[
https://issues.apache.org/jira/browse/JCR-2911?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13004422#comment-13004422
]
Omid Milani commented on JCR-2911:
----------------------------------
> Shouldn't node type definition authorization be defined by access control on
> the node type definition storage (/jcr:system/jcr:nodeTypes) ?
that was what I thought first, but accessManager is not called for them.
> duplicate of JCR-2774. patch rejected
should I post the patch for that issue or it's not going to be fixed?
> Fine-grained access control for managing node types
> ---------------------------------------------------
>
> Key: JCR-2911
> URL: https://issues.apache.org/jira/browse/JCR-2911
> Project: Jackrabbit Content Repository
> Issue Type: New Feature
> Components: jackrabbit-core, nodetype
> Affects Versions: 2.2.4, 2.3.0
> Reporter: Omid Milani
> Priority: Minor
> Labels: accessManager, nodetype, security
> Fix For: 2.3.0
>
> Attachments: accessManager_nodeTypes.patch
>
> Original Estimate: 5m
> Remaining Estimate: 5m
>
> Extend AccessManager interface to include authorization for
> register/unregister of node types so it can be defined that a certain user
> can define and modify some node types but not the others.
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
