublish Web services by ANYONE who enters the appropriate userID or course number. You will want to use authenticated publishing if you:

  • want to restrict read access to your www directory
  • want to prohibit others from publishing your pages
  • are publishing pages for a course and you want to restrict those pages using .htaccess

Note: KWPublish/authenticated publishing should only be used for collections where you have configured a .kwpublish file to restrict access by IP address or Andrew userID.

To restrict the publishing of your collection to specific individuals, or to a specific PTS group, follow the steps provided in this document.

Note: PTS groups make it easier to maintain a list of people who may publish your web pages. For more information about how to create and maintain PTS groups, type pts help at a UNIX prompt.

Step 1: Create a .kwpublish File

When a .kwpublish file is present in the root of your www directory, the UserWeb server determines that you want to use authenticated publishing. Follow these steps to create the .kwpublish file:

  1. Launch a plain text editor (e.g., Notepad on Windows or Text Editor on Mac) and enter the userid(s) of those who should be authorized to publish. For example, if you want to authorize Jane Smith (userID jsmith) simply enter:


    Follow these examples and rules as you enter the appropriate userIDs or PTS groups:
    • If you want to authorize more than one person for publishing, enter their userIDs in succession, separated by a comma, for example:

    • You may enter a combination of userIDs and PTS groups. For example, if you want to authorize jsmith and anyone who is a member of the PTS group ju32:99-999 to publish the pages, enter the following:
  2. Once the .kwpublish file contains the correct userIDs or groups, you need to save it WITHOUT the file extension; UserWeb, which is a UNIX server, does not recognize file extensions.

    For example, if using Notepad to create the file, select File > Save As. Enter the name as .kwpublish. In the Save as type: pull down menu, select All Files. Click Save.
    auth pub
  3. Launch an FTP client and copy the .kwpublish file to the appropriate www directory for your collection.

Step 2: Set Access Rights for Publishing

In order to use authenticated publishing, you'll need to enter the following command(s):

  1. Launch a telnet session.
  2. IF YOU PREVIOUSLY followed steps in the Publishing Course Pages document to permit publishing for ANYONE, you'll need to remove that permission. Enter the following command at the root of your afs directory or project volume:

    fs sa www system:anyuser l
  3. Enter the following command to allow the server read access to your www directory, but to prohibit other Andrew users (except those listed in the .kwpublish file) from reading the files:

    fs sa www service.webman rl

Step 3: Use Authenticated Publishing

Follow these steps to use the Authenticated publishing service:

  1. Launch your web browser and visit the Authenticated Publish! web service.
  2. Select the appropriate radio button for Personal or Course web pages.
  3. Enter your userID or course number and click Publish.

    Note: If you added a section letter or other text to your course number when you requested a project volume, you'll need to include it.

Note: You will NOT be able to publish your pages via quick Publish! since authentication is required. Also, if an unauthorized person attempts to publish your files via Authenticated Publishing a message similar to the following appears: "We're sorry, but publishing is restricted for this website."

Last Updated: 6/3/13