This is an automated email from the ASF dual-hosted git repository. olli pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/sling-org-apache-sling-karaf-configs.git
commit fe7c4d4dde2e3ff25ec9a708a4fab8e784132379 Author: Oliver Lietz <[email protected]> AuthorDate: Mon Dec 7 17:16:51 2020 +0100 SLING-8473 Provide Sling CMS features add initial configs --- ...riter.ReferenceMappingTransformerFactory.config | 3 + ...repoinit.RepositoryInitializer~sling_cms.config | 3 + ....ServiceUserMapperImpl.amended~sling_cms.config | 7 ++ src/main/resources/cms/sling-cms.txt | 80 ++++++++++++++++++++++ 4 files changed, 93 insertions(+) diff --git a/src/main/resources/cms/org.apache.sling.cms.core.internal.rewriter.ReferenceMappingTransformerFactory.config b/src/main/resources/cms/org.apache.sling.cms.core.internal.rewriter.ReferenceMappingTransformerFactory.config new file mode 100644 index 0000000..37c5c65 --- /dev/null +++ b/src/main/resources/cms/org.apache.sling.cms.core.internal.rewriter.ReferenceMappingTransformerFactory.config @@ -0,0 +1,3 @@ +enabledPaths=[\ + "/content"\ +] diff --git a/src/main/resources/cms/org.apache.sling.jcr.repoinit.RepositoryInitializer~sling_cms.config b/src/main/resources/cms/org.apache.sling.jcr.repoinit.RepositoryInitializer~sling_cms.config new file mode 100644 index 0000000..a89e493 --- /dev/null +++ b/src/main/resources/cms/org.apache.sling.jcr.repoinit.RepositoryInitializer~sling_cms.config @@ -0,0 +1,3 @@ +references=[\ + "classpath:cms/sling-cms.txt"\ +] diff --git a/src/main/resources/cms/org.apache.sling.serviceusermapping.impl.ServiceUserMapperImpl.amended~sling_cms.config b/src/main/resources/cms/org.apache.sling.serviceusermapping.impl.ServiceUserMapperImpl.amended~sling_cms.config new file mode 100644 index 0000000..83a18d6 --- /dev/null +++ b/src/main/resources/cms/org.apache.sling.serviceusermapping.impl.ServiceUserMapperImpl.amended~sling_cms.config @@ -0,0 +1,7 @@ +user.mapping=[\ + "org.apache.sling.cms.core:sling-cms-error\=[sling-cms-error]",\ + "org.apache.sling.cms.core:sling-cms-metadata\=[sling-cms-metadata]",\ + "org.apache.sling.cms.core:sling-cms-ugc\=[sling-cms-ugc]",\ + "org.apache.sling.cms.core:sling-cms-versionmgr\=[sling-cms-versionmgr]",\ + "org.apache.sling.cms.transformer:sling-cms-transformer\=[sling-cms-transformer]"\ +] diff --git a/src/main/resources/cms/sling-cms.txt b/src/main/resources/cms/sling-cms.txt new file mode 100644 index 0000000..f58e70b --- /dev/null +++ b/src/main/resources/cms/sling-cms.txt @@ -0,0 +1,80 @@ +# CMS root paths +create path (sling:OrderedFolder) /etc/i18n +create path (sling:OrderedFolder) /etc/taxonomy +create path (sling:OrderedFolder) /static +create path (sling:OrderedFolder) /etc/usergenerated + +set ACL for everyone + allow jcr:read on /etc/i18n + allow jcr:read on /etc/taxonomy + allow jcr:read on /static + allow jcr:read on /conf + allow jcr:read on /etc/usergenerated +end + +# Groups +create path (rep:AuthorizableFolder) /home/groups +create path (rep:AuthorizableFolder) /home/groups/sling-cms + +create group administrators with path sling-cms + +set ACL for administrators + allow jcr:all on / +end + +create group authors with path sling-cms + +set ACL for authors + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /content + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /static + allow jcr:read on / +end + +create group job-users with path sling-cms + +create group taxonomy-users with path sling-cms + +set ACL for taxonomy-users + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /etc/taxonomy +end + +create group ugc-users with path sling-cms + +set ACL for ugc-users + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /etc/usergenerated +end + +# Service users +create service user sling-cms-error with path system/sling/cms + +set principal ACL for sling-cms-error + allow jcr:read on / +end + +create service user sling-cms-metadata with path system/sling/cms + +set principal ACL for sling-cms-metadata + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /content + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /static + allow jcr:read on / +end + +create service user sling-cms-transformer with path system/sling/cms + +set principal ACL for sling-cms-transformer + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /content + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /static + allow jcr:read on / +end + +create service user sling-cms-ugc with path system/sling/cms + +set principal ACL for sling-cms-ugc + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /etc/usergenerated +end + +create service user sling-cms-versionmgr with path system/sling/cms + +set principal ACL for sling-cms-versionmgr + allow jcr:write,jcr:nodeTypeManagement,jcr:versionManagement on /content +end
