[Flow] Content Restriction for Accounts
Christian Eßl
essl at incert.at
Wed Aug 28 11:05:45 CEST 2013
Hi,
I created a CRUD-Controller for Accounts. Now I want to restrict the access to these accounts for normal editors. Normal Editors should only be able to see and edit their own accounts. So I created the following content restriction:
-----------------------------------------------------------------------------------------------
resources:
entities:
TYPO3\Flow\Security\Account:
TYPO3_Flow_Account_Admin: 'ANY'
TYPO3_Flow_Account_Me: 'current.securityContext.account == this'
roles:
SimpleUser: []
Editor: [SimpleUser]
Administrator: [Editor]
acls:
Editor:
entities:
TYPO3_Flow_Account_Me: GRANT
Administrator:
entities:
TYPO3_Flow_Account_Admin: GRANT
-----------------------------------------------------------------------------------------------
When I now log in as Administrator, the list shows me all accounts as usual. But when I log in as Editor I get none at all. Not even the account of the Editor.
Did I miss something here?
More information about the Flow
mailing list