04-16-2015 03:25 AM
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE permissions >
<permissions>
<!– Namespaces used in type references –>
<namespaces>
<namespace uri="http://www.alfresco.org/model/system/1.0" prefix="sys"/>
<namespace uri="http://www.alfresco.org/model/content/1.0" prefix="cm"/>
<namespace uri="http://www.alfresco.org/model/site/1.0" prefix="st"/>
</namespaces>
<!– ============================================ –>
<!– Permissions specific to the wiki integration –>
<!– ============================================ –>
<permissionSet type="st:site" expose="selected">
<permissionGroup name="SiteManager" allowFullControl="true" expose="true" />
<permissionGroup name="SiteCollaborator" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Collaborator" type="cm:cmobject" />
</permissionGroup>
<permissionGroup name="SiteContributor" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Contributor" type="cm:cmobject" />
</permissionGroup>
<permissionGroup name="SiteConsumer" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Consumer" type="cm:cmobject" />
<includePermissionGroup permissionGroup="ReadPermissions" type="sys:base" />
</permissionGroup>
<permissionGroup name="SiteCommentator" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Consumer" type="cm:cmobject" />
<includePermissionGroup permissionGroup="ReadPermissions" type="sys:base" />
</permissionGroup>
</permissionSet>
</permissions>
04-23-2015 03:34 AM
04-23-2015 08:25 AM
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
<beans>
<bean id="myModule_permissionBootstrap" parent="permissionModelBootstrap">
<property name="model" value="alfresco/extension/model/sitePermissionDefinitions.xml"/>
</bean>
</beans>
04-23-2015 12:22 PM
04-23-2015 02:17 PM
04-23-2015 05:20 PM
04-24-2015 12:57 PM
04-26-2015 07:01 AM
04-26-2015 09:09 AM
<!– Groups for low level permissions –>
<permissionGroup name="ReadProperties" expose="true" allowFullControl="false" />
<permissionGroup name="ReadChildren" expose="true" allowFullControl="false" />
<permissionGroup name="WriteProperties" expose="true" allowFullControl="false" />
<permissionGroup name="ReadContent" expose="false" allowFullControl="false" />
<permissionGroup name="WriteContent" expose="false" allowFullControl="false" />
<permissionGroup name="ExecuteContent" expose="false" allowFullControl="false" />
<permissionGroup name="DeleteNode" expose="true" allowFullControl="false" />
<permissionGroup name="DeleteChildren" expose="true" allowFullControl="false" />
<permissionGroup name="CreateChildren" expose="true" allowFullControl="false" />
<permissionGroup name="LinkChildren" expose="true" allowFullControl="false" />
<permissionGroup name="DeleteAssociations" expose="true" allowFullControl="false" />
<permissionGroup name="ReadAssociations" expose="true" allowFullControl="false" />
<permissionGroup name="CreateAssociations" expose="true" allowFullControl="false" />
<permissionGroup name="ReadPermissions" expose="true" allowFullControl="false" />
<permissionGroup name="ChangePermissions" expose="true" allowFullControl="false" />
<!– MOD OZY: Permission to start a Workflow –>
<permissionGroup name="WorkFlowPermissions" expose="true" allowFullControl="false" />
<!– ==================================================== –>
<!– Permissions related to the management of permissions –>
<!– ==================================================== –>
<!– The permission to read the permissions on a node –>
<permission name="_ReadPermissions" expose="false" >
<grantedToGroup permissionGroup="ReadPermissions" />
<!– Commented out parent permission check …
<requiredPermission on="parent" name="_ReadChildren" implies="false"/>
–>
</permission>
<!– The permission to the change the permissions associated with a node –>
<permission name="_ChangePermissions" expose="false" >
<grantedToGroup permissionGroup="ChangePermissions" />
<!– Commented out parent permission check …
<requiredPermission on="parent" name="_ReadChildren" implies="false"/>
–>
</permission>
<!– ======================================= –>
<!– MOD OZY: Permission to start a WorkFlow –>
<!– ======================================= –>
<permission name="_WorkFlowPermissions" expose="false" >
<grantedToGroup permissionGroup="WorkFlowPermissions" />
</permission>
<!– ================================================ –>
<!– Permissions available to all content and folders –>
<!– ================================================ –>
<permissionSet type="cm:cmobject" expose="selected">
<!– Kept for backward compatibility - the administrator permission has –>
<!– been removed to avoid confusion –>
<permissionGroup name="Administrator" allowFullControl="true" expose="false">
<!– MOD OZY: Add WorkFlow permission because it's needed to allow action id –>
<includePermissionGroup permissionGroup="WorkFlowPermissions" type="sys:base" />
</permissionGroup>
<!– A coordinator can do anything to the object or its children unless the –>
<!– permissions are set not to inherit or permission is denied. –>
<permissionGroup name="Coordinator" allowFullControl="true" expose="true">
<!– MOD OZY: Add WorkFlow permission because it's needed to allow action id –>
<includePermissionGroup permissionGroup="WorkFlowPermissions" type="sys:base" />
</permissionGroup>
<!– A collaborator can do anything that an editor and a contributor can do –>
<permissionGroup name="Collaborator" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Editor" type="cm:cmobject" />
<includePermissionGroup permissionGroup="Contributor" type="cm:cmobject" />
<!– MOD OZY: Add WorkFlow permission because it's needed to allow action id –>
<includePermissionGroup permissionGroup="WorkFlowPermissions" type="sys:base" />
</permissionGroup>
<!– A contributor can create content and then they have full permission on what –>
<!– they have created - via the permissions assigned to the owner. –>
<permissionGroup name="Contributor" allowFullControl="false" expose="true" >
<!– Contributor is a consumer who can add content, and then can modify via the –>
<!– owner permissions. –>
<includePermissionGroup permissionGroup="Consumer" type="cm:cmobject"/>
<includePermissionGroup permissionGroup="AddChildren" type="sys:base"/>
<includePermissionGroup permissionGroup="ReadPermissions" type="sys:base" />
<!– MOD OZY: Add WorkFlow permission because it's needed to allow action id –>
<includePermissionGroup permissionGroup="WorkFlowPermissions" type="sys:base" />
</permissionGroup>
<!– An editor can read and write to the object; they can not create –>
<!– new nodes. They can check out content into a space to which they have –>
<!– create permission. –>
<permissionGroup name="Editor" expose="true" allowFullControl="false" >
<includePermissionGroup type="cm:cmobject" permissionGroup="Consumer"/>
<includePermissionGroup type="sys:base" permissionGroup="Write"/>
<includePermissionGroup type="cm:lockable" permissionGroup="CheckOut"/>
<includePermissionGroup type="sys:base" permissionGroup="ReadPermissions"/>
</permissionGroup>
<!– The Consumer permission allows read to everything by default. –>
<permissionGroup name="Consumer" allowFullControl="false" expose="true" >
<includePermissionGroup permissionGroup="Read" type="sys:base" />
</permissionGroup>
<!– MOD OZY: Commentator permission is same as Contributor except i didn't add workflow permissions –>
<permissionGroup name="Commentator" allowFullControl="false" expose="true" >
<includePermissionGroup permissionGroup="Consumer" type="cm:cmobject"/>
<includePermissionGroup permissionGroup="AddChildren" type="sys:base"/>
<includePermissionGroup permissionGroup="ReadPermissions" type="sys:base" />
</permissionGroup>
<!– MOD OZY: Document Library permission for uploads only –>
<permissionGroup name="WriteOnly" allowFullControl="false" expose="true" >
<includePermissionGroup permissionGroup="Write" type="sys:base" />
<includePermissionGroup permissionGroup="AddChildren" type="sys:base" />
</permissionGroup>
<!– records permission –>
<!– Should be tied to the aspect –>
<!– ownership should be removed when using this permission –>
<permissionGroup name="RecordAdministrator" allowFullControl="false" expose="false">
<includePermissionGroup type="sys:base" permissionGroup="ReadProperties"/>
<includePermissionGroup type="sys:base" permissionGroup="ReadChildren"/>
<includePermissionGroup type="sys:base" permissionGroup="WriteProperties"/>
<includePermissionGroup type="sys:base" permissionGroup="ReadContent"/>
<includePermissionGroup type="sys:base" permissionGroup="DeleteChildren"/>
<includePermissionGroup type="sys:base" permissionGroup="CreateChildren"/>
<includePermissionGroup type="sys:base" permissionGroup="LinkChildren"/>
<includePermissionGroup type="sys:base" permissionGroup="DeleteAssociations"/>
<includePermissionGroup type="sys:base" permissionGroup="CreateAssociations"/>
<!– MOD OZY: Add WorkFlow permission because it's needed to allow action id –>
<includePermissionGroup permissionGroup="WorkFlowPermissions" type="sys:base" />
</permissionGroup>
</permissionSet>
<!– =============================== –>
<!– Permissions specific to content –>
<!– =============================== –>
<permissionSet type="cm:content" expose="selected">
<!– Content specific roles. –>
<permissionGroup name="Coordinator" extends="true" expose="true"/>
<permissionGroup name="Collaborator" extends="true" expose="true"/>
<permissionGroup name="Contributor" extends="true" expose="true"/>
<permissionGroup name="Editor" extends="true" expose="true"/>
<permissionGroup name="Consumer" extends="true" expose="true"/>
<permissionGroup name="RecordAdministrator" extends="true" expose="false"/>
<!– MOD OZY: Expose Commentator Permission on content –>
<permissionGroup name="Commentator" extends="true" expose="true"/>
<!– MOD OZY: Expose WriteOnly Permission on content –>
<permissionGroup name="WriteOnly" extends="true" expose="true"/>
</permissionSet>
<permissionSet type="cm:folder" expose="selected">
<!– Content folder specific roles. –>
<permissionGroup name="Coordinator" extends="true" expose="true"/>
<permissionGroup name="Collaborator" extends="true" expose="true"/>
<permissionGroup name="Contributor" extends="true" expose="true"/>
<permissionGroup name="Editor" extends="true" expose="true"/>
<permissionGroup name="Consumer" extends="true" expose="true"/>
<permissionGroup name="RecordAdministrator" extends="true" expose="false"/>
<!– MOD OZY: Expose Commentator Permission on folders –>
<permissionGroup name="Commentator" extends="true" expose="true"/>
<!– MOD OZY: Expose WriteOnly Permission on folders –>
<permissionGroup name="WriteOnly" extends="true" expose="true"/>
</permissionSet>
<!– ============================================ –>
<!– Permissions specific to the wiki integration –>
<!– ============================================ –>
<permissionSet type="st:site" expose="selected">
<permissionGroup name="SiteManager" allowFullControl="true" expose="true" />
<permissionGroup name="SiteCollaborator" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Collaborator" type="cm:cmobject" />
</permissionGroup>
<permissionGroup name="SiteContributor" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Contributor" type="cm:cmobject" />
</permissionGroup>
<permissionGroup name="SiteConsumer" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Consumer" type="cm:cmobject" />
<includePermissionGroup permissionGroup="ReadPermissions" type="sys:base" />
</permissionGroup>
<!– MOD OZY: Expose SiteCommentator –>
<permissionGroup name="SiteCommentator" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Commentator" type="cm:cmobject" />
</permissionGroup>
<!– MOD OZY: Expose SiteWriteOnly –>
<permissionGroup name="SiteWriteOnly" allowFullControl="false" expose="true">
<includePermissionGroup permissionGroup="Write" type="sys:base" />
<includePermissionGroup permissionGroup="AddChildren" type="sys:base" />
</permissionGroup>
</permissionSet>
invitation.invitesender.email.role.SiteWriteOnly=Write Only
invitation.invitesender.email.role.SiteCommentator=Commentator
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
<beans>
<bean id="invitationResourceBundles" class="org.alfresco.i18n.ResourceBundleBootstrapComponent">
<property name="resourceBundles">
<list>
<value>alfresco.web-extension.messages.invitation-service</value>
</list>
</property>
</bean>
</beans>
## Custom roles
role.SiteWriteOnly=Write Only
role.SiteCommentator=Commentator
<bean id="webscripts.resources" class="org.springframework.extensions.surf.util.ResourceBundleBootstrapComponent">
<property name="resourceBundles">
<list>
<value>alfresco.messages.common</value>
<value>alfresco.messages.slingshot</value>
<value>alfresco.web-extension.messages.slingshot</value>
</list>
</property>
</bean>
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
<beans>
<bean id="CustomPerm_permissionBootstrap" parent="permissionModelBootstrap">
<property name="model" value="alfresco/extension/model/permissionDefinitions.xml"/>
</bean>
<bean id="CustomSitePerm_permissionBootstrap" parent="permissionModelBootstrap">
<property name="model" value="alfresco/extension/model/sitePermissionDefinitions.xml"/>
</bean>
</beans>
<!– Custom DocLibActions config section –>
<config evaluator="string-compare" condition="DocLibActions">
<actionGroups>
<actionGroup id="document-browse">
<!– Simple Repo Actions –>
<!–
<action index="340" id="document-extract-metadata" />
<action index="350" id="document-increment-counter" />
–>
<!– Dialog Repo Actions –>
<!–
<action index="360" id="document-transform" />
<action index="370" id="document-transform-image" />
<action index="380" id="document-execute-script" />
–>
<action index="160" id="document-approve">
<permissions>
<permission allow="true">WorkFlowPermissions</permission>
</permissions>
</action>
<action index="170" id="document-reject">
<permissions>
<permission allow="true">WorkFlowPermissions</permission>
</permissions>
</action>
</actionGroup>
</actionGroups>
</config>
<actionGroup id="document-details">
<action index="100" id="document-download" />
<action index="110" id="document-view-content" />
<action index="120" id="document-edit-metadata" /
<action index="130" id="document-upload-new-version" />
<action index="140" id="document-view-original" />
<action index="150" id="document-view-working-copy" />
<action index="160" id="document-approve" />
<action index="170" id="document-reject" />
<action index="180" id="document-inline-edit" />
<action index="190" id="document-edit-online" />
<action index="200" id="document-edit-offline" />
<action index="210" id="document-view-googledoc" />
<action index="220" id="document-checkout-to-googledocs" />
<action index="230" id="document-checkin-from-googledocs" />
<action index="240" id="document-copy-to" />
<action index="250" id="document-move-to" />
<action index="260" id="document-delete" />
<action index="270" id="document-assign-workflow" />
<action index="280" id="document-cancel-editing" />
<action index="290" id="document-manage-site-permissions" />
<action index="300" id="document-manage-repo-permissions" />
<action index="310" id="document-manage-aspects" />
<action index="320" id="document-change-type" />
<action index="330" id="document-view-in-source-repository" />
<action index="340" id="document-publish" />
<action index="350" id="document-view-googlemaps" />
</actionGroup>
06-29-2015 06:34 AM
Tags
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.