On 14 May 2010, at 07:04, Angela Schreiber wrote: > hi ian > >> Would it be possible to use the AccessControlProvider from the default >> "content" workspace on the security workspace, provided the rep:* nodes were >> suitably protected with ACLs? > > sure. you can define the AccessControlProvider to be used > in the configuration of each workspace separately. > > for this you have to add the following element to the workspace > config: > > <Workspace> > [...] > <WorkspaceSecurity> > <AccessControlProvider class="..."> > [... additional provider configuration ...] > </AccessControlProvider> > </WorkspaceSecurity> > [...] > </Workspace> > > hope this helps > angela >
Angela, Yes, thank you, one more question. Do you think there would be a problem extending the rep:Group node from [rep:Group] > rep:Authorizable - rep:members (WEAKREFERENCE) protected multiple < 'rep:Authorizable' to [rep:Group] > rep:Authorizable - rep:members (WEAKREFERENCE) protected multiple < 'rep:Authorizable' - rep:managers (STRING) protected multiple - rep:viewers (STRING) protected multiple I am not asking that the spec be extended since thats JSR work, just if its going to conflict with things in the future that you know of ? rep:managers, if present specifies principals of users who can manage the group, giving them the same privileges, for this group as members of the Group Administrators group. rep:viewers if present specified principals of users who can see the group. Thanks Ian >
