I got it to work, thanks.
There are some items in the domain.xml that are different that I do not
understand and I can not find an explanation of the fields. I would like
to know the difference in the following.
The old domain.xml has:
<parameter name="sequential-mode">fine-grain</parameter>
The new v2.2 domain.xml has:
<parameter name="sequential-mode">full</parameter>
******************
On "/" there are differences. Once I changed this to "all" from
"/roles/users" it worked.
The old domain.xml has:
<permission action="/actions/write-acl" subject="/roles/user" inheritable=
"true" negative="true"/>
The new v2.2 domain.xml has:
<permission action="/actions/write-acl" subject="all" inheritable="true"
negative="true"/>
Stefan
L�tzkendorf
<[EMAIL PROTECTED] To
che.org> Slide Developers Mailing List
<[email protected]>
06/02/2005 09:37 cc
AM
Subject
Re: starting up Slide 2.2
Please respond to
"Slide Developers
Mailing List"
<[EMAIL PROTECTED]
a.apache.org>
[EMAIL PROTECTED] wrote:
> HTTP/1.1 403 Forbidden: Access denied on /files by user unauthenticated
for
> action /actions/read
Are you properly authenticated?
The message says that user "unauthenticated" has no permissions.
Mayby you want
<permission action="all" subject="unauthenticated" inheritable="true"/>
Stefan
>
> I get the same error going though my webapp and DAVExplorer. My
domain.xml
> is still in this email but the relevant section I think is the one listed
> next and what it is inheriting from. I am using Slide for users/roles.
I
> am not sure I understand all the different elements in the SubjectNode
for
> "/files" or the inherited SubjectNode "/", is there a place that has a
good
> description? I have inherited this project and task so I am trying to
> learn/understand as much as possible. Any suggestions why access denied?
>
> Prior to moving from Slide v2.1 to v2.2 the domain.xml, user.properties,
> role.properties all worked. I moved these 3 files from my use of them in
> 2.1 to 2.2 after I diff'd domain.xml and found very little difference.
>
> <objectnode classname="org.apache.slide.structure.SubjectNode"
uri="/files"
>
> <permission action="all" subject="authenticated" inheritable="true"/>
> <permission action="/actions/write" subject="/roles/user"
inheritable=
> "true"/>
> <permission action="/actions/read-acl" subject="owner" inheritable=
> "true"/>
> </objectnode>
>
>
>
>
> Stefan
> L�tzkendorf
> <[EMAIL PROTECTED]
To
> che.org> Slide Developers Mailing List
> <[email protected]>
> 06/01/2005 06:15
cc
> AM
>
Subject
> Re: starting up Slide 2.2
> Please respond to
> "Slide Developers
> Mailing List"
> <[EMAIL PROTECTED]
> a.apache.org>
>
>
>
>
>
>
> org.apache.slide.common.Domain - ERROR - java.lang.NoSuchMethodError:
>
org.apache.commons.transaction.file.FileResourceManager.<init>(Ljava/lang/String;Ljava/lang/String;Lorg/apache/commons/transaction/file/ResourceIdToPathMapper;Lorg/apache/commons/transaction/util/LoggerFacade;Z)V
>
>
> looks as you have an in compatible version of commons-transactions
>
> Stefan
>
>
> [EMAIL PROTECTED] wrote:
>
>>Here is my domain.xml:
>>
>><?xml version="1.0"?>
>><slide>
>> <property name="filespath">${org.apache.slide.webapp.rootpath}</
>>property>
>>
>> <namespace name="slide">
>> <definition>
>> <store name="tx">
>> <parameter name="tlock-timeout">20</parameter>
>> <nodestore classname=
>>"org.apache.slide.store.txfile.TxXMLFileDescriptorsStore">
>> <parameter name="rootpath">
>>${filespath}../../../../../bin/store/metadata</parameter>
>> <parameter name="workpath">
>>${filespath}../../../../../bin/work/metadata</parameter>
>> <parameter name="defer-saving">true</parameter>
>> <parameter name="timeout">120</parameter>
>> </nodestore>
>> <sequencestore classname=
>>"org.apache.slide.store.txfile.FileSequenceStore">
>> <parameter name="rootpath">
>>${filespath}../../../../../bin/store/sequence</parameter>
>> </sequencestore>
>> <securitystore>
>> <reference store="nodestore"/>
>> </securitystore>
>> <lockstore>
>> <reference store="nodestore"/>
>> </lockstore>
>> <revisiondescriptorsstore>
>> <reference store="nodestore"/>
>> </revisiondescriptorsstore>
>> <revisiondescriptorstore>
>> <reference store="nodestore"/>
>> </revisiondescriptorstore>
>> <contentstore classname=
>>"org.apache.slide.store.txfile.TxFileContentStore">
>> <parameter name="rootpath">
>>${filespath}../../../../../bin/store/content</parameter>
>> <parameter name="workpath">
>>${filespath}../../../../../bin/work/content</parameter>
>> <parameter name="defer-saving">true</parameter>
>> <parameter name="timeout">120</parameter>
>> </contentstore>
>> </store>
>> <scope match="/" store="tx"/>
>> </definition>
>> <configuration>
>> <!-- Actions mapping -->
>> <read-object>/actions/read</read-object>
>> <create-object>/actions/write</create-object>
>> <remove-object>/actions/write</remove-object>
>> <grant-permission>/actions/write-acl</grant-permission>
>> <revoke-permission>/actions/write-acl</revoke-permission>
>> <read-permissions>/actions/read-acl</read-permissions>
>>
> <read-own-permissions>/actions/read-current-user-privilege-set
>
>></read-own-permissions>
>> <lock-object>/actions/write</lock-object>
>> <kill-lock>/actions/unlock</kill-lock>
>> <read-locks>/actions/read</read-locks>
>>
> <read-revision-metadata>/actions/read</read-revision-metadata>
>
>> <create-revision-metadata>/actions/write-properties</
>>create-revision-metadata>
>> <modify-revision-metadata>/actions/write-properties</
>>modify-revision-metadata>
>> <remove-revision-metadata>/actions/write-properties</
>>remove-revision-metadata>
>> <read-revision-content>/actions/read</read-revision-content>
>> <create-revision-content>/actions/write-content</
>>create-revision-content>
>> <modify-revision-content>/actions/write-content</
>>modify-revision-content>
>> <remove-revision-content>/actions/write-content</
>>remove-revision-content>
>> <bind-member>/actions/bind</bind-member>
>> <unbind-member>/actions/unbind</unbind-member>
>> <!-- Paths configuration -->
>> <userspath>/users</userspath>
>> <rolespath>/roles</rolespath>
>> <actionspath>/actions</actionspath>
>> <filespath>/files</filespath>
>> <parameter name="dav">true</parameter>
>> <parameter name="standalone">true</parameter>
>> <parameter name="acl_inheritance_type">path</parameter>
>> <!-- Nested roles: 0 means no nesting (default), 1 means one
>>
>
> sublevel, etc. -->
>
>> <parameter name="nested_roles_maxdepth">0</parameter>
>> <!-- Can be "off", "write" and "full" -->
>> <parameter name="sequential-mode">full</parameter>
>> <!-- "false" lets all read-only methods be executed outside
>
> of
>
>>transactions -->
>> <parameter
>
> name="all-methods-in-transactions">true</parameter>
>
>> <!-- Setting this to true will force Slide to internally
>>
>
>
convert the username a user
>
>> enters at login to
lowercase.
>
> This is useful for users who
>
>>can't be bothered
>>
with
>
> turning off their capslock key before logging in. -->
>
>> <parameter name="force-lowercase-login">false</parameter>
>> </configuration>
>> <data>
>> <objectnode
>
> classname="org.apache.slide.structure.SubjectNode"
>
>>uri="/">
>> <!-- Subject can be:
>> any user
>
> "all"
>
>> authenticated user "authenticated"
>>
>
> unauthenticated
user "unauthenticated"
>
>> self
>
> "self"
>
>>
owner of resource "owner"
>> a
>
> user
"/users/john"
>
>> a role
>
> "/roles/admin"
>
>>
-->
>> <permission action="all" subject="/roles/root"
>
> inheritable=
>
>>"true"/>
>> <permission action="/actions/read-acl" subject=
>>"/roles/user" inheritable="true" negative="true"/>
>> <permission action="/actions/write-acl" subject=
>>"/roles/user" inheritable="true" negative="true"/>
>> <permission action="/actions/unlock"
>
> subject="/roles/user"
>
>>inheritable="true" negative="true"/>
>> <permission action="/actions/read" subject="/roles/user"
>>inheritable="true"/>
>> <!-- /users -->
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users">
>> <permission action="all" subject="self" inheritable=
>>"true"/>
>> <permission action="all" subject="/roles/projector"
>>inheritable="true"/>
>> <permission action="all" subject="unauthenticated"
>>inheritable="true" negative="true"/>
>> <!-- /users/root represents the administrator -->
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/root">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/"; name="password">root</property>
>> </revision>
>> </objectnode>
>> <!-- /users/john and /users/john2 represent
>>
>
>
authenticated users -->
>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/mio">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/"; name="password">mio</property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/analyst">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/"; name="password">analyst</property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/lawenforcement">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/";
>
> name="password">lawenforcement</property
>
>> </revision>
>> </objectnode>
>> <!-- /users/guest represents an authenticated or
>>
>
>
unauthenticated guest user -->
>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/guest">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/"; name="password">guest</property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/users/projector">
>> <revision>
>> <property namespace=
>>"http://jakarta.apache.org/slide/"; name="password">projector</property>
>> </revision>
>> </objectnode>
>> </objectnode>
>> <!-- /roles -->
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/roles">
>> <permission action="all" subject="self" inheritable=
>>"true"/>
>> <permission action="all" subject="/roles/projector"
>>inheritable="true"/>
>> <permission action="all" subject="unauthenticated"
>>inheritable="true" negative="true"/>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/roles/root">
>> <revision>
>> <property name="group-member-set"><![CDATA[
>><D:href xmlns:D='DAV:'>/users/root</D:href>]]></property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/roles/user">
>> <revision>
>> <property name="group-member-set"><![CDATA[
>><D:href xmlns:D='DAV:'>/users/analyst</D:href><D:href
>>xmlns:D='DAV:'>/users/lawenforcement</D:href><D:href
>>xmlns:D='DAV:'>/users/mio</D:href><D:href
>>xmlns:D='DAV:'>/users/root</D:href><D:href
>>xmlns:D='DAV:'>/users/projector</D:href>]]></property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/roles/guest">
>> <revision>
>> <property name="group-member-set"><![CDATA[
>><D:href xmlns:D='DAV:'>/users/guest</D:href>]]></property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/roles/projector">
>> <revision>
>> <property name="group-member-set"><![CDATA[
>><D:href xmlns:D='DAV:'>/users/root</D:href><D:href
>>xmlns:D='DAV:'>/users/projector</D:href>]]></property>
>> </revision>
>> </objectnode>
>> </objectnode>
>> <!-- action -->
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions">
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/read">
>> <revision>
>> <property
>
> name="privilege-member-set"><![CDATA[
>
>><D:href xmlns:D='DAV:'>/actions/read-acl</D:href> <D:href
>>xmlns:D='DAV:'>/actions/read-current-user-privilege-set</D:href>]]></
>>property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/read-acl">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri=
>>"/actions/read-current-user-privilege-set">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/write">
>> <revision>
>> <property
>
> name="privilege-member-set"><![CDATA[
>
>><D:href xmlns:D='DAV:'>/actions/write-acl</D:href> <D:href
>>xmlns:D='DAV:'>/actions/write-properties</D:href> <D:href
>>xmlns:D='DAV:'>/actions/write-content</D:href>]]></property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/write-acl">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/write-properties">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/write-content">
>> <revision>
>> <property
>
> name="privilege-member-set"><![CDATA[
>
>><D:href xmlns:D='DAV:'>/actions/bind</D:href> <D:href
>>xmlns:D='DAV:'>/actions/unbind</D:href>]]></property>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/bind">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/unbind">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.ActionNode" uri="/actions/unlock">
>> <revision>
>> <property name="privilege-member-set"/>
>> </revision>
>> </objectnode>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/files">
>> <permission action="all" subject="authenticated"
>>inheritable="true"/>
>> <permission action="/actions/write" subject=
>>"/roles/user" inheritable="true"/>
>> <permission action="/actions/read-acl"
>
> subject="owner"
>
>>inheritable="true"/>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/projector">
>> <permission action="all" subject="authenticated"
>>inheritable="true"/>
>> <permission action="/actions/write" subject=
>>"/roles/projector" inheritable="true"/>
>> <permission action="/actions/read-acl"
>
> subject="owner"
>
>>inheritable="true"/>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/projector/work">
>> </objectnode>
>> </objectnode>
>> <!-- DeltaV: default history and workspace paths -->
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/history">
>> <permission action="all" subject="authenticated"
>>inheritable="true"/>
>> <permission action="/actions/write" subject=
>>"/roles/user" inheritable="true"/>
>> <permission action="/actions/read-acl"
>
> subject="owner"
>
>>inheritable="true"/>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/workspace">
>> <permission action="all" subject="authenticated"
>>inheritable="true"/>
>> <permission action="/actions/write" subject=
>>"/roles/user" inheritable="true"/>
>> <permission action="/actions/read-acl"
>
> subject="owner"
>
>>inheritable="true"/>
>> </objectnode>
>> <objectnode classname=
>>"org.apache.slide.structure.SubjectNode" uri="/workingresource">
>> <permission action="all" subject="authenticated"
>>inheritable="true"/>
>> <permission action="/actions/write" subject=
>>"/roles/user" inheritable="true"/>
>> <permission action="/actions/read-acl"
>
> subject="owner"
>
>>inheritable="true"/>
>> </objectnode>
>> </objectnode>
>> </data>
>> </namespace>
>>
>> <parameter name="historypath">/history</parameter>
>> <parameter name="workspacepath">/workspace</parameter>
>> <parameter name="workingresourcepath">/workingresource</parameter>
>> <parameter name="auto-version">checkout-checkin</parameter>
>> <parameter name="auto-version-control">true</parameter>
>> <parameter name="versioncontrol-exclude"/>
>> <parameter name="checkout-fork">forbidden</parameter>
>> <parameter name="checkin-fork">forbidden</parameter>
>> <parameter name="allow-delete-of-versions">false</parameter>
>>
>> <!-- Event configuration -->
>> <events>
>> <event classname="org.apache.slide.webdav.event.WebdavEvent"
>
> enable
>
>>="true" />
>> <event classname="org.apache.slide.event.ContentEvent" enable=
>>"true" />
>> <event classname="org.apache.slide.event.ContentEvent" method=
>>"retrieve" enable="false" />
>> <event classname="org.apache.slide.event.EventCollection" enable=
>>"true" />
>> <event classname="org.apache.slide.event.TransactionEvent"
>
> enable=
>
>>"true" />
>>
>> <event classname="org.apache.slide.event.MacroEvent"
>
> enable="true"
>
>>/>
>>
>> <!--listener classname="org.apache.slide.util.event.EventLogger"
>>
>
> /-->
>
>> <listener
>
> classname="org.apache.slide.event.VetoableEventCollector"
>
>>/>
>> <listener classname=
>>"org.apache.slide.event.TransientEventCollector" />
>> <listener classname=
>>"org.apache.slide.webdav.event.NotificationTrigger">
>> <configuration>
>> <notification include-events="false" />
>> <persist-subscriptions filename="subscriptions.xml" />
>> </configuration>
>> </listener>
>> <listener classname=
>>"org.apache.slide.extractor.PropertyExtractorTrigger" />
>> <listener classname="org.apache.slide.search.IndexTrigger">
>> <configuration>
>> <indexer
>
> classname="org.apache.slide.search.LoggingIndexer"
>
>>synchronous="false" uri="/files/articles" />
>> </configuration>
>> </listener>
>>
>> <listener
>
> classname="org.apache.slide.macro.MacroPropertyUpdater">
>
>> <!-- Listener that updates some properties if resources are
>>
>
> copied or moved. This requires MacroEvents enabled (at
>
> least methods
copy and move) -->
>
>> <configuration>
>> <update-displayname>true</update-displayname>
>> <update-owner-on-move>false</update-owner-on-move>
>> <update-owner-on-copy>true</update-owner-on-copy>
>> </configuration>
>> </listener>
>> </events>
>></slide>
>>
>>
--
Stefan L�tzkendorf -- [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
