[Flow] Content Security Configuration for Party Entities
Rocky
rockysynergy at gmail.com
Mon Jul 14 12:05:18 CEST 2014
Hi,
I have School entity which extends \TYPO3\Security\Domain\Model\AbstractParty. One User's Account can be added to multiple Schools.
I want to make Content Security Configuration for School so that after the User is authenticated with the Account, he is authorized to manage Schools.
With below Policy.yaml, I got exception says "TYPO3\Flow\Error\Exception: Warning: in_array() expects parameter 2 to be array, object given in /home/rocky/Documents/WebProjects/HwwSponsor/Typo3Flow/Data/Temporary/Testing/Cache/Code/Flow_Object_Classes/TYPO3_Flow_Security_Aspect_PersistenceQueryRewritingAspect.php line 415"
=======================
resources:
entities:
'My\Package\Domain\Model\School':
My_Package_Schools_All: 'ANY'
My_Package_Schools_Mine: evaluate(this.accounts contains current.securityContext.account)
roles:
RegisteredUser: []
SchoolManager: []
acls:
SchoolManager:
entities:
My_Package_Schools_All: GRANT
===============================
Any idea what should be the right configuration please?
More information about the Flow
mailing list