Thank you very much Phillip you solved my problem. It looks like I can
write files once again using Slide authentication (now I need to switch it
over to openldap).
It was files-def.xml, I was changing it in domain.xml but it was not
getting updated. "all" was defined twice, once for auth and once for unath
"Burnside,
Phillip \(UK -
Glasgow\)" To
<phillipburnside@ "Slide Users Mailing List"
deloitte.co.uk> <slide-user@jakarta.apache.org>
cc
06/05/2005 10:34
AM Subject
RE: ACL question
Please respond to
"Slide Users
Mailing List"
<[EMAIL PROTECTED]
ta.apache.org>
Kevin,
If my understanding of the ACL is correct what happens is that the "all"
will be applied to the user UNLESS they are a member of a role or
explicitly named in the permissions.
For example, in the following permissions :
<permission action="/actions/read" subject="all" inheritable="true"/>
<permission action="all" subject="/users/admin" inheritable="true"/>
<permission action="/actions/write" subject="/roles/writers"
inheritable="true"/>
<permission action="/actions/write" subject="/user/john"
inheritable="true"/>
Everyone gets to read, the user "admin" gets everything, the members of
role "writers" get to write and user "john" gets to write as well.
The thing to be careful of (when using a Tx filestore) is that the
permissions don't get overwritten everytime you load the Domain.xml. The
permissions previously applied still reside in the ".def.xml" files and
may cause some confusing results.
Hth
Phillip Burnside
Deloitte MCS Ltd
Direct: +44 (0)14 1304 5271
Main: +44 (0)14 1204 2800
Mobile: +44 (0)79 7969 2695
[EMAIL PROTECTED]
www.deloitte.co.uk
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: 03 June 2005 21:15
To: Slide Developers Mailing List
Subject: ACL question
I am using DAVExplorer to view my Slide files. When I view the ACL it
list
out all of them (/slide/files inherited first and then /slide inherited)
.
In my domain.xml I have inheritable=true and I read that the inherited
ACL
are the default and then the ACL you set override the defaults/inherited
ones. What is the behavior when "all" is used in either the action or
the
subject in the hierarchy? Does all set the ones not listed? If all is
used does it mask everything that gets inherited? If it is listed
somewhere (such as in the spec) please point me to it, I must have
overlooked/missed it.
Thanks in advance.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
IMPORTANT NOTICE
If you have received this e-mail in error or wish to read our e-mail
disclaimer statement and monitoring policy, please refer to the statement
below or contact the sender.
This communication is from Deloitte & Touche LLP. Deloitte & Touche LLP
is a limited liability partnership registered in England and Wales with
registered number OC303675. A list of members' names is available for
inspection at Stonecutter Court, 1 Stonecutter Street, London EC4A 4TR,
United Kingdom, the firm's principal place of business and registered
office. Deloitte & Touche LLP is authorised and regulated by the
Financial Services Authority.
This communication and any attachments contain information which is
confidential and may also be privileged. It is for the exclusive use of
the intended recipient(s). If you are not the intended recipient(s) please
note that any form of disclosure, distribution, copying or use of this
communication or the information in it or in any attachments is strictly
prohibited and may be unlawful. If you have received this communication in
error, please return it with the title "received in error" to
[EMAIL PROTECTED] then delete the email and destroy any copies
of it.
E-mail communications cannot be guaranteed to be secure or error free, as
information could be intercepted, corrupted, amended, lost, destroyed,
arrive late or incomplete, or contain viruses. We do not accept liability
for any such matters or their consequences. Anyone who communicates with
us by e-mail is taken to accept the risks in doing so.
When addressed to our clients, any opinions or advice contained in this
e-mail and any attachments are subject to the terms and conditions
expressed in the governing Deloitte & Touche LLP client engagement letter.
Opinions, conclusions and other information in this e-mail and any
attachments which do not relate to the official business of the firm are
neither given nor endorsed by it.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
