[gatein-issues] [JBoss JIRA] Updated: (GTNPORTAL-1230) Inherited ACL for nodes
Thomas Heute (JIRA)
jira-events at lists.jboss.org
Thu May 20 11:46:06 EDT 2010
[ https://jira.jboss.org/browse/GTNPORTAL-1230?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Thomas Heute updated GTNPORTAL-1230:
------------------------------------
Summary: Inherited ACL for nodes (was: Inherited node ACL)
> Inherited ACL for nodes
> -----------------------
>
> Key: GTNPORTAL-1230
> URL: https://jira.jboss.org/browse/GTNPORTAL-1230
> Project: GateIn Portal
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: Security
> Reporter: Thomas Heute
> Fix For: 3.2.0-GA
>
>
> As of now it is difficult to maintain gazillion of nodes even in a hierarchy.
> when you have:
> A<-B<-C
> (B is a child of A, C is a child of B)
> and you want to restrict access to that tree, you need to define security rules on the 3 *pages*. (and modify the pages everytime you want to change a restriction)
> As of now we don't have security restrictions on the node itself, we would need to add this feature and make it inherited.
> the Picketlink Authz framework can do this effectively, but we would need an answer to this issue prior to the integration.
> We should be able to tell that A is restricted to admins, and on an access to C check for parent restrictions. It should also be possible to add a restriction on B.
> In some cases, one node may want to break the inheritance to define other rules.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the gatein-issues
mailing list