Task #6600

Remove the privilege concept vom ACLs

Added by Andreas Förthner almost 12 years ago. Updated about 11 years ago.

Status:
Resolved
Priority:
Must have
Category:
Security
Start date:
2010-02-25
Due date:
% Done:

100%

Estimated time:
Sprint:
PHP Version:
Has patch:
Complexity:

Description

ACL entries will simply define the access privilege by defining a GRANT or DENY for a resource. Example Policy.yaml entry:

acls:
Speaker:
UpdateOwnPaper: GRANT
ownAccount: GRANT
deleteAccount: DENY

The policy service should then provide two API methods: hasAccessOnJoinPoint() and hasAccessOnResource()


Related issues

Related to TYPO3.Flow - Major Feature #5659: Implement content securityResolvedAndreas Förthner2009-12-07

Actions

Also available in: Atom PDF