The Secured Repository Adapter has a configurationFile
property. This property specifies an XML file used to define the behavior of the secured repository, enabling and configuring its features. By default, this file is named secured-test-repository.xml
. Its format is similar to that of the definition file for the underlying repository, using the same item-descriptor
and property
tags to delimit information about individual item descriptors and their related properties. It uses a special XML document type definition, which is found in the Secured Repository Definition File Document Type Definition section.
The following table describes the options that can be defined for each item descriptor:
Attribute | Description |
---|---|
| The ACL that applies to the item descriptor. This can contain any of the access rights that apply to the item descriptor. The value of this tag is an ACL string, as defined in the ACL Syntax section. |
| The |
| This defines the name of the string property in the underlying repository that is to be used to store the name of the owner of a repository item. |
| This defines the name of the string property in the underlying repository that is used to store the ACL for an individual repository item. |
| An ACL fragment that is inserted into the default ACL for a newly created repository item. Typically this defines global access rights for administrators and limited access rights for the user base as a whole. This ACL fragment can contain any of the access rights that apply to a repository item. |
| An ACL template that is used to generate an ACL fragment that applies to the owner (creator) of a newly created repository item. This is a standard format ACL string with a dollar sign ($) used to indicate the owner identity. No other identities may be used in the template. |
| An ACL template that is used to generate an ACL fragment that applies to each group that the owner (creator) is a member of in a newly created repository item. This is a standard format ACL string with a dollar sign ($) used to indicate the group identity. No other identities may be used in the template. Because a user may have a great many groups that they are a member of, it is suggested that this feature be used sparingly. For example, the ACC |
You can use a subset of these options to define ACLs for properties as well as item descriptors:
descriptor-acl
default-acl
acl-property
creation-base-acl
creation-owner-acl-template
creation-group-acl-template
See also the Secured Repository Definition File Tag Reference.