[
http://jira.nuxeo.org/browse/NXP-3695?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=54173#action_54173
]
Radu Darlea commented on NXP-3695:
----------------------------------
The code is already tested and working
<?xml version="1.0"?>
<component name="org.nuxeo.ecm.platform.sync.client.security.contrib">
<extension target="org.nuxeo.ecm.core.security.SecurityService"
point="policies">
<policy name="read"
class="org.nuxeo.ecm.platform.sync.security.ReadSecurityPolicy"
order="400" />
</extension>
</component>
Probably the best would be that the handler also read Nuxeo property and apply
the policy if the flag org.nuxeo.ecm.webapp.readonly.mode is set?
> Make application read-only
> --------------------------
>
> Key: NXP-3695
> URL: http://jira.nuxeo.org/browse/NXP-3695
> Project: Nuxeo Enterprise Platform
> Issue Type: Improvement
> Affects Versions: 5.2 GA
> Reporter: Radu Darlea
> Fix For: 5.2.x
>
> Original Estimate: 2 hours
> Remaining Estimate: 2 hours
>
> The read-only policy means a security contribution. A handler is deployed to
> treat the requests. In order to make the application read-only, the handler
> always grant read (and sub rights) and deny the others.
> Also, for the JSF components a new filter is already provided to hide them
> when required (see NXP-3672).
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.nuxeo.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
ECM-tickets mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm-tickets
