2009/10/20 Federica Boffa <[email protected]>: > Hi developers, > I am at the end of developing part in Nuxeo. > I desire to know..when I add a user in active directory I can login with the > username correctly. It works fine. > But when I am in Nuxeo I want the same rights added in Active Directory..in > Nuxeo document and folder... > It is possible? how?
Please use the ECM mailing list for such questions, nuxeo-dev is for discussions related to the platform development itself. As for your question, nuxeo permission system is document centric, ACL are related to documents (Workspaces, Folders, Sections, ...) whose structure can change user change them (creation, deletion, document tree reorg, ...). There is no such thing as a document tree in AD. What you can do is define groups in AD and use those groups to define base permissions on the workspaces and section root documents so that those rules are inherited in their subdocuments. You can also write a new core event listener that creates new ACL on newly created folderish documents such as: give group "group:ReadWrite:/path/to/my/new/folder" permission "ReadWrite" And then create a new group in AD with the same cn "group:ReadWrite:/path/to/my/new/folder" and make organisational groups subgroups of this automatically generated group to give their users the ReadWrite permission automatically from AD only. -- Olivier _______________________________________________ ECM mailing list [email protected] http://lists.nuxeo.com/mailman/listinfo/ecm To unsubscribe, go to http://lists.nuxeo.com/mailman/options/ecm
