hi
In which cases do I have more than one policy per node?
with the *current* implementation in jr there is only one policy per node. but e.g. JCR-2331 would most probably be implemented by having an additional non-editable policy. similarly having a specific implementation for READ-access restriction could be thought of as additional policy that only takes effect under certain circumstances. and last but not least another jcr implementation could be built on a different ac model that doesn't use accesscontrollists. i don't find it too difficult to think of some other approach that would make heavy use of multiple policies per node. regards angela
