Old Release

This documentation covers an old version of Fedora. Looking for another version? See all documentation.

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

UNDER DEVELOPMENT

This policy enforcement point makes basic decisions based on the three role of "reader", "writer" and "admin". These roles are stored on Fedora objects and they may be inherited through the repository tree.

This PEP makes use the Access Roles Module to assign and query roles in the repository.

Roles

  • reader - can retrieve information about Fedora objects
  • writer - all permissions of reader; can create, modify and delete Fedora objects
  • admin - all permissions of writer; can modify the roles assigned to Fedora objects

Policy

The permissions granted to these roles are fixed. This PEP makes decisions in Java code, rather than consulting any kind of declarative policy. If more nuanced roles or policies are required, then you can switch to the Local XACML Role-based PEP and reuse the roles you have already assigned in your repository.

  • No labels

All content on the LYRASIS Wiki is licensed under the CC BY (Attribution) license, unless otherwise noted.