Host and edit TW sites on GitHub securelly

michalradacz · April 8, 2023, 8:11am

Hi, few weeks ago I sayd, that in Czech republic we creates some knowledge wikis for eGoverment by TW. Now we host our wikis on tiddlyhost.com absolutelly great service, but we have two main problems:

Multiuser edits on easy way (our content editors arent IT specialists so logging in ONE account on tiddlyhost and manually direct editing username isnt not ideal wa))way)
Making wiki public on our subdomains.

We have hosted many of our projects and websites on GitHub with GitHub pages or custom publishing by Github actions, but now I must manually save TW site from tiddlyhost.com to my local computer, move it to git repo folder and manually publish to repo.

Yes, there is some Github Saver pluhin, but I have two general question on it:

Is this method usable for more than one editors? For example if some other users have permission to push to git repo, is there way to identify them on TW wiki automatically?
How authorisation works? I wont to enter my secure Githuv key or store my private part of certificate to store and push changes to github on wiki, because all of themm will be public.

Please, some ideas? Many thanks

pmario · April 8, 2023, 9:37am

With github you can establish a workflow that let’s you publish your “main” wiki automatically. …

Every “editor” has write permission to their own repository. They can “push” changes to a “feature branch”. … Once the changes are reviewed, that branch can be merged into the “main” branch of the “main” reopsitory.

GitHub actions can detect the push to the main-branch and automatically publish the new wiki to the github-site.

That should be possible. … BUT … a little bit of training for your “editor” users is needed. … They don’t need to be IT specialists. … They need to understand the mechanism on a high level. …

michalradacz · April 8, 2023, 12:21pm

Thanks, but these basics i know well. My question is, how to secure my token? Because I must enter token to TW Github Saver settings to save wiki. But at time of saving it is publicly known, because this token remains in wiki.

pmario · April 8, 2023, 12:37pm

The token is only saved in local storage. It is not transferred to the server.

michalradacz · April 25, 2023, 5:16pm

Yes, I am idiot. Many thanks, I missed this, too difficult to find it in documentation

pmario · April 25, 2023, 6:38pm

You are right. There should be more info. I did create a GH issue: [bug] ControlPanel -> Saver tabs need more info about auth tokens and tiddlyHost · Issue #7418 · Jermolene/TiddlyWiki5 · GitHub