Академический Документы
Профессиональный Документы
Культура Документы
1) Visibility of content
ACL?!?!
ACL = Access Control List
1) Visibility of content
2) Actions on objects
Overview
Site Login
Admin Login
Offline Access
Super Admin / Configure
Access Admin. Interface
Create
Delete
Edit
Edit State
Edit Own
user permissions
group
user permissions
group
access level
user permissions
group
access level
user permissions
group
access level
user permissions
group
access level
user permissions
group
access level
user permissions
group
access level
user permissions
role
access level
user permissions
Site Login
Admin Login
Offline Access
Super Admin / Configure
Access Admin. Interface
group Create
access level Delete
Edit
Edit State
Edit Own
ACL levels
Component permissions
Article permissions
Inheritance
Component permissions
Article permissions
Global Configuration permissions
Component permissions
Article permissions
Global Configuration permissions not set
CONFLICT
Component permissions allowed
Level 1
Level 2
Level 3
Level 4
Inheriting example for Create
Level 1
Level 2
Level 3
Level 4
Why?
{"core.login.site":{"6":1,"2":1}
Action name format (database)
com_content.article.24
[extension].[section].[object id]
JTable
Access.xml
File: administrator/components/com_foobar/config.xml
File: administrator/components/com_content/access.xml
File: administrator/components/com_content/access.xml
File: administrator/components/com_content/access.xml
File: administrator/components/com_content/access.xml
File: administrator/components/com_content/access.xml
Component permissions
Article permissions
File: administrator/components/com_content/access.xml
File: administrator/components/com_content/access.xml
Title vs Name
Site Login: core.login.site
Admin Login: core.login.admin
Offline Access: core.login.offline
Super Admin / Configure: core.admin
Access Administration Interface: core.manager
Create: core.create
Delete: core.delete
Edit: core.edit
Edit State: core.edit.state
Edit Own: core.edit.own
File: administrator/components/com_content/access.xml
Component permissions allowed
File: administrator/components/com_content/access.xml
Custom Actions
File: administrator/components/com_akeeba/access.xml
File: administrator/components/com_akeeba/access.xml
File: administrator/components/com_akeeba/access.xml
File: administrator/components/com_akeeba/access.xml
File: administrator/components/com_akeeba/access.xml
Action name format (xml)
akeeba.backup
[name extension].[name action]
Keep it structured
Interface
File: administrator/components/com_foobar/views/foobar/tmpl/edit.php
getActions helper
File: libraries/cms/helper/content.php
File: can be used anywhere
File: can be used anywhere
addToolbar
File: administrator/components/com_foobar/views/foobars/view.html.php
File: administrator/components/com_foobar/views/foobars/view.html.php
Overview?????
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
Many permission screens....
Global configuration
default permissions for each action and group
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
Many permission screens....
Global configuration
default permissions for each action and group
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
Many permission screens....
Global configuration
default permissions for each action and group
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
Many permission screens....
Global configuration
default permissions for each action and group
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
Idea?!
Action: EditforState
ACL Manager Joomla! 1.6
Global configuration
default permissions for each action and group
Category
can override the default permissions and component options
applies to components with categories (Articles, Banners, etc...)
Object
can override all permissions above for an object
only applies to articles in Joomla 1.6 core
ACL Manager for Joomla! 1.6
USA group
Allow on edit USA category
Deny on edit Europe category
Europe group
Allow on edit Europe category
Deny on edit USA category
www.aclmanager.net
Deny always win
Resources
JHelperContent::getActions() improvements
https://github.com/joomla/joomla-cms/pull/2728
This presentation
http://slideshare.net/sanderpotjer/