If you configure secured repositories to sit on top of your versioned repositories, you can set item descriptor-level and, if necessary, item-level security as described in the Secured Repositories chapter in the Repository Guide.
ATG Content Administration accesses a secured VersionRepository
through the secured repository adapter component that overlays it. This component is an instance of the class :
atg.adapter.secure.GenericSecuredMutableVersionRepository
Configuring
To configure the security of a secured versioned repository, follow these steps:
Define the ACLs for the item descriptors as needed by modifying the secured repository definition file for the underlying repository. This lets you define access rights to all assets of a given type. For more information, see the Secured Repositories chapter in the Repository Guide.
If necessary, also define the ACLs for individual items.
As you define the ACLs for the item descriptors and items in your versioned repositories, make sure that you coordinate them with the ACLs that you define for the projects and workflows that might use the items.