jackrabbit-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Angela Schreiber <anch...@adobe.com>
Subject Re: AW: AW: remove read-access for everyone from a principal ACL based workspace
Date Wed, 09 May 2012 13:32:23 GMT
hi ferry

well... that config just defines what to do on the initialization
of the provider. if the corresponding access control entry exists
in a subsequent start it will not be removed.

in order to get rid of the existing entry you have to remove it
using the API. something like

Principal everyone = principalMgr.getEveryone();
AccessControlPolicy[] plcs = jackrabbitAcMgr.getPolicies(everyone)
AccessControlPolicy everyonePolicy = [select the desired policy]

> perhabs principalbased.ACLProvider does not support the ' omit-default-permission' parameter?

yes, i am pretty sure that the principalbased ac provider supports
that option :)

anyway, i think the removal of the existing policy was the missing
piece. still leave the config option as otherwise the ace will
be recreated upon startup.

kind regards

View raw message