Return-Path: Delivered-To: apmail-jackrabbit-dev-archive@www.apache.org Received: (qmail 63174 invoked from network); 4 Apr 2006 08:27:18 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 4 Apr 2006 08:27:18 -0000 Received: (qmail 20922 invoked by uid 500); 4 Apr 2006 08:27:16 -0000 Delivered-To: apmail-jackrabbit-dev-archive@jackrabbit.apache.org Received: (qmail 20893 invoked by uid 500); 4 Apr 2006 08:27:16 -0000 Mailing-List: contact dev-help@jackrabbit.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@jackrabbit.apache.org Delivered-To: mailing list dev@jackrabbit.apache.org Received: (qmail 20884 invoked by uid 99); 4 Apr 2006 08:27:15 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 04 Apr 2006 01:27:15 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of marcel.reutegger@gmx.net designates 213.165.64.20 as permitted sender) Received: from [213.165.64.20] (HELO mail.gmx.net) (213.165.64.20) by apache.org (qpsmtpd/0.29) with SMTP; Tue, 04 Apr 2006 01:27:15 -0700 Received: (qmail invoked by alias); 04 Apr 2006 08:26:53 -0000 Received: from bsl-rtr.day.com (EHLO [10.0.0.70]) [212.249.34.130] by mail.gmx.net (mp034) with SMTP; 04 Apr 2006 10:26:53 +0200 X-Authenticated: #894343 Message-ID: <44322DCB.1080407@gmx.net> Date: Tue, 04 Apr 2006 10:26:51 +0200 From: Marcel Reutegger User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: dev@jackrabbit.apache.org Subject: Re: Mixin values. References: <20060403151112.4B08C2BC7A@webemail04.ibest.com.br> In-Reply-To: <20060403151112.4B08C2BC7A@webemail04.ibest.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Y-GMX-Trusted: 0 X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N hsp wrote: > So, let me see if I got what you said. I have to store in the user > nodes a propertie per each node the user has rights to access, for > ex: Node user=getnode(userid); user.setProperty(nodeid,"read/write"); > > > Would be nearly this way? So the query will test if the usernode has > the property with the nodeid name and the value with the right > allowed. As I wrote in an earlier post, I suggest you should *not* use a query to find access control information. performance will probably suffer if a query is called on every item access. Using the node id as a property name allows you to use the regular api to get the access control you are looking for. regards marcel