Hi Andreas, > Hi Michael, > > I'm happy that I was able to help you. > > Users are defined in Slide (for ACL etc.). However, if security > is enabled in web.xml, the servlet container, i.e. Tomcat, > checks the user name and password. Therefor Tomcat must know the > users, either by defining them again in Tomcat (e.g. tomcat- > users.xml) or using SlideRealm. I'll forward you a very good > message from Olli ([EMAIL PROTECTED], 21 Aug 2002), which > explains this in more detail. > > ACL (Access Control List) make sure, only the right users access > resources. There are two important things which I had > discovered: > > 1. If a user shall have access to a resource, she must also have > access to the parent of that resource, i.e. you can't start > access in the middle of the tree. > > 2. If permissions are inherited from parent, authorized users > will also have access to the children. You can't say: Stop > inheritance downwards from this child on.
You can ! For example if you set the following permissions : /user/foo has positive inheritable /actions on / AND /user/foo has negative /actions on /foo/bar Slide will see on node /foo/bar two permissions and take the more restrictive one so you will have stop the first inheritance. > Both lead to problems especially regarding versioning and access > on /history. /history permissions management is effectivly problematic. Regards Jp > More, if you're interested... > > Andreas > > > On 16 Oct 2002 at 22:45, Michael Wang wrote: > > >>Andreas, >> >>Thank you for your help. I can follow your instructions and >>get it to work. However, I do not know >> >>(1) How user and password are defined. When I login as >>user root with some password, where does the system check to >>authenticate. >> >>(2) What user has what access on the document tree structure? >> >>I am not lazy. If you can point me some documentation, I would >>be glad to read. I really appreciate your help. Thanks. >> >> >>>From: "Andreas Probst" <[EMAIL PROTECTED]> >>>To: "Slide Users Mailing List" <[EMAIL PROTECTED]> >>>Sent: Tuesday, October 15, 2002 4:21 PM >>> >>> >>>>Hello Michael, >>>> >>>>in the the web.xml you must uncomment the security constraint >>>>(near end of file). After a restart of Slide your browser or >>>>Slide client will ask you for a user name and password. To >>>>change the user within Slide client you could logout (command >>>>close) and open new (command open). If you are using a browser >>>>you will have to start a new one. On Windows IE is the only >>>>browser I know which always starts a new process, so I can have >>>>several browsers with different users open. I don't know how it >>>>is in Unix. >>> > > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> > > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
