Integrate the security policy into resource management
|Priority:||Should have||Due date:|
|Assignee:||Andreas Förthner||% Done:||
|Target version:||TYPO3 Flow Base Distribution - 1.0 alpha 14||Estimated time:||30.00 hours|
Resources are basically objects that can be secured by model security (see #6604). We'll have to find a solution how secured files have to be handled by the resource manager.
One possiblity would be:
We have a special virtual folder named after the secure session key that holds symlinks to all resources the current user is allowed to access. We could also add a dynamic rewrite rule that restricts access to this folder to the IP of this user. The folder would have to "expire" with the user session.
|related to TYPO3.Flow - Major Feature #5659: Implement content security||Resolved||2009-12-07|
[+FEATURE] FLOW3 (Security): Implemented private resource publishing
Updated by Robert Lemke over 3 years ago
- Status changed from New to Accepted
- Start date deleted (
- Estimated time set to 30.00
Updated by Karsten Dambekalns over 2 years ago
- Target version changed from 1.0 alpha 13 to 1.0 alpha 14