JCR 1.0 includes the "set_property" permission, and I've implemented a
custom AccessManager so can control access to this level. The problem I
have with properties is that I want the user to have write permission when
connected through my web application, but more limited permissions when
connected through WebDAV. However, it is only possible to have a single
AccessManager configured per repository.
It's apparently possible to hide items in WebDAV by filtering on namespace
(eg "rep:") or node types, but I have not had success with this and it's
specified to only affect display and not access.
did you try to create a custom IOHandler/PropertyHandler
the doesn't expose all child-nodes/properties or exposes them but
doesn't allow modifications... that's probably what i would try.
angela
