You need to provide one access element per action:
<security-entry name="base-template">
<meta-info>
<title>Base Security</title>
<description>Bsse Security</description>
</meta-info>
<access action="*">
<allow-if role="user"/>
</access>
<access action="view">
<allow-if role="guest" />
</access>
</security-entry>
-scott
> -----Original Message-----
> From: Pierre Henry [mailto:[EMAIL PROTECTED]
> Sent: Monday, March 17, 2003 5:26 AM
> To: Jetspeed User List (E-mail)
> Subject: XREG security - action attribute from access element
>
> Hi all.
> In the documentation and in all the security references defined in the
> release, the action attribute for an access element in a security
> definition
> in the registry contains either the "*" to specify all actions, or one
> single action like "view".
> eg:
> <access action="*">
> <allow-if ....>
> ...
> </access>
>
> or
>
> <access action="view">
> <allow-if ....>
> ..
> </access>
>
> I wanted to have several actions possible, but not all. So I tried to put
> several acions in the same attribute :
>
> <access action="view, maximize, minimize">...</access>
>
> But this didn't work and I got access denied to this portlet. So I put one
> access for each action, and this worked.
>
> My question is, is this the only way to do it or is there any way to
> define
> multiple actions in one access, which would make the Xreg much more
> compact
> and readable ?
>
> Pierre
