[daisy] ACL question

Bruno Dumon bruno at outerthought.org
Thu Apr 26 02:48:22 CDT 2007 

On Tue, 2007-04-24 at 10:56 -0700, Derek Coffman wrote:
> Hi all,
> 
> I am trying to set up a rule to make certain pages viewable 
> (read/write/publish) only by the owner. I realize that I could have the owner 
> set the private tag each time but I was hoping to do it in a more generalized 
> sense. Specifically, here's what I have:
> 
> I am setting up an electronic notebook system following the guestbook example 
> and it seems to be working fine. I have a field where the user can specify 
> notebook "type". One of these types is "Personal" and I would like to be able 
> to construct a navigation document such that each person only sees their 
> personal notebooks and no one else can. As I said, I could set the "private" 
> tag but I'd like to keep open the possibiliity of the user selecting certain 
> other users to be allowed to view those documents. So, I tried to set up an 
> ACL rule that used the fact that the owner of  a document has full access 
> (except publishing) and restricted access to everyone else. The problem is, I 
> don't know how to allow the owner to publish as that seems to be turned off 
> unless the owner is explicitly given read permission. Here is the rule I'm 
> using:
> 
> if documentType='LabNotebookEntry' and $LabNotebookType='Personal'
> 
> I have tried various iterations of Then but I can't seem to find it. Any 
> advice?
> 
> Apologies if this is a stupid question but I can't figure it out...
> 

The owner of a document always has full access to the document, the ACL
is not checked for document owners. So you could simply deny access for
everyone in the ACL, and the owner will still be able to access the
document. This also makes I can't follow your comment about the owner
not being able to publish... For other users it is indeed true that you
can't have publish rights on a document without having read rights on it
too.

-- 
Bruno Dumon                             http://outerthought.org/
Outerthought - Open Source, Java & XML Competence Support Center
bruno at outerthought.org                          bruno at apache.org

More information about the daisy mailing list