<!– ================== –>
<!– Global permissions –>
<!– ================== –>
<!– –>
<!– Global permissions apply regardless of any particular node context. –>
<!– They can not be denied by the permissions set on any node. –>
<!– –>
<!– Admin can do anything to any ndoe –>
<globalPermission permission="FullControl" authority="ROLE_ADMINISTRATOR"/>
<!– For now, owners can always see, find and manipulate their stuff –>
<!–<globalPermission permission="FullControl" authority="ROLE_OWNER"/> –>
<!– Unlock is granted to the lock owner –>
<globalPermission permission="Unlock" authority="ROLE_LOCK_OWNER"/>
<!– Check in is granted to the lock owner –>
<globalPermission permission="CheckIn" authority="ROLE_LOCK_OWNER"/>
<!– Cancel check out is granted to the locak owner –>
<globalPermission permission="CancelCheckOut" authority="ROLE_LOCK_OWNER"/>
<globalPermission permission="Editor" authority="ROLE_OWNER"/>
<permissionGroup name="MyOwner" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Collaborator" type="cm:cmobject" />
<includePermissionGroup permissionGroup="Flatten" type="sys:base" />
<includePermissionGroup permissionGroup="ExecuteContent" type="sys:base" />
<includePermissionGroup permissionGroup="DeleteChildren" type="sys:base" />
<includePermissionGroup permissionGroup="CreateAssociations" type="sys:base" />
<includePermissionGroup permissionGroup="DeleteNode" type="sys:base" />
<includePermissionGroup permissionGroup="ReadAssociations" type="sys:base" />
<includePermissionGroup permissionGroup="DeleteAssociations" type="sys:base" />
<includePermissionGroup permissionGroup="ChangePermissions" type="sys:base" />
<includePermissionGroup permissionGroup="Execute" type="sys:base" />
<includePermissionGroup permissionGroup="Delete" type="sys:base" />
<includePermissionGroup permissionGroup="TakeOwnership" type="cm:ownable" />
<includePermissionGroup permissionGroup="SetOwner" type="cm:ownable" />
</permissionGroup>
….
<globalPermission permission="MyOwner" authority="ROLE_OWNER"/>
<permissionGroup name="FullWithoutDelete" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Read" type="sys:base"/>
<includePermissionGroup permissionGroup="Write" type="sys:base"/>
<includePermissionGroup permissionGroup="AddChildren" type="sys:base"/>
<includePermissionGroup permissionGroup="Execute" type="sys:base"/>
</permissionGroup>
<globalPermission permission="FullWithoutDelete" authority="ROLE_OWNER"/>
<bean id='permissionsModelDAO' class="org.alfresco.repo.security.permissions.impl.model.PermissionModel">
<property name="model">
<value>knowings/model/knowingsPermissionDefinitions.xml</value>
</property>
<property name="nodeService">
<ref bean="nodeService" />
</property>
<property name="dictionaryService">
<ref bean="dictionaryService" />
</property>
</bean>
Content from pre 2016 and from language groups that have been closed.
Content is read-only.
By using this site, you are agreeing to allow us to collect and use cookies as outlined in Alfresco’s Cookie Statement and Terms of Use (and you have a legitimate interest in Alfresco and our products, authorizing us to contact you in such methods). If you are not ok with these terms, please do not use this website.