jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ian Boston <...@tfd.co.uk>
Subject Re: AccessControlProvider on security workspace. (JR2)
Date Fri, 14 May 2010 09:05:11 GMT

On 14 May 2010, at 07:04, Angela Schreiber wrote:

> hi ian
> 
>> Would it be possible to use the AccessControlProvider from the default "content"
workspace on the security workspace, provided the rep:* nodes were suitably protected with
ACLs?
> 
> sure. you can define the AccessControlProvider to be used
> in the configuration of each workspace separately.
> 
> for this you have to add the following element to the workspace
> config:
> 
> <Workspace>
> [...]
>  <WorkspaceSecurity>
>     <AccessControlProvider class="...">
>       [... additional provider configuration ...]
>     </AccessControlProvider>
>  </WorkspaceSecurity>
> [...]
> </Workspace>
> 
> hope this helps
> angela
> 

Angela,
Yes,
thank you, one more question.

Do you think there would be a problem extending the rep:Group node  from

[rep:Group] > rep:Authorizable
  - rep:members (WEAKREFERENCE) protected multiple < 'rep:Authorizable'

to

[rep:Group] > rep:Authorizable
  - rep:members (WEAKREFERENCE) protected multiple < 'rep:Authorizable'
  - rep:managers (STRING) protected multiple
  - rep:viewers (STRING) protected multiple

I am not asking that the spec be extended since thats JSR work, just if its going to conflict
with things in the future that you know of ?

rep:managers, if present specifies principals of users who can manage the group, giving them
the same privileges, for this group as members of the Group Administrators group.
rep:viewers if present specified principals of users who can see the group.

Thanks
Ian


> 


Mime
View raw message