The following comment has been added to this issue:
Author: Bob Fleischman
Created: Mon, 31 May 2004 6:56 PM
Body:
Here is the patch to create the new security role and modify the turbine default psml
Index: default.psml
===================================================================
RCS file:
/home/cvspublic/jakarta-jetspeed/webapp/WEB-INF/psml/user/turbine/html/default.psml,v
retrieving revision 1.26
diff -u -r1.26 default.psml
--- default.psml 17 Mar 2004 19:11:38 -0000 1.26
+++ default.psml 1 Jun 2004 01:38:08 -0000
@@ -18,7 +18,7 @@
<metainfo>
<title>My Home</title>
</metainfo>
- <security-ref parent="owner-only"/>
+ <security-ref parent="admin_and_owner_only"/>
<layout position="-1" size="-1"/>
<control name="TabControl"/>
<controller name="TabController"/>
@@ -26,7 +26,7 @@
<metainfo>
<title>Home</title>
</metainfo>
- <security-ref parent="owner-only"/>
+ <security-ref parent="admin_and_owner_only"/>
<layout position="0" size="-1"/>
<controller name="TwoColumns"/>
<entry id="P-f570871a5a-10001" parent="LoggedInWelcome">
Index: security.xreg
===================================================================
RCS file: /home/cvspublic/jakarta-jetspeed/webapp/WEB-INF/conf/security.xreg,v
retrieving revision 1.6
diff -u -r1.6 security.xreg
--- security.xreg 17 Mar 2004 19:10:26 -0000 1.6
+++ security.xreg 1 Jun 2004 01:39:01 -0000
@@ -42,6 +42,18 @@
<allow-if-owner/>
</access>
</security-entry>
+ <security-entry name="admin_and_owner_only">
+ <meta-info>
+ <title>Admin_and_Owner_Only</title>
+ <description>Full access to the owner and admin.</description>
+ </meta-info>
+ <access action="*">
+ <allow-if-owner/>
+ </access>
+ <access action="*">
+ <allow-if role="admin"/>
+ </access>
+ </security-entry>
<security-entry name="default">
<meta-info>
<title>Default</title>
Index: default.psml
===================================================================
RCS file:
/home/cvspublic/jakarta-jetspeed/webapp/WEB-INF/psml/user/turbine/html/default.psml,v
retrieving revision 1.26
diff -u -r1.26 default.psml
--- default.psml 17 Mar 2004 19:11:38 -0000 1.26
+++ default.psml 1 Jun 2004 01:38:08 -0000
@@ -18,7 +18,7 @@
<metainfo>
<title>My Home</title>
</metainfo>
- <security-ref parent="owner-only"/>
+ <security-ref parent="admin_and_owner_only"/>
<layout position="-1" size="-1"/>
<control name="TabControl"/>
<controller name="TabController"/>
@@ -26,7 +26,7 @@
<metainfo>
<title>Home</title>
</metainfo>
- <security-ref parent="owner-only"/>
+ <security-ref parent="admin_and_owner_only"/>
<layout position="0" size="-1"/>
<controller name="TwoColumns"/>
<entry id="P-f570871a5a-10001" parent="LoggedInWelcome">
Index: security.xreg
===================================================================
RCS file: /home/cvspublic/jakarta-jetspeed/webapp/WEB-INF/conf/security.xreg,v
retrieving revision 1.6
diff -u -r1.6 security.xreg
--- security.xreg 17 Mar 2004 19:10:26 -0000 1.6
+++ security.xreg 1 Jun 2004 01:39:01 -0000
@@ -42,6 +42,18 @@
<allow-if-owner/>
</access>
</security-entry>
+ <security-entry name="admin_and_owner_only">
+ <meta-info>
+ <title>Admin_and_Owner_Only</title>
+ <description>Full access to the owner and admin.</description>
+ </meta-info>
+ <access action="*">
+ <allow-if-owner/>
+ </access>
+ <access action="*">
+ <allow-if role="admin"/>
+ </access>
+ </security-entry>
<security-entry name="default">
<meta-info>
<title>Default</title>
---------------------------------------------------------------------
View this comment:
http://issues.apache.org/jira/browse/JS1-480?page=comments#action_35837
---------------------------------------------------------------------
View the issue:
http://issues.apache.org/jira/browse/JS1-480
Here is an overview of the issue:
---------------------------------------------------------------------
Key: JS1-480
Summary: Group and Role Profile Default Template Handling
Type: Improvement
Status: Open
Priority: Major
Project: Jetspeed
Components:
PSML
Fix Fors:
1.6-dev
Versions:
1.6-dev
Assignee: David Sean Taylor
Reporter: David Sean Taylor
Created: Mon, 24 May 2004 9:12 AM
Updated: Mon, 31 May 2004 6:56 PM
Description:
Bob Fleischman wrote:
I am familiar with services.Profiler.newuser.template for new users, but I
did not see anything similar for groups.
I would like to intercept the process and customize the Profile/PSML that is
created for each group so that I can quickly create team workspaces.
...
I noticed 2 issues that can be improved on:
1. The Turbine User (the default User template) was copied over and used as a default
Group template.
2. The Security constraint applied (owner-only) makes this PSML unaccessible
I propose
1. enhancing the TurbineGroupManagement : adding a default Group template
2. changing the default security constraint to admin-all / owner-only for user
resources, and admin-all + particular role or group for new group or role resources
This will require creating a new role or group constraint on template creation
---------------------------------------------------------------------
JIRA INFORMATION:
This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
If you want more information on JIRA, or have a bug to report see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
