pracro:acl
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
pracro:acl [2011/04/11 09:52] – deva | pracro:acl [2011/04/13 14:33] (current) – deva | ||
---|---|---|---|
Line 1: | Line 1: | ||
======ACL====== | ======ACL====== | ||
+ | =====Server===== | ||
+ | ====Design1==== | ||
+ | Templates contain ACLs. The users and roles are defined in a config file.\\ | ||
Template: | Template: | ||
<code xml> | <code xml> | ||
<?xml version=' | <?xml version=' | ||
- | < | + | < |
- | < | + | |
- | <acl action="commit" | + | |
- | <acl action=" | + | |
- | </acls> | + | |
<macro name=" | <macro name=" | ||
- | <macro name=" | + | <macro name=" |
| | ||
<header caption=" | <header caption=" | ||
- | <macro name=" | + | <macro name=" |
- | < | + | <macro name=" |
- | <restrict | + | <macro name=" |
- | < | + | |
- | </ | + | |
- | </ | + | |
- | + | ||
- | <macro name=" | + | |
- | <macro name=" | + | |
</ | </ | ||
</ | </ | ||
- | aclXXXXX attributes contain lists of either userids and/or groupids. Currently: ' | ||
- | aclwrite and aclread can be connected with the template and is inherited to all the contained macros. | ||
Users and Groups: | Users and Groups: | ||
Line 31: | Line 21: | ||
# some config file in libconfig++ format | # some config file in libconfig++ format | ||
roles = ( | roles = ( | ||
- | {id=" | + | {id=" |
- | {id=" | + | {id=" |
- | {id=" | + | {id=" |
- | {id=" | + | {id=" |
); | ); | ||
users = ( | users = ( | ||
- | {id=" | + | {id=" |
- | {id=" | + | {id=" |
- | {id=" | + | {id=" |
+ | {id=" | ||
); | ); | ||
</ | </ | ||
+ | |||
+ | ====Design2==== | ||
+ | No changes to template. ACLs are defined in config file, with ' | ||
+ | ACL file: | ||
+ | < | ||
+ | < | ||
+ | ref_forunders write {" | ||
+ | :henvisning write {" | ||
+ | ref_forunders: | ||
+ | </ | ||
+ | |||
+ | Users and roles can be defined as in // | ||
+ | |||
+ | =====Client===== | ||
+ | The data received on the client must indicate what features that is to be enabled for the current user, without the client having to make an explicit user lookup. | ||
+ | Example: | ||
+ | <code xml> | ||
+ | <?xml version=' | ||
+ | < | ||
+ | features=" | ||
+ | <macro name=" | ||
+ | <macro name=" | ||
+ | <macro name=" | ||
+ | </ | ||
+ | </ | ||
+ | Making the commit button disabled or invisible and the ' |
pracro/acl.1302508364.txt.gz · Last modified: 2011/04/11 09:52 by deva