[TYPO3-50-general] FLOW3 ACL/Policy syntax discussion
Robert Lemke
robert at typo3.org
Fri Jul 31 10:48:02 CEST 2009
Hi Sebastian,
Am 29.07.2009 um 23:11 schrieb Sebastian Kurfürst:
>> acls:
>> Administrator:
>> someResource: DENY(param.someObject.someProperty = 'foo')
>> someOtherResource: GRANT(context.someValue = TRUE)
>>
>>
>> I think we were not sure, if we should write DENY(...) or
>> DENYIF(...) for privileges with conditions. What do you think
>> is better?
> Great! However I still have a question there...
> Is the default to have a "DENY" or is the default to have an "ALLOW"?
> Because if "DENY" is the default, then "DENYIF" does not make any
> sense to me (as you would only _allow_ on specific conditions) and
> vice versa if ALLOW is the default.
acls:
SomeRole:
controllersInGeneral: GRANT
certainSpecialControllers: DENYIF(...)
Cheers,
robert
More information about the TYPO3-project-5_0-general
mailing list