将子树的读取权限限制为 Sitecore 中的特定角色
几个月来我一直在断断续续地解决这个问题,回答这个问题可能并不简单。
将某个项目及其子项目的公共访问限制为单个角色的成员的最简单方法是什么? (编辑者仍然需要能够编辑项目。)
例如,有一个角色、extranet/clubmember 和项目,
- Clubhouse
| - Items
| - Inside
| - Clubhouse
我希望 extranet/clubmember 成员能够读取项目和子项目、sitecore/* 成员(或者说 sitecore/editor)以获得编辑访问权限,而其他所有人(在默认域和 Extranet 域中)则被拒绝。
其次,此解决方案是否仍可与 Extranet 的自定义角色和会员资格提供商一起使用?为什么或为什么不,或者我需要实施什么方法?我记得在早期的实验中,我的自定义角色提供程序似乎特别影响继承权限。
I've been struggling with this off and on for months, and it may be non-trivial to answer.
What is the easiest way to limit public access to an item and its subitems to members of a single role? (Editors still need to be able to edit the item.)
e.g. There's a role, extranet/clubmember, and items,
- Clubhouse
| - Items
| - Inside
| - Clubhouse
And I want extranet/clubmember members to be able to read the items and subitems, sitecore/* members (Or, say, sitecore/editor) to have edit access, and everyone else (in default and extranet domains) to be denied.
Second, does this solution still work with a custom role and membership providers for extranet? Why or why not, or what methods do I need to implement? I recall from earlier experiments that my custom role provider seems to affect Inheritance permissions in particular.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
您是否尝试过以下操作:
根 显式分配总是获胜。那么,这个方案应该会达到你所期望的效果。
Have you tried the following:
Explicit assignments always win. So, that scheme should have the effect you expect.