Feature #3618
Extended ACL possibilities
| Status: | Closed | Start date: | 2009-06-08 | |
|---|---|---|---|---|
| Priority: | Should have | Due date: | ||
| Assigned To: | Andreas Förthner | % Done: | 0% |
|
| Category: | Security | |||
| Target version: | - | |||
| PHP Version: | Complexity: | |||
| Has patch: |
Description
Currently ACLs only cover PHP methods as resources. In the future we will need some more functionality like:
- read/write/add/delete persisted domain objects (covered by the JCR Security package)
- add constraints to ACL entries, to authorize based on: object attributes, security context/user attributes, method parameters(?) (maybe this can also be integrated in the privilege definitions)
- automatic query rewriting (a query should only return accessible objects: perhaps already covered by the JCR Security package)
- ResourceManager integration (files)
Related issues
History
#1 Updated by Andreas Förthner over 5 years ago
- Status changed from New to Closed
This information is somehow outdated. I'll create individual ticket according to the current plans...