Home > Others

Alfresco permission Control

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

The default permission set of the platform includes the following eight common application permission sets,

Read Permission readproperties, readchildren, readcontent

Write write permission writeproperties, writecontent

Delete Delete permission deletenode, deletechildren

Addchildren add subnode permissions createchildren, linkchildren

Execute execution permission executecontent

Checkin check-in permission unlock

Checkout check-out permission lock

Cancelcheckout unlock the check-out permission

 

 

1. Alfresco uses the ACL mechanism to implement the permission control over text streams. The ACL contains multiple user and group access permissions.

All members of the group have the right to join the group.

 

 

2. Permission Mechanism Design in alfresco:

Each object (including folders and files) in the content library is related to an ACL object. When a user accesses a content library object, he/she first searches for the permissions of the current user on the object based on the ACL corresponding to the object. Determine whether the current user has the relevant permissions to operate on the object, so as to achieve the permission management of the content library object. The permission Inheritance Mechanism in alfresco allows the content library object to inherit the permissions of the parent node. Therefore, you do not have to assign an ACL to each object when creating the object. As long as you assign permissions to the directory structure, after the object is created, the parent node permission is inherited by default. Users, groups, and ACLs can be flexibly configured to implement complex content security control.

 

3. the specific implementation of the permission mechanism in alfresco is at the underlying layer of Alfresco, which specifies an interface for object operations: nodeservice abstracts various object operations into several basic methods, such as getproperties ();, setproperties (); intercept these methods. The task is to determine whether the method can be called by the current user, the Object ID of the current operation, and the operation being executed, this allows you to control object permissions at the underlying layer.

 

 

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
alfresco website alfresco demo alfresco documentation alfresco book alfresco linux alfresco cms alfresco ecm

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More