Wiki.js

## Problem Statement The current page rule system has a fundamental flaw with path boundary matching that affects security and usability, particularly for departmental access control. ### Current Issue: The official Wiki.js documentation recommends using "Path Starts With" for departmental access control: > "For each group, add a Page Rule with access to path starting with... a specific subfolder (e.g. /accounting, /marketing, etc.)" However, "Path Starts With" performs literal string prefix matching, which creates false positive matches : /dev incorrectly matches /devops , /dev1 , /development-old /accounting incorrectly matches /accounting-backup , /accounting2024 /marketing incorrectly matches /marketing-new , /marketing-old ### Security Implications: This breaks the principle of least privilege and path isolation. Users gain unintended access to paths they shouldn't see, potentially exposing sensitive information across different departments or teams. ### Current Workaround: The only solution is to use "Path Matches Regex" with patterns like /dev(/|$) , but this: Requires regex knowledge from administrators Is error-prone and intimidating for non-technical users Contradicts the official documentation's recommendations ## Requested Solution Add a new page rule option: "Path and Children" ### Behaviour: Matches the exact specified path AND all its child paths /dev would match: - /dev (exact match) - /dev/page1 (child) - /dev/subfolder/page2 (nested child) - /devops (different path but matched anyway) - /development (different path but matched anyway) ### Benefits: Intuitive : Matches expected behaviour for folder-like access control Secure : Proper path boundary isolation User-friendly : No regex knowledge required Consistent : Aligns with how file system permissions work Scalable : Perfect for departmental/team wikis ## Alternative Solutions If adding a new option isn't feasible: Fix "Path Starts With" : Make it boundary-aware by default Update Documentation : Change official examples to recommend regex patterns Add Warning : Alert administrators about boundary matching issues ## Use Case Examples Scenario : Company with departments Dev, DevOps, and Marketing Current Problem : Dev group with "Path Starts With /dev " Dev users can accidentally access /devops content Violates departmental content isolation With "Path and Children" : Dev group: "Path and Children /dev " → Access only /dev/* DevOps group: "Path and Children /devops " → Access only /devops/* Marketing group: "Path and Children /marketing " → Access only /marketing/* Perfect isolation achieved ## Implementation Notes The logic already exists in the current regex workaround /path(/|$) . This feature would essentially provide a UI-friendly wrapper around that pattern. ## Expected Impact Better Security : Proper path isolation by default Improved UX : Administrators can set up departmental access without regex knowledge Documentation Alignment : Official examples would actually work as intended Reduced Support : Fewer confused users asking why they see unintended content ## Environment Wiki.js version : 2.5+ (affects all versions with page rules) Impact : All administrators setting up multi-team/departmental wikis Frequency : Common use case based on official documentation examples --- This feature request addresses a fundamental usability and security issue with the current page rules system while maintaining backward compatibility.

Proptech: Revolutionizing the Real Estate Landscape Proptech, a portmanteau of "property" and "technology," is a rapidly evolving sector transforming how we buy, sell, rent, and manage real estate. It encompasses a wide array of digital innovations, from online property portals and virtual tours to sophisticated data analytics and blockchain-based transactions. Proptech aims to streamline processes, enhance transparency, and improve efficiency across the entire real estate value chain, benefiting consumers, investors, and industry professionals alike. Its impact is far-reaching, fundamentally altering traditional practices and creating new opportunities. Streamlining Transactions and Enhancing Accessibility At its core, Proptech is about making real estate transactions smoother and more accessible. Online platforms have democratized property search, allowing individuals to browse extensive listings from anywhere. Virtual and augmented reality technologies enable immersive property viewings, saving time and travel costs. Digital documentation and electronic signatures expedite paperwork, reducing bureaucratic hurdles. These advancements empower buyers and renters with more information and control, while simultaneously enabling agents and brokers to reach a wider audience and manage their portfolios more effectively. Data-Driven Insights and Informed Decision-Making Data is a powerful tool in Proptech. Platforms collect vast amounts of information on property values, market trends, demographics, and consumer behavior. Advanced analytics and artificial intelligence are used to process this data, providing valuable insights for investment decisions, property valuations, and market forecasting. This data-driven approach allows stakeholders to make more informed choices, mitigate risks, and identify lucrative opportunities. Predictive modeling can even anticipate market shifts, giving users a competitive edge in a dynamic environment. Proptech's Impact on Property Management Property management is another area significantly impacted by Proptech. Software solutions automate tasks like rent collection, maintenance requests, and tenant communication. Smart home technologies enhance security and energy efficiency, benefiting both landlords and tenants. Platforms for short-term rentals simplify booking and management processes. These tools improve operational efficiency, reduce administrative burdens, and enhance the overall tenant experience, leading to increased satisfaction and retention rates for property managers. The Role of Blockchain in Proptech Blockchain technology is poised to revolutionize real estate transactions by providing a secure, transparent, and immutable ledger of ownership. This can streamline the title transfer process, reduce the risk of fraud, and potentially eliminate the need for intermediaries like escrow companies. Smart contracts, self-executing agreements stored on the blockchain, can automate various aspects of real estate deals, further increasing efficiency and reducing costs. While still in its early stages, blockchain has the potential to fundamentally reshape how property ownership is recorded and transferred. Financing and Investment in the Digital Age Proptech is also transforming how real estate is financed and invested in. Online platforms facilitate crowdfunding for real estate projects, opening up investment opportunities to a wider range of individuals. Digital mortgage applications and underwriting processes are becoming more common, speeding up the loan approval process. Fractional ownership models, enabled by technology, allow investors to own a portion of a property, making real estate investment more accessible and diversified. These innovations are democratizing real estate investment. Challenges and the Future of Proptech Despite its rapid growth, Proptech faces challenges, including data privacy concerns, regulatory hurdles, and the need for widespread adoption. However, the future of Proptech is bright. We can expect further integration of AI and machine learning, greater use of virtual and augmented reality, and the continued development of blockchain applications. As technology continues to advance, Proptech will play an increasingly vital role in shaping the real estate landscape, making it more efficient, accessible, and transparent for everyone involved. Source: https://www.marketresearchfuture.com/reports/proptech-market-11686

Images should be pasteable via clipboard ctrl+V as a shortcut, similar to how Github's MD editor works. This would be a gigantic time saver.

I think Vitepress has a practical feature that can prominently remind readers in appropriate locations. I request the development team to support this rendering

We have Single Sign-On (SSO) activated in our environment. However, when a user receives a link to specific documentation and this is their first time accessing the wiki, they encounter an unauthorized page. Despite the presence of a login button, virtually everyone promptly responds with "I don't have access." Clicking the login link resolves the issue, but it seems that users generally overlook it, assuming they lack access. In scenarios where SSO serves as the main login method, it would be beneficial if the system attempted to log users in first before presenting this message.

Currently when moving or renaming a page, all existing links point to the old page. The correct behaviour would be to update all links to the new page, either optional or explicit.

An Admin Menu where you can manage move delete and upload media-files.

current table designs is not appealing, would be col if table structure is similar to that of confluence wiki

Ability to move or rename folders in the Image / File Manager.

It would be great to have an administration tool in "utilities > content" which would allow to list all pages containing broken links. The tool should be able at least to list broken links pointing to internal pages of the wiki instance. An advanced feature could be to list broken links that point to external pages. It would ease greatly the maintainance of the wiki and keeping it up to date. Thank you in advance