Task #6600

Remove the privilege concept vom ACLs

Added by Andreas Förthner over 11 years ago. Updated about 11 years ago.

Status:
Resolved
Priority:
Must have
Assignee:
Andreas Förthner
Category:
Security
Target version:
TYPO3 Flow Base Distribution - 1.0 alpha 8
Start date:
2010-02-25
Due date:
% Done:

100%

Estimated time:
Sprint:
PHP Version:
Has patch:
Complexity:

Description

ACL entries will simply define the access privilege by defining a GRANT or DENY for a resource. Example Policy.yaml entry:

acls:
Speaker:
UpdateOwnPaper: GRANT
ownAccount: GRANT
deleteAccount: DENY

The policy service should then provide two API methods: hasAccessOnJoinPoint() and hasAccessOnResource()

Related issues

Related to TYPO3.Flow - Major Feature #5659: Implement content securityResolvedAndreas Förthner2009-12-07

Actions
#1

Updated by Andreas Förthner over 11 years ago

  • Status changed from New to Accepted
#2

Updated by Andreas Förthner over 11 years ago

  • Status changed from Accepted to Resolved
  • % Done changed from 0 to 100

Applied in changeset r3881.

Also available in: Atom PDF