[DOCU-365] AccessControlProvider settings Created: 10/Jan/13 Updated: 29/May/18 Resolved: 29/May/18 |
|
| Status: | Closed |
| Project: | Documentation |
| Component/s: | content |
| Affects Version/s: | mid term |
| Fix Version/s: | mid term |
| Type: | Task | Priority: | Neutral |
| Reporter: | Roman Kovařík | Assignee: | Unassigned |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Template: |
|
||||||||
| Acceptance criteria: |
Empty
|
||||||||
| Task DoR: |
Empty
|
||||||||
| Date of First Response: | |||||||||
| Description |
|
It is possible now to set the Permission class of MagnoliaAccessProvider. To set the permission class for website workspace: <Workspace name="website">
...
<WorkspaceSecurity>
<AccessControlProvider class="info.magnolia.cms.core.MagnoliaAccessProvider">
<param name="permissionsClass" value="info.magnolia.cms.core.NodeTypeBasedPermissions"/>
<param name="nodeTypes" value="mgnl:page"/>
</AccessControlProvider>
</WorkspaceSecurity>
</Workspace>
1] Set the parameters permissionsClass to your own permission class (here is used NodeTypeBasedPermissions class). How does NodeTypeBasedPermissions class work: We want to set read/write access to /demo-project and only read access to /demo-project subpages for some users. Users cannot edit also /demo-project page by default (using DefaultACLBasedPermissions). This is because they need to read/write access to content nodes and MetaData of /demo-project also. How to create your own permission class: 1] Extend DefaultACLBasedPermissions class. |
| Comments |
| Comment by Magnolia International [ 15/Jan/13 ] |
|
Roman, this sounds like a very useful feature, but it also sounds to me like we should give some good use-cases for this - i.e. to avoid confusing users ("why would I do that?") Also: is this backwards compatible ? And lastly - before we make this public, we might want to consider the packages of these new classes. |
| Comment by Roman Kovařík [ 29/May/18 ] |
|
Closed, no interest since 4.5.8. |