Versions Compared

Old Version 5

changes.mady.by.user Unknown User (adrianc@hlmksw.com)

Saved on

compared with

New Version Current

changes.mady.by.user Unknown User (adrianc@hlmksw.com)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3

Access Control Scenario Three

Scenario Description

User X can use any artifact for records determined by Constraint Z.

Current Implementation Example

New Design Implementation Example

Info

This description includes permission expressions that are in the form of ArtifactIdentifier[PermissionsList]. The expressions are illustrative - they are not intended to be some kind of "permission string." How permissions are stored and managed depends upon the Authorization Manager implementation.

The user is assigned these permissions:

Using the static artifact hierarchy

OFBiz/component/entity/EntityName[filter=ConstraintZ]

Using the dynamic artifact hierarchy

OFBiz/component/WebApp/ControllerRequest/ControllerRequestEvent/Service/EntityName[filter=ConstraintZ]
OFBiz/component/WebApp/ControllerView/WidgetScreen/Service/EntityName[filter=ConstraintZ]
(PermissionsList duplicated for every execution path that leads to the entity)