The following examples are coded using the syntax used by the standard /atg/dynamo/security/UserAuthority component.
The following ACL grants everyone with an ACC account the ability to read:
Admin$role$everyone-group:read;
Note that you should always end ACL strings with a semi-colon, as shown, even when the string is the last one in a list. Do not start ACLs with a semi-colon. Following this convention is important because it ensures that ACLs are interpreted correctly after XML-combine operations.
The following ACL grants the ACC admin account the ability to read and write, but every other ACC user only the ability to read:
Admin$user$admin:list,read,write;
Admin$role$everyone-group:list,read;
The following ACL grants the ACC Administrators group the ability to read, write and delete, but denies the ability to write and delete to ACC user Fnord even if he is a member of the Administrators group:
Admin$role$administrators-group:
list,read,write,delete;deny{Admin$user$Fnord:write,delete};
