David wrote:
> Paul, Then the <security-entry> really does represent a "rule".
Correct.
>
> Another question, in the registry config files that come with the current
> build the portlet entries have both a <security role="??"/> entry and a
> <security-ref parent="??"> entry. I would have thought the role attribute
> would have went away? Is it still used somehow?
<security role="??"> is maintained for backward compatibility. New
installation should not use it. Existing installation should convert
<security-entry>
>Also, in the <allow-if>
> tag in the security.xreg what are the allowable attributes? Is role the
> only one thats implemented?
The user and role attributes are allowed in the <allow-if ...> tag.
"*" = all, i.e. user="*" = all users and role="*" = all roles. This is
described in the proposal.
>Are there thoughts to implement for other
> registry resources such as skins, controls, and controllers?
All registries entries and psml entries will allow the <security-ref...> element.
I have tested <portlet-entry>, <security-entry>, and the PSML <entry>
tags. Other are allowed, but some of them may not make sense.
>
> Dave
>
>
Paul Spencer
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
