Hyland Connect

stallapragada · ‎11-13-2011

Hi All

Is there a concept of applying a "Security Policy" on document(s) in Alfresco? I have a requirement of defining a security policy (Access Control List) that will have individual rules (Access Control Entries) as to which user / group has what kind of access (Consumer / Editor / collaborator etc). And then apply this policy to a document where the document will inherit security from it. This way if the security policy is modified, the authorization rules are automatically passed on to documents that use this security policy. Does Alfresco support this kind of mechanism?

I am thinking of using an aspect to define this and apply it to a document. But I could not make a lot of headway as I could not figure out how a document can inherit security from an aspect.

Any pointers in this regard will be of great help.

-Thanks
Srikant
http://www.introspeqt.com

mrogers · ‎11-14-2011

Please be aware that "Policies" in alfresco already has a meaning different from the way you use it in the first posting.

Each document in alfresco has its own access control list and in addition authorities may (or may not,if that's the way you want it) be "inherited" from the folder that contains the document.

Aspects do not control security directly but you could have an alfresco policy that changes the access control based upon the aspects.

I think you are describing a "role" of which there are a couple in alfresco, for example for RM, however I suggest that first you understand how to use normal alfresco security.

The system is very flexible and configurable and should you need to delve in then there are options, but that's no a first step.

Hyland Connect

Security Inheritance