Overview

Adding fine-grained permissions to custom portlets consists of four main steps. This procedure is also known as DRAC.

1. Define all resources and their permissions.

2. Register all the resources mentioned in step 1 into the permissions system. This is also known simply as “adding resources”.

3. Associate the necessary permissions to these resources.

4. Check permission before returning resources.