Examples of org.apache.jackrabbit.core.security.authorization.acl.ACLProvider

• org.apache.jackrabbit.core.security.authorization.acl.ACLProvider
  The ACLProvider generates access control policies out of the items stored in the workspace applying the following rules:

  • A Node is considered access controlled if an ACL has been explicitely assigned to it by adding the mixin type rep:AccessControllable and adding child node of type rep:acl that forms the acl.
  • a Property is considered 'access controlled' if its parent Node is.
  • An ACL is never assigned to a Property item.
  • A Node that is not access controlled may inherit the ACL. The ACL is inherited from the closest access controlled ancestor.
  • It may be possible that a given Node has no effective ACL, in which case some a default policy is returned that grants READ privilege to any principal and denies all other privileges.
  • an item is considered an ACL item if it is used to define an ACL. ACL items inherit the ACL from node they defined the ACL for.

  @see org.apache.jackrabbit.core.security.authorization.AccessControlProvider for additional information.

                // UserAccessControlProvider is designed to work with an extra
                // workspace storing user and groups. therefore avoid returning
                // this ac provider for the default workspace.
                prov = new UserAccessControlProvider();
            } else {
                prov = new ACLProvider();
            }
            log.debug("Default provider for workspace " + workspaceName + " = " + prov.getClass().getName());
            props = Collections.emptyMap();
        }

                // UserAccessControlProvider is designed to work with an extra
                // workspace storing user and groups. therefore avoid returning
                // this ac provider for the default workspace.
                prov = new UserAccessControlProvider();
            } else {
                prov = new ACLProvider();
            }
            log.debug("Default provider for workspace " + workspaceName + " = " + prov.getClass().getName());
            props = Collections.emptyMap();
        }

                // UserAccessControlProvider is designed to work with an extra
                // workspace storing user and groups. therefore avoid returning
                // this ac provider for the default workspace.
                prov = new UserAccessControlProvider();
            } else {
                prov = new ACLProvider();
            }
            log.debug("Default provider for workspace " + workspaceName + " = " + prov.getClass().getName());
            props = Collections.EMPTY_MAP;
        }

                // UserAccessControlProvider is designed to work with an extra
                // workspace storing user and groups. therefore avoid returning
                // this ac provider for the default workspace.
                prov = new UserAccessControlProvider();
            } else {
                prov = new ACLProvider();
            }
            log.debug("Default provider for workspace " + workspaceName + " = " + prov.getClass().getName());
            props = Collections.EMPTY_MAP;
        }